Ongoing Cyberattack Targets Exposed Selenium Grid Services for Crypto Mining
Cybersecurity researchers are sounding the alarm over an ongoing campaign that’s leveraging internet-exposed Selenium Grid services for illicit cryptocurrency mining.…
Critical Flaw in Telerik Report Server Poses Remote Code Execution Risk
Progress Software is urging users to update their Telerik Report Server instances following the discovery of a critical security flaw…
Feds Warn of North Korean Cyberattacks on US Critical Infrastructure
The Andariel group is targeting critical defense, aerospace, nuclear, and engineering companies for data theft, the FBI, NSA, and others…
CrowdStrike ‘Updates’ Deliver Malware & More as Attacks Snowball
Phishing and fraud surges during any national news story. This time though, the activity is both more voluminous and more…
Microsoft’s Internet Explorer Gets Revived to Lure in Windows Victims
Though IE was officially retired in June 2022, the vulnerability ramped up in January 2023 and has been going strong…
Unexpected Lessons Learned From the CrowdStrike Event
How your organization can leverage the disruptive CrowdStrike update to become more resilient. How your organization can leverage the disruptive…
The CrowdStrike Outage and Market-Driven Brittleness
Friday’s massive internet outage, caused by a mid-sized tech company called CrowdStrike, disrupted major airlines, hospitals, and banks. Nearly 7,000…
Security Firm Accidentally Hires North Korean Hacker, Did Not KnowBe4
A software engineer hired for an internal IT AI team immediately became an insider threat by loading malware onto his…