Malware & Threats ‘SlashAndGrab’ ScreenConnect Vulnerability Widely Exploited for Malware Delivery ConnectWise ScreenConnect vulnerability tracked as CVE-2024-1709 and SlashAndGrab exploited to deliver ransomware and other malware. Eduard KovacsFebruary 23, 2024
Ransomware US Offering $10M for LockBit Leaders as Law Enforcement Taunts Cybercriminals The US is offering big rewards for information on LockBit cybercriminals as law enforcement claims to have identified some individuals. Eduard KovacsFebruary 22, 2024
Data Protection Apple Adds Post-Quantum Encryption to iMessage Apple unveils PQ3, a new post-quantum cryptographic protocol for iMessage designed to protect communications against quantum computing attacks. Eduard KovacsFebruary 21, 2024
Government NSA Announces Retirement of Cybersecurity Director Rob Joyce NSA says Rob Joyce is retiring as cybersecurity director and will be replaced by David Luber, the current deputy director of cybersecurity. Eduard KovacsFebruary 21, 2024
Ransomware Law Enforcement Hacks LockBit Ransomware, Delivers Major Blow to Operation The LockBit ransomware operation has been severely disrupted by an international law enforcement operation resulting in server seizures and arrests. Eduard KovacsFebruary 20, 2024
Mobile & Wireless Mysterious ‘MMS Fingerprint’ Hack Used by Spyware Firm NSO Group Revealed The existence of a previously unknown infection technique used by spyware firm NSO Group is suggested by a single line in a contract between... Kevin TownsendFebruary 16, 2024
Mobile & Wireless New Wi-Fi Authentication Bypass Flaws Expose Home, Enterprise Networks A couple of Wi-Fi authentication bypass vulnerabilities found in open source software can expose enterprise and home networks to attacks. Eduard KovacsFebruary 15, 2024
Cybercrime Beyond the Hype: Questioning FUD in Cybersecurity Marketing Could cybersecurity professionals benefit from FUD awareness training in the same way that users benefit from phishing awareness training? Kevin TownsendFebruary 14, 2024
Malware & Threats Microsoft Confirms Windows Exploits Bypassing Security Features Patch Tuesday: Microsoft pushes a massive batch of security-themed updates and calls urgent attention to exploits bypassing security features. Ryan NaraineFebruary 13, 2024
Malware & Threats Hunter-Killer Malware Tactic Growing: Stealthy, Persistent and Aggressive A malware tactic dubbed ‘hunter-killer’ is growing, based on an analysis of more than 600,000 malware samples. This may become the standard approach for... Kevin TownsendFebruary 13, 2024
Vulnerabilities Exploitation of Another Ivanti VPN Vulnerability Observed Organizations urged to hunt for potential compromise as exploitation of a recent Ivanti enterprise VPN vulnerability begins. Ionut ArghireFebruary 12, 2024
Cybercrime Warzone RAT Shut Down by Law Enforcement, Two Arrested Warzone RAT dismantled in international law enforcement operation that also involved arrests of suspects in Malta and Nigeria. Eduard KovacsFebruary 12, 2024