SEARCH
All Articles
Attackers Exploit ManageEngine Flaw to Steal Sensitive Data
A known, critical-severity flaw in ManageEngine ADSelfService Plus is under attack by bad actors who are leveraging it to execute a novel credential-theft tool on victims' networks.
U.S. Indicts Two Alleged REvil Operators, Seizes $6 Million in Payments
The Justice Department indicted a Russian and a Ukrainian in connection with REvil ransomware operations, including the attack on Kaseya.
U.S. Gov Offers $10M Bounty for DarkSide Ransomware Leaders
The U.S. government is upping its efforts to track down members of the DarkSide cybercrime group, which was behind the May ransomware attack on the Colonial Pipeline.
Vulnerable Microsoft Exchange Servers Hit With Babuk Ransomware
An emerging threat called Tortilla has been exploiting vulnerabilities in Microsoft (MS) Exchange servers hit with Babuk ransomware.
Decipher Podcast: Source Code 11/5
Welcome to Source Code: Decipher’s new behind the scenes look at the weekly news with input from our sources. Topping the headlines this week are two key cybersecurity-related moves by the U.S. government. These include the government blocking exports to NSO Group, Positive Technologies and other companies, and creating a catalog of known, actively exploited vulnerabilities that federal agencies must address. In other news, researchers have uncovered a threat group targeting vulnerable Microsoft Exchange servers with ransomware. A new report also shed light on various network access brokers selling credentials that they claimed belonged to logistics companies.
BlackMatter Ransomware Group Claim It’s Shutting Down
The BlackMatter ransomware group says it is closing up shop after pressure from authorities and the disappearance of some members.
CISA Orders Federal Agencies to Patch Hundreds of Known Flaws
Under a new binding operational directive (BOD), CISA has developed a catalog of known, exploited vulnerabilities that federal agencies must address.
U.S. Blocks Exports to NSO Group, Other Firms Over National Security Concerns
The Commerce Department added NSO Group, Candiru, Positive Technologies, and COSEINC to its Entity List, restricting exports of software and hardware to them.
Cybercriminals Target Transport and Logistics Industry
Cybercriminals claim they have access to various shipping and logistics company networks, causing what researchers say could be a “precarious situation” for the struggling supply chain sector.
Firefox 94 Adds Site Isolation to Mitigate Side-Channel Attacks
Mozilla has added site isolation to Firefox 94 to defend against side-channel attacks such as Spectre and Meltdown.
Google Fixes Two Chrome Zero-Day Flaws
The two zero-day flaws were part of eight vulnerabilities patched this week in Google Chrome.
International Task Force Disrupts European Ransomware Operation
A task force of European and U.S. agencies arrested 12 suspects in Switzerland and Ukraine as part of an action against a ransomware operation.
Apple Fixes Slew of Bugs in iOS, macOS
Apple has fixed more than 20 vulnerabilities in iOS 15.1 and macOS Monterey 12.01.
FTC Beefs Up Security Mandates For Financial Sector
The FTC has made changes to the Safeguards Rule aimed at securing consumer data in the financial industry.
Lazarus APT Uses Updated Malware in Potential Supply Chain Attacks
The Lazarus group has been recently observed “building supply-chain attack capabilities” by targeting a legitimate South Korean security software and an IT asset monitoring solution vendor.