The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an urgent directive on Friday, advising Federal Civilian Executive Branch (FCEB) agencies to take immediate action against two zero-day vulnerabilities found in Ivanti Connect Secure (ICS) and Ivanti Policy Secure (IPS). These threats have already been actively exploited by various malicious…
The Federal Bureau of Investigation (FBI) has been summoned to probe a significant cybersecurity incident involving HBO, which has allegedly suffered a data breach resulting in the exposure of sensitive information, including unreleased episodes of popular shows like Game of Thrones. Hackers are reported to have extracted approximately 1.5 terabytes…
In a recent development regarding a long-standing cybersecurity breach, it has been revealed that a major hack in 2012 that compromised the South Carolina Department of Revenue may have been conducted by a notorious Russian hacking group. This breach, which resulted in the theft of sensitive tax and banking information…
Microsoft Addresses 61 Security Vulnerabilities in May Patch Update In its latest Patch Tuesday update for May 2024, Microsoft has resolved 61 newly identified security vulnerabilities across its software products, amongst them two zero-day flaws that have been actively exploited in the wild. These updates follow a proactive security strategy…
Cloud computing and analytics company Snowflake has reported that a select group of its clients is under targeted attack. In a recent joint statement, Snowflake, alongside cybersecurity firms CrowdStrike and Mandiant, clarified that there is no evidence linking this activity to a vulnerability, misconfiguration, or breach within their platform. Additionally,…
Cybersecurity experts have recently identified a significant vulnerability within Microsoft Azure Kubernetes Services (AKS) that could be exploited to elevate user privileges and potentially gain unauthorized access to sensitive service credentials used within the cluster. This flaw poses serious risks to organizations leveraging AKS, particularly those using specific configurations like…
Critical Flaw Detected in SonicWall Firewalls, User Action Required SonicWall has issued urgent security updates to mitigate a significant vulnerability in its firewall products, which, if exploited, could allow unauthorized access to these critical network devices. The vulnerability, designated as CVE-2024-40766, has a high Common Vulnerability Scoring System (CVSS) score…
The China-supported hacking group known as Earth Baku has expanded its operational focus, shifting from mainly Indo-Pacific targets to include nations across Europe, the Middle East, and Africa since late 2022. Countries recently identified as potential targets of this group include Italy, Germany, the United Arab Emirates, and Qatar, with…
New Surge in Malware Infections Linked to FakeBat Loader Cybersecurity experts have reported a notable increase in malware infections attributable to malvertising campaigns that deploy a loader known as FakeBat. This malicious software targets individuals seeking popular business applications, a strategy that appears to be opportunistically designed to ensnare unsuspecting…
