SEARCH
Earlier Supply Chain Attack Led to 3CX Intrusion
An intrusion at a separate company led to the supply chain attack on 3CX that was disclosed last month, investigators said.
Google Fixes Chrome Zero-Day Flaw
The Chrome flaw is the second zero-day bug in a week that Google has addressed.
GitHub Launches Private Bug Reporting, Package Provenance Features
GitHub is launching two new features that enable developers to create a private vulnerability reporting channel and provide provenance attestations for their packages.
Play Ransomware Attacks Utilize New Custom Tools
More ransomware groups are developing custom tools for data exfiltration, to deploy second-stage malware and more.
APT28 Exploiting Old Flaw to Install Jaguar Tooth Malware
The Russian APT28 group is exploiting a six-year-old vulnerability in some Cisco IOS and IOS XE router software to install malware known as Jaguar Tooth.