Security Bulletin

CyberScoop reports that malicious cyber operations associated with the Israel-Hamas conflict, including an unverified cyberattack against Israel's Nevatim Air Force Base that was claimed by a pro-Palestinian group to have resulted in data compromise...

Attacks with the Smokeloader malware targeted at Ukrainian government and financial organizations, particularly accounting departments, have been on the rise since May, reports The Record, a news site by cybersecurity firm Recorded Future.

Numerous industrial and government entities across Russia have been subjected to cyberattacks with an information-stealing backdoor since June, with the still-unknown threat actors deploying an updated version of the malware in mid-August, according...

Apple released iOS, iPadOS, macOS, tvOS, and Safari updates today. The iOS/macOS updates go back two "generations". This is particularly important for iOS 15, which now receives a patch for CVE-2023-32434, a vulnerability already exploited against...

The three companies claim no sensitive customer data was lost despite being targeted after breach of identity and access management firm.

The YoroTrooper group claims to be from Azerbaijan and even routes its phishing traffic through the former Soviet republic.

We have too much cybersecurity awareness. It's time to implement repeatable, real-world practice that ingrains positive habits and security behaviors.

I noticed many scans for "/server-info.action" showing up in our "First Seen URLs" report. This URL didn't ring a bell at first but may be associated with CVE-2023-22515, a recent vulnerability in Confluence Server and Data Center.

A campaign targeting European governmental organizations and a think tank shows consistency from the low-profile threat group, which has ties to Belarus and Russia.

With Cisco FSO Platform, metrics can be reported directly from the code. This blog gives you hands-on guidance on how to set this up.

Leveraging a validated SD WAN architecture for Utility Distribution network use cases

VMware warns that the vCenter vulnerability could launch a remote code execution on unpatched servers.