Ionut Arghire

NBA Notifying Individuals of Data Breach at Mailing Services Provider

NBA is notifying individuals that their information was stolen in a data breach at a third-party mailing services provider.

March 20, 2023

Adobe Acrobat Sign Abused to Distribute Malware

Cybercriminals are abusing the Adobe Acrobat Sign service in a campaign distributing the RedLine information stealer malware.

March 20, 2023

Latitude Financial Services Data Breach Impacts 300,000 Customers

Latitude Financial Services says the personal information of 300,000 customers was stolen in a cyberattack.

March 17, 2023

US Government Warns Organizations of LockBit 3.0 Ransomware Attacks

Three US government agencies have issued a joint warning to organizations about LockBit 3.0 ransomware attacks.

March 17, 2023

New ‘Trigona’ Ransomware Targets US, Europe, Australia

The recently identified Trigona ransomware has been highly active, targeting tens of organizations globally.

March 17, 2023

New Espionage Group ‘YoroTrooper’ Targeting Entities in European, CIS Countries

A newly identified threat actor named YoroTrooper is targeting organizations in Europe and the CIS region for espionage and data theft.

March 17, 2023

CISA Seeks Public Opinion on Cloud Application Security Guidance

CISA this week announced it is seeking public input on draft guidance for securing cloud business applications.

March 16, 2023

Data Breach at Independent Living Systems Impacts 4 Million Individuals

Health services company Independent Living Systems has disclosed a data breach that impacts more than 4 million individuals.

March 16, 2023

Russia-Linked APT ‘Winter Vivern’ Targeting Governments in Europe, Asia

Russia-backed threat group Winter Vivern has targeted government entities in Poland, Ukraine, Italy, and India in recent campaigns

March 16, 2023

NSA Shares Guidance on Maturing ICAM Capabilities for Zero Trust

NSA publishes recommendations on maturing identity, credential, and access management capabilities to improve cyberthreat protections.

March 15, 2023

Russian Cyberspies Abuse EU Information Exchange Systems in Government Attacks

Russia-linked APT29 was seen abusing the legitimate information exchange systems used by European countries in attacks aimed at governments.

March 15, 2023

Dero, Monero Cryptojackers Fighting for Same Kubernetes Clusters

Dero cryptojacking operation infecting Kubernetes infrastructure is being targeted by Monero criptojackers for control over the same clusters.

March 15, 2023

SAP Releases Five ‘Hot News’ Notes on March 2023 Patch Day

SAP has released 19 new notes on March 2023 Security Patch Day, including five notes rated hot news.

March 15, 2023

Hawaii Health Department Says Death Records Compromised in Recent Data Breach

The Hawaii DOH says roughly 3,400 death records were accessed via the compromised account of a former employee.

March 15, 2023

CISA Program Warns Critical Infrastructure Organizations Vulnerable to Ransomware Attacks

A new CISA pilot program to warn critical infrastructure organizations if their systems are unpatched against vulnerabilities exploited in ransomware attacks.

March 14, 2023

Ring Denies Falling Victim to Ransomware Attack

Ring says it has no indications it has fallen victim to a ransomware attack after cybergang threatens to publish supposedly stolen data.

March 14, 2023

Fortinet Finds Zero-Day Exploit in Government Attacks After Devices Detect Integrity Breach

Fortinet says recently patched FortiOS vulnerability was exploited in sophisticated attacks targeting government entities.

March 14, 2023

CISA Warns of Plex Vulnerability Linked to LastPass Hack

CISA has added vulnerabilities in Plex Media Server and VMware NSX-V to its Known Exploited Vulnerabilities catalog.

March 13, 2023

New ‘GoBruteforcer’ Botnet Targets Web Servers

The recently identified Golang-based GoBruteforcer botnet is targeting web servers running FTP, MySQL, phpMyAdmin, and Postgres services.

March 13, 2023

Zoll Medical Data Breach Impacts 1 Million Individuals

Zoll Medical is notifying one million individuals that their personal information was compromised in a data breach earlier this year.

March 13, 2023

SECURITYWEEK NETWORK:

ICS:

Ionut Arghire

NBA Notifying Individuals of Data Breach at Mailing Services Provider

Adobe Acrobat Sign Abused to Distribute Malware

Latitude Financial Services Data Breach Impacts 300,000 Customers

US Government Warns Organizations of LockBit 3.0 Ransomware Attacks

New ‘Trigona’ Ransomware Targets US, Europe, Australia

New Espionage Group ‘YoroTrooper’ Targeting Entities in European, CIS Countries

CISA Seeks Public Opinion on Cloud Application Security Guidance

Data Breach at Independent Living Systems Impacts 4 Million Individuals

Russia-Linked APT ‘Winter Vivern’ Targeting Governments in Europe, Asia

NSA Shares Guidance on Maturing ICAM Capabilities for Zero Trust

Russian Cyberspies Abuse EU Information Exchange Systems in Government Attacks

Dero, Monero Cryptojackers Fighting for Same Kubernetes Clusters

SAP Releases Five ‘Hot News’ Notes on March 2023 Patch Day

Hawaii Health Department Says Death Records Compromised in Recent Data Breach

CISA Program Warns Critical Infrastructure Organizations Vulnerable to Ransomware Attacks

Ring Denies Falling Victim to Ransomware Attack

Fortinet Finds Zero-Day Exploit in Government Attacks After Devices Detect Integrity Breach

CISA Warns of Plex Vulnerability Linked to LastPass Hack

New ‘GoBruteforcer’ Botnet Targets Web Servers

Zoll Medical Data Breach Impacts 1 Million Individuals

Featured

Vulnerabilities

Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day

Vulnerabilities

3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs

Hacker Conversations

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker

Artificial Intelligence

AI and Cybersecurity – Everything You Wanted to Know, But Were Afraid to Ask

ICS/OT

Cal Water Investigating Iranian Hackers’ Claims

Network Security

Cisco Patches Another SD-WAN Zero-Day Exploited in Attacks

Ransomware

Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer

Latest News

Funding/M&A

1Password Acquires Apono in Reported $250M-$300M Deal

Artificial Intelligence

Tenet Security Emerges From Stealth With $6 Million Seed Funding

ICS/OT

Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software

Malware & Threats

Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack

Vulnerabilities

Oracle’s Second Monthly Security Updates Deliver 245 Patches

Vulnerabilities

Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities

Vulnerabilities

Joomla, LiteSpeed Vulnerabilities Exploited in Attacks

Daily Briefing Newsletter