Microsoft Warns of New INC Ransomware Targeting U.S. Healthcare Sector
Microsoft has revealed that a financially motivated threat actor has been observed using a ransomware strain called INC for the…
GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions
GitLab has released patches to address a critical flaw impacting Community Edition (CE) and Enterprise Edition (EE) that could result…
Phishing Espionage Attack Targets US-Taiwan Defense Conference
Hackers sent a convincing lure document, but after 20 years of similar attacks, the target organization was well prepared. Hackers…
Packed With Features, ‘SambaSpy’ RAT Delivers Hefty Punch
Thought to be Brazilian in origin, the remote access Trojan is the “perfect tool for a 21st-century James Bond.” Thought…
Contractor Software Targeted via Microsoft SQL Server Loophole
By accessing the MSSQL, threat actors gain admin-level access to the application, allowing them to automate their attacks. By accessing…
FCC: AT&T Didn’t Adequately Protect Customers’ Cloud Data
Regulators fine AT&T $13 million for failing to protect customer information held by a third-party vendor, and extend consumer data…
Thousands of ServiceNow KB Instances Expose Sensitive Corporate Data
Despite security updates to protect data, 45% of total enterprise instances of the cloud-based IT management platform leaked PII, internal…
QR Phishing Scams Gain Motorized Momentum in UK
Criminal actors are finding their niche in utilizing QR phishing codes, otherwise known as “quishing,” to victimize unsuspecting tourists in…
New “Raptor Train” IoT Botnet Compromises Over 200,000 Devices Worldwide
Cybersecurity researchers have uncovered a never-before-seen botnet comprising an army of small office/home office (SOHO) and IoT devices that are…
Chinese Engineer Charged in U.S. for Years-Long Cyber Espionage Targeting NASA and Military
A Chinese national has been indicted in the U.S. on charges of conducting a “multi-year” spear-phishing campaign to obtain unauthorized…
