Security Bulletin

Pivoting from prior cyber espionage, the threat group deployed its backdoor tool set to ultimately push out RA World malware, demanding $2 million from its victim.

By leveraging the Cisco Partner Value Index, partners gain exclusive benefits, enhancing their ability to deliver innovative solutions in security and networking, driving long-term success and impactful customer results.

Such "unforgivable" memory safety issues, which have been observed in Microsoft, Ivanti, and VMware vCenter instances, could be circumvented with the utilization of safe and up-to-date coding languages, including Go, Rust, and Swift, according to the...

Aside from Advent International, Bain Capital, and EQT AB, KKR has also expressed wanting to take Trend Micro private, according to sources close to the matter.

Such an intrusion was claimed to have resulted in the erasure of user accounts and the locking of administrative accounts, with Tooda hackers alleging the release of Doxbin admins' personal information and a blacklist of individuals who had paid for...

Such a database not only contained Wi-Fi network names and credentials, device IDs, IP addresses, and email addresses but also other sensitive logging, monitoring, and error records for IoT devices around the world, according to an investigation by...

Sault Tribe — which is the biggest federally-recognized Native American tribe in Michigan — not only had to cancel all scheduled primary care, radiology, and dental appointments but also stop gaming operations across all its Kewadin Casinos, as well...

Despite confirming that its China-based subsidiary Unimicron Technology (Shenzhen) Corp., had been disrupted by a ransomware intrusion on Jan. 30, Unimicron did not disclose being subjected to a data breach as it noted an ongoing investigation into...

Attacks involved the delivery of malicious emails warning travelers of potential denied entry due to incomplete immigration requirements that include a link redirecting to a fake government portal-spoofing website facilitating login credential and...

After being exploited in Chinese cyberattacks since October 2023, the ThinkPHP Framework local file inclusion flaw, tracked as CVE-2022-47945, has been targeted by 572 unique IP addresses, according to an analysis from GreyNoise.

Initial compromise has been followed with either malicious JavaScript code injections for credential theft, LocalOlive web shell delivery for further payload retrieval, or remote access software distribution for additional compromise.

After establishing trust with targets through the spoofing of a South Korean government official, Kimsuky — also known as APT43, ARCHIPELAGO, Black Banshee, Velvet Chollima, and Thallium — proceeded to distribute spear-phishing emails with a PDF...