REPORT BREACH

Tag CISA

Black Basta Ransomware Targets Over 500 Organizations in North America, Europe, and Australia

Black Basta Ransomware Targets Critical Infrastructure Globally The Black Basta ransomware-as-a-service (RaaS) group has made a significant impact since its inception in April 2022, successfully compromising over 500 private and critical infrastructure entities across North America, Europe, and Australia. Recent joint advisories released by leading cybersecurity authorities, including the Cybersecurity…

Read MoreBlack Basta Ransomware Targets Over 500 Organizations in North America, Europe, and Australia

CISA Warns Federal Agencies to Address Actively Exploited Vulnerability in Linux Kernel

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a significant Linux kernel vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, highlighting the threat of active exploitation. This flaw, designated as CVE-2024-1086, has been assigned a high CVSS score of 7.8 and pertains to a critical use-after-free issue within…

Read MoreCISA Warns Federal Agencies to Address Actively Exploited Vulnerability in Linux Kernel

CISA Launches Election Task Force to Address Growing Threats

United States Cyber Defense Agency Launches National Election Support Center The Cybersecurity and Infrastructure Security Agency (CISA), the preeminent cybersecurity agency in the United States, has inaugurated an election operations war room designed to bolster defenses against potential threats as the nation approaches the 2024 presidential election deadline. With increasing…

Read MoreCISA Launches Election Task Force to Address Growing Threats

Escalating Threats Surround Elections as US Voters Turn Out in Droves

Election Security, Fraud Management & Cybercrime Foreign Influence Campaigns Intensify as Experts Tout Election Security Upgrades Chris Riotta (@chrisriotta) • October 29, 2024 The latest early voting tracking data indicates over 50 million ballots have been cast in the presidential race. (Image: Shutterstock) Foreign influence efforts are gaining momentum as…

Read MoreEscalating Threats Surround Elections as US Voters Turn Out in Droves

Black Basta Ransomware Could Have Leveraged MS Windows Zero-Day Vulnerability

Black Basta Ransomware Exploits Windows Vulnerability Recent investigations by Symantec have revealed that threat actors associated with the Black Basta ransomware may have leveraged a newly uncovered zero-day vulnerability in the Microsoft Windows Error Reporting Service. This security flaw, identified as CVE-2024-26169, is classified as an elevation of privilege vulnerability…

Read MoreBlack Basta Ransomware Could Have Leveraged MS Windows Zero-Day Vulnerability

CISA Establishes Deadline: Address Juniper Junos OS Vulnerabilities by November 17

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a deadline of November 17, 2023, for federal agencies and organizations to implement security mitigations against several vulnerabilities identified in the Juniper Junos OS, which were disclosed earlier in August. This move comes in light of growing concerns surrounding the…

Read MoreCISA Establishes Deadline: Address Juniper Junos OS Vulnerabilities by November 17

CISA Calls on Manufacturers to Remove Default Passwords to Combat Cyber Threats

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a strong recommendation urging manufacturers to eliminate default passwords on systems exposed to the internet. The agency emphasizes that these types of passwords present significant risks, allowing malicious actors to gain unauthorized access and traverse networks within organizations. In a…

Read MoreCISA Calls on Manufacturers to Remove Default Passwords to Combat Cyber Threats

CISA Releases Urgent Directive for Federal Agencies Regarding Ivanti Zero-Day Vulnerabilities

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an urgent directive on Friday, advising Federal Civilian Executive Branch (FCEB) agencies to take immediate action against two zero-day vulnerabilities found in Ivanti Connect Secure (ICS) and Ivanti Policy Secure (IPS). These threats have already been actively exploited by various malicious…

Read MoreCISA Releases Urgent Directive for Federal Agencies Regarding Ivanti Zero-Day Vulnerabilities

U.S. Federal Authorities Disable China-Linked “KV-Botnet” Aimed at SOHO Routers

The U.S. government announced on Wednesday that it has taken significant action to disrupt a botnet composed of hundreds of small office and home office (SOHO) routers based in the United States. This botnet, referred to as the KV-botnet, is linked to Volt Typhoon, a state-sponsored threat actor associated with…

Read MoreU.S. Federal Authorities Disable China-Linked “KV-Botnet” Aimed at SOHO Routers