Security Bulletin

More than 60 different threat operations, including SocGholish and ClearFake actors, have become affiliates of the massive VexTrio malware brokerage program, making the group the most substantial broker of malicious traffic, The Hacker News reports.

Intrusions by the BianLian ransomware operation during the past year have been refocused on specific targets and involved new attack techniques, according to SiliconAngle.

BleepingComputer reports that antivirus systems have been targeted for deactivation by the newly emergent Kasseika ransomware operation in new Bring Your Own Vulnerable Driver attacks exploiting the TG Soft VirtIT Agent System's Martini driver.

Team project management platform Trello was noted by the Have I Been Pwned? breach notification service to have data from more than 15 million users exposed and peddled on a dark web hacking forum following a data scraping incident this month, Forbes...

CyberScoop reports that Microsoft has been accused of negligence by Sen. Ron Wyden, D-Ore., following the recent hack of its corporate email accounts by Russian state-sponsored threat operation APT29, also known as Cozy Bear.

The U.S. said that it will reject an updated United Nations cybercrime treaty draft should it maintain an expansive definition of cyber enabled crimes as pushed by Russia and China, as well as lack human rights protections, according to The Record, a...

The U.S. and UK have sanctioned Russian national Alexander Ermakov for his involvement in the October 2022 ransomware attack against Medibank, the largest health insurer in Australia, following similar action by the Australian government, which has...

Missouri Secretary of State Jay Ashcroft has been accused by state auditor Scott Fitzpatrick of holding back cybersecurity reviews of the state's local election authorities, which are required to be submitted to the state auditor's officer under the...

The company hasn't acknowledged responsibility for the incident, although allowing scraping paves the way for dangerous follow-on attacks.