Blog
-
New OpenSSH Vulnerability Could Be Exploited for RCE
The current OpenSSH vulnerability is the discovery of security researchers and not yet in the wild, but it is expected that threat actors will figure it out before long. The issue would provide an attacker with RCE ability and should be addressed immediately.
-
Teamviewer Security Breach Update: Russian APT Group Behind SolarWinds Named as Suspect
Teamviewer has now confirmed that a Russian APT group is the likely culprit in a security breach that impacted the “corporate environment” of its company.
-
US Federal Reserve Wasn’t Hacked? LockBit’s Stolen Data Was Taken From a Single Bank
Without juicy US Federal Reserve stolen data on offer, this appears to be a more run-of-the-mill breach, albeit one that does look to contain sensitive financial information. The silver lining is that such an audacious lie points to LockBit being on the ropes.
-
Security Flaw That Caused SolarWinds Breach Was Ignored for Years, According to Former Microsoft Employee
Whistleblower paints a picture of a corporate culture where Azure sales and feature innovation were stressed over all to product managers, and the many security flaws that were reported as part of this rapid development were pushed to “won’t fix” status.
-
Long-Term Disruption to Government Services Expected With Indonesian National Data Center Crippled by LockBit Cyber Attack
LockBit hackers took advantage of a temporary national data center, one of four used by Indonesia’s government, to deploy ransomware and snarl various services in the country in a cyber attack last week.
-
AMD Data Breach Confirmed, But Hacking Forum Claims About Scope of Stolen Data Still in Question
IntelBroker of the underground hacking forum BreachForums is at it again, and AMD has confirmed that the claimed data breach is legitimate and involved an unnamed third party vendor.
-
London Hospitals Weather Blood Shortages, Delayed Operations as Cyber Attack Snarls Pathology Lab Partner
Recent cyber attack on London hospitals, caused by an attack on a shared pathology lab that had been previously identified as a cybersecurity risk shows the popularity of healthcare organizations as a target for ransomware.
-
US Bans Kaspersky Products; New Sales to Stop July 20, Updates Cut Off on September 29
Kaspersky joins TikTok in facing US bans over hypothetical espionage. The move will likely cause substantial financial damage to the company. Kaspersky products are widely used in the US in spite of concerns about Russian hacking.
-
New Details Emerge on October 2023 Cyber Attack That Permanently Destroyed 600,000 Internet Routers
A fairly major destructive cyber attack that took place over half a year ago is only just now becoming known to the public. ISP in the Midwest region of the United States was targeted and about 600,000 internet routers ended up being destroyed.
-
6 Years of “Routine” Privacy Breaches Revealed as Google Database Leak Emerges
A Google insider has released a database leak documenting six years of privacy breaches that were largely unknown to the general public. While each of the items in the database leak is small, there are thousands in total, spanning six years of company history.