Security Bulletin

Modern programmable logic controllers could be compromised in remote Stuxnet malware-like attacks with the use of novel IronSpider web-based malware developed by Georgia Institute of Technology researchers.

Organizations leveraging all on-premises iterations of JetBrains TeamCity servers have been urged to immediately apply fixes.

Two semiconductor equipment manufacturers in South Korea were noted by the country's National Intelligence Service to have had their systems breached by North Korean state-sponsored threat operations.

Iowa-based water, electricity, an internet service provider Muscatine Power and Water had data from 36,995 of the town's over 50,000 residents compromised following a ransomware attack.

High-profile organizations have been leveraged by Mogilevich to facilitate a fraudulent scheme that would lure others into paying for nonexistent stolen information.

Numerous delivery servers leveraged by Predator spyware have been taken down by the spyware's operators following separate.

Organizations have been subjected to attacks by initial access broker TA577, also known as Hive0118, aimed at exfiltrating Windows NT LAN Manager authentication data.

Attacks leveraging ConnectWise ScreenConnect vulnerabilities have been launched by North Korean state-sponsored hacking group Kimsuky.

The ALPHV/BlackCat ransomware operation had its servers and negotiation sites dismantled amid accusations from an affiliate behind the Change Healthcare attack.

Cisco employee volunteers talk about their experience with hands-on disaster response training, and how they combine their passion for service with both technical and non-technical skills to create connectivity in crisis conditions.

Here are three ways to more effectively manage QR code attacks.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.