Carly Page reports: Security researchers are warning that hackers are actively exploiting another high-risk vulnerability in a popular file transfer technology to launch mass hacks. The vulnerability, tracked as CVE-2024-50623, affects software developed by Illinois-based enterprise software company Cleo, according to researchers at cybersecurity company Huntress. The flaw was first disclosed by Cleo in a security…
State Special Communications / Yelyzaveta Kovtun reports: Hacker group UAC-0185 attempted to attack Ukrainian defense enterprises, as well as the Security and Defense Forces. Hackers used phishing emails for this. As reported in the State Intelligence Service, the hackers disguised their letters as official messages on behalf of the Ukrainian Union of Industrialists and Entrepreneurs….
Your insider threat reminder comes from Mumbai this morning. Vinay Dalvi reports that Mumbai police filed an FIR against two ex-employees of Baccarose Perfume and Beauty Products Private Limited in Worli for allegedly stealing the firm’s confidential data and sharing it with a rival firm. The news report names those accused and provides some details…
KillSec3 is a ransomware group, but is it really encrypting its victims these days? Recent data suggests that its affiliate(s) may be trying to extort victims using data that has already been publicly leaked. The following was researched and written by Dissent Doe, JayeLTee, and a third researcher who prefers to remain in the shadows….
Watsonville Community Hospital in California is continuing to work through what they refer to as a cyberattack on November 29. The hospital’s network has been offline since then with staff reverting to “downtime” procedures using paper. The hospital has been able to continue to provide emergency, inpatient, and outpatient care but alerts patients that there…
Ron Zeitlinger of The Jersey Journal reports: Social security numbers, driver’s licenses, payroll, health and other personal information of Hoboken workers and residents ― including dozens who applied for rental assistance during the pandemic ― was among the data stolen in the cyberattack last month, The Jersey Journal has confirmed. The Russia-linked ransomware group ThreeAM (also known as…