Security Bulletin

Threat actors have targeted internet-exposed Docker API endpoints with the advanced Commando Cat cryptojacking campaign since the beginning of the year, The Hacker News reports.

This is fork from the original work by Scott Jensen [ 1][ 2] originally published here as guest diary part of the SANS.edu BACS program. This update has a number of new features now available in Github [ 4].

Major U.S. cloud software provider Blackbaud has agreed to bolster its security defenses and remove unneeded customer data from its systems to settle charges by the Federal Trade Commission alleging the company's several security failings that...

The U.S. Office of the National Cyber Director has been urged by the Government Accountability Office to strengthen the implementation of the national cybersecurity strategy by adding outcome-oriented performance measures, as well as details...

Multinational building automation systems manufacturer Johnson Controls International has reported spending $27 million to remediate a ransomware attack in September attributed to the Dark Angels ransomware operation, which had demanded $51 million...

A GitHub Actions workflow could have been used for a command injection vulnerability in Bazel, which had the potential for threat actors to add malicious code into the production environment for projects using the Google open-source product.

With prompt injection, AI puts new spin on an old security problem

Interpol has disclosed the disruption of 70% of 1,300 malicious command-and-control servers leveraged in malware and phishing attacks, as well as the arrests of 31 suspected threat actors as part of its Operation Synergia between September and...

Hackread reports that the United Arab Emirates' government-owned airline Flydubai was claimed to be subjected to several distributed denial-of-service attacks by the self-proclaimed hacktivist operation Anonymous Sudan.

More than 2,000 computers across Ukraine were noted by the country's Computer Emergency Response Team to have been compromised as part of a widespread attack campaign with the modular Windows botnet payload PurpleFox, also known as DirtyMoe, which...

Global orthopedic implant device and surgical instrument manufacturer Exactech had its computer network breached in April, resulting in the potential compromise of personal data belonging to 4,230 individuals across the U.S., reports Cybernews.

Dark Reading's roundup of strategic cyber-operations insights for chief information security officers.