A critical vulnerability affecting ConnectWise’s ScreenConnect remote desktop access product has been exploited widely, leading to the delivery of ransomware and other malware. ConnectWise issued …
Apple Shortcuts Vulnerability Exposes Sensitive Information
A critical vulnerability, identified as CVE-2024-23204, has been discovered in Apple Shortcuts, affecting both iOS and macOS users, allowing attackers to access sensitive information without user …
Continue Reading about Apple Shortcuts Vulnerability Exposes Sensitive Information
Toward Better Patching — A New Approach with a Dose of AI
Security teams face a daunting challenge in analyzing and prioritizing the predicted influx of 2,900 new vulnerabilities per month in 2024, making effective patching nearly impossible due to the sheer …
Continue Reading about Toward Better Patching — A New Approach with a Dose of AI
Russian Hackers Target Ukraine with Disinformation and Credential-Harvesting Attacks
Cybersecurity researchers discovered a new influence operation targeting Ukraine that was utilizing spam emails to spread disinformation related to war. Codenamed Operation Texonto, the operation …
An online dump of Chinese hacking documents offers a rare window into pervasive state surveillance
An online dump of documents originating from a private security contractor is currently being investigated by the Chinese authorities as the dump details hacking activity, as well as domestic and …
Ukraine arrests father-son duo in Lockbit cybercrime bust
On Wednesday, police in Ukraine reported the arrest of a father-son duo who were members of the cybercrime gang Lockbit. The arrests in Ukraine enabled law enforcement to seize 34 servers and over 200 …
Continue Reading about Ukraine arrests father-son duo in Lockbit cybercrime bust
Apple Adds Post-Quantum Encryption to iMessage
On Wednesday, Apple unveiled a post-quantum cryptographic protocol called PQ3 for iMessage. This new protocol shields against potential future quantum computing attacks and protects encrypted …
Continue Reading about Apple Adds Post-Quantum Encryption to iMessage
Iran Warship Aiding Houthi Pirates Hacked by US
US officials have claimed a recent cyberattack on an Iranian military spy ship disrupted intelligence gathering on Red Sea traffic. The intelligence gathering had been used to aid Houthi rebels in …
Continue Reading about Iran Warship Aiding Houthi Pirates Hacked by US
LockBit takedown: Infrastructure disrupted, criminals arrested, decryption keys recovered
The UK National Crime Agency and Europol took over LockBit's leak site yesterday and has released more information about the takedown. The NCA took control of the infrastructure that allowed the …
China’s Volt Typhoon Hackers Are Exfiltrating Sensitive OT Data
The hacker group Volt Typhoon could pose a serious threat to organizations using industrial control systems or other operational technology according to cybersecurity firm Dragos. The 2023 ICS/OT …
Continue Reading about China’s Volt Typhoon Hackers Are Exfiltrating Sensitive OT Data