For individuals

BleepingComputer reports that almost 700 Ivanti servers have been compromised with the novel DSLog backdoor in attacks leveraging the server-side request forgery flaw affecting the SAML component of Ivanti Connect Secure, Policy Secure, and ZTA gateways, tracked as CVE-2024-21893.

Organizations have been warned by the Cybersecurity and Infrastructure Security Agency regarding ongoing attacks exploiting a cross-site scripting vulnerability impacting various versions of the Roundcube email server, tracked as CVE-2023-43770, reports BleepingComputer.

Third-party vendor IMS told BoA last fall that data from “deferred compensation plans" may have been compromised.

Cascading critical CVEs, cyberattacks, and delayed patching are plaguing Ivanti VPNs, and forcing cybersecurity teams to scramble for solutions. Researchers are unimpressed.

An attack on a technology partner claimed by LockBit ransomware exposed sensitive information, including Social Security numbers, of more than 57,000 banking customers.

Saudi Arabia charity was under surveillance with the modified reverse proxy tool, researchers discovered.

Recent shifts underscore the importance of collaboration and alignment between these two IT leaders for successful digital transformation.

Attacks with the novel Coyote banking trojan have been deployed against 61 banks across Brazil, The Hacker News reports.

StateScoop reports that Florida lawmakers have been mulling to return $40 million in funding meant to advance state and local entities' cybersecurity defenses to the state's general fund.