A hacktivist collective identified as Head Mare has emerged as a notable threat actor, launching targeted cyber attacks against organizations in Russia and Belarus. According to Kaspersky’s analysis released earlier this week, Head Mare employs sophisticated techniques to gain initial access to their targets, distinguishing themselves from other groups in…
Emerging Security Flaw in Apple Vision Pro Headset Addressed Following Responsible Disclosure Recent revelations have highlighted a security vulnerability in Apple’s Vision Pro mixed reality headset, now resolved following careful disclosure practices. This flaw, identified as CVE-2024-40865 and referred to as "GAZEploit," posed a significant risk, permitting malicious actors to…
Wing Security Launches SaaS Pulse: A Free Solution for Continuous SaaS Risk Management In a bid to address the ever-evolving landscape of cybersecurity risks associated with Software as a Service (SaaS) applications, Wing Security has unveiled SaaS Pulse, a free tool designed to provide organizations with ongoing surveillance and actionable…
The United States government, in conjunction with a coalition of international partners, has officially linked a Russian hacking group known as Cadet Blizzard to the General Staff Main Intelligence Directorate (GRU) 161st Specialist Training Center, also referred to as Unit 29155. This attribution highlights the group’s significant role in cyber…
CosmicBeetle Introduces ScRansom Ransomware Targeting SMBs Globally In a significant escalation in the realm of cyber threats, the group known as CosmicBeetle has launched a new ransomware variant called ScRansom, focusing on attacks against small- and medium-sized businesses (SMBs) across Europe, Asia, Africa, and South America. This malicious activity follows…
Significant Security Flaw Discovered in Ivanti Cloud Service Appliance Under Active Attack In a recent disclosure, Ivanti announced that a newly patched security vulnerability in its Cloud Service Appliance (CSA) is currently being exploited in the wild. This serious issue, identified as CVE-2024-8190, has been assigned a CVSS score of…
Whistleblower Settlement Arising from Columbus Data Leak Highlights Ongoing Concerns in Cybersecurity A recent settlement has been reached between a whistleblower and a prominent organization following a significant data breach that brought widespread scrutiny to Columbus, Ohio. The incident, which involved a substantial leak of sensitive information, has not only…
Fortinet Acknowledges Data Breach Following Ransom Payment Refusal In a significant cybersecurity incident, Fortinet has confirmed a data breach that reportedly occurred after the company declined to pay a ransom demanded by cybercriminals. This acknowledgment raises serious concerns about the security posture of a prominent player in the cybersecurity industry…
In a recent development in the cybersecurity landscape, Fortinet has reported that fewer than 1 percent of its customers have been affected by a significant data breach. The incident raised alarms across the tech industry as the company sought to clarify the extent of the impact on its vast customer…
