Albanian Organizations Targeted by Wiper Malware in Renewed Cyber Offensive A new surge of cyberattacks has been observed against Albanian organizations, primarily utilizing a destructive wiper malware identified as No-Justice. This attack, reported by ClearSky, a cybersecurity firm, has led to significant disruptions for the victims by crashing their Windows…
Fraud Management & Cybercrime, Ransomware Emerging Ransomware Group Utilizes Rust-Based Tools in New Attack Strategies Prajeet Nair (@prajeetspeaks) • October 23, 2024 Image: Shutterstock A newly formed ransomware group has emerged with advanced capabilities, reportedly developing tools designed to bypass traditional security measures. This burgeoning threat is distinguished by its…
OpenSSH Vulnerability Exposes Critical Risk to Linux Systems In a significant development for cybersecurity, the maintainers of OpenSSH have issued urgent security updates addressing a severe vulnerability that may allow unauthenticated remote code execution with root-level access on glibc-based Linux systems. This vulnerability, designated CVE-2024-6387 and dubbed "regreSSHion," resides within…
Former Employee Arrested for Attempted Data Extortion Against Missouri Company A 57-year-old man from Missouri has been apprehended following an unsuccessful attempt to extort his previous employer. Daniel Rhyne, a former core infrastructure engineer based in Kansas City, has been charged with extortion and related offenses in connection with a…
Microsoft Addresses 61 Security Vulnerabilities in May Patch Update In its latest Patch Tuesday update for May 2024, Microsoft has resolved 61 newly identified security vulnerabilities across its software products, amongst them two zero-day flaws that have been actively exploited in the wild. These updates follow a proactive security strategy…
Microsoft has announced that it is actively working on security updates to rectify two significant vulnerabilities that could potentially be exploited to conduct downgrade attacks against its Windows update system. These vulnerabilities may allow malicious actors to replace the current versions of operating system files with outdated ones, undermining the…
OpenVPN Vulnerabilities Disclosed by Microsoft: A Potential Attack Vector Microsoft recently announced the discovery of four medium-severity security vulnerabilities within the open-source OpenVPN software, which could be exploited in conjunction to enable remote code execution (RCE) and local privilege escalation (LPE). The implications of these flaws are significant, as they…
Microsoft Reports Unpatched Zero-Day Vulnerability in Office Suite Microsoft has recently revealed a serious unpatched vulnerability in its Office suite, identified as CVE-2024-38200. This zero-day flaw presents the risk of unauthorized exposure of sensitive information to malicious entities if successfully exploited. The vulnerability, which has a CVSS score of 7.5,…
New Security Vulnerabilities Found in Google’s Quick Share Tool Recent research has revealed the existence of up to ten security vulnerabilities within Google’s Quick Share data transfer application, utilized across both Android and Windows platforms. These flaws pose a significant risk, as they could potentially be exploited to initiate a…
