U.S., U.K., Australia Sanction Russian REvil Hacker Behind Medibank Breach

24/01/2024 0 Comments 0 tags

Governments from Australia, the U.K., and the U.S. have imposed financial sanctions on a Russian national for his alleged role in the 2022 ransomware attack against health insurance provider Medibank.

The Unknown Risks of The Software Supply Chain: A Deep-Dive

24/01/2024 0 Comments 0 tags

In a world where more & more organizations are adopting open-source components as foundational blocks in their application’s infrastructure, it’s difficult to consider traditional SCAs as complete protection mechanisms against

Kasseika Ransomware Using BYOVD Trick to Disarms Security Pre-Encryption

24/01/2024 0 Comments 0 tags

The ransomware group known as Kasseika has become the latest to leverage the Bring Your Own Vulnerable Driver (BYOVD) attack to disarm security-related processes on compromised Windows hosts, joining the

What is Nudge Security and How Does it Work?

24/01/2024 0 Comments 0 tags

In today’s highly distributed workplace, every employee has the ability to act as their own CIO, adopting new cloud and SaaS technologies whenever and wherever they need. While this has

Google Kubernetes Misconfig Lets Any Gmail Account Control Your Clusters

24/01/2024 0 Comments 0 tags

Cybersecurity researchers have discovered a loophole impacting Google Kubernetes Engine (GKE) that could be potentially exploited by threat actors with a Google account to take control of a Kubernetes cluster.

~40,000 Attacks in 3 Days: Critical Confluence RCE Under Active Exploitation

24/01/2024 0 Comments 0 tags

Malicious actors have begun to actively exploit a recently disclosed critical security flaw impacting Atlassian Confluence Data Center and Confluence Server, within three days of public disclosure. Tracked as CVE-2023-22527

BreachForums Founder Sentenced to 20 Years of Supervised Release, No Jail Time

24/01/2024 0 Comments 0 tags

Conor Brian Fitzpatrick has been sentenced to time served and 20 years of supervised release for his role as the creator and administrator of BreachForums. Fitzpatrick, who went by the

From Megabits to Terabits: Gcore Radar Warns of a New Era of DDoS Attacks

24/01/2024 0 Comments 0 tags

As we enter 2024, Gcore has released its latest Gcore Radar report, a twice-annual publication in which the company releases internal analytics to track DDoS attacks. Gcore’s broad, internationally distributed

“Activator” Alert: MacOS Malware Hides in Cracked Apps, Targeting Crypto Wallets

24/01/2024 0 Comments 0 tags

Cracked software have been observed infecting Apple macOS users with a previously undocumented stealer malware capable of harvesting system information and cryptocurrency wallet data. Kaspersky, which identified the artifacts in

Malicious NPM Packages Exfiltrate Hundreds of Developer SSH Keys via GitHub

24/01/2024 0 Comments 0 tags

Two malicious packages discovered on the npm package registry have been found to leverage GitHub to store Base64-encrypted SSH keys stolen from developer systems on which they were installed. The