SEARCH
GitLab Patches Critical Account Takeover Flaw
The critical flaw (CVE-2022-1680) can allow for account takeover in impacted installations that have not been upgraded.
Zero Day in Atlassian Confluence Under Attack
A newly disclosed zero day in some versions of Atlassian Confluence and Data Center is under attack and being used to install webshells on target servers.
Evil Corp Affiliates Deploy LockBit Ransomware to Sidestep Sanctions
A threat cluster with significant overlap to the Evil Corp cybercriminal gang has started deploying the LockBit ransomware in an effort to evade U.S. sanctions.
CISA Warns of Karakurt Extortion Group
The Karakurt data extortion group is stealing sensitive information from enterprises and holding it for ransom, CISA warns.
Enterprise Ransomware Attacks Are Getting Faster
The average ransomware attack duration - from the initial access to the deployment of the ransomware payload at scale - was under four days in 2021.