For providers

Threat actor uses leveraging the Rockstar 2FA phishing-as-a-service and bypasses MFA.

With cybersecurity talent hard to come by and companies increasingly looking for guidance and best practices, virtual and fractional chief information security officers can make a lot of sense.

Aside from leveraging numerous notorious nuisance networks, VPNs, cloud hosting provider infrastructure, and other direct-path attack vectors, threat actors behind the coordinated DDoS campaign also exploited the DDoSia botnet to maximize intrusions.

While Microsoft has noted that leveraging the flaw — which was discovered by Microsoft employees Apoorv Wadhwa, Gautam Peri, and an anonymous researcher — could allow privilege escalation without authentication, additional details regarding its exploitation have not been provided.

Malicious ads with time-limited offers and countdowns have been leveraged by threat actors to lure downloads of the predatory loan apps, which would seek unneeded permissions for SMS, contact, call record, phone storage, calendar, microphone, and camera access, which would then be used for extortion and contact spamming in the event a loan payment is missed.

Russian programmer Mikhail Pavlovich Matveev — who has been accused of being involved with the LockBit, Hive, and Babuk ransomware operations — has reportedly been apprehended and indicted by Russian authorities for developing data encrypting software that could be leveraged for ransomware extortion activities.

Alder Hey Children's Hospital got hit with a ransomware attack, while the nature of an incident at Wirral University Teaching Hospital remains undisclosed.

The playbooks that accompany your incident response plan provide efficiency and consistency in responses, help reduce downtime and dwell time, and can be a cost-saving and reputational-saving measure for your organization.

Microsoft is readying a new release of Windows in 2025 that will have significant security controls, such as more resilient drivers and a "self-defending" operating system kernel.