22 Apr Russian hackers are seeking alternative money-laundering optionsThe Russian cybercrime community, one of the most active and prolific in the world, is turning to alternative money-laundering methods due to sanctions on Russia and law enforcement actions against dark web markets. […]
22 Apr US govt grants academics $12M to develop cyberattack defense toolsThe US Department of Energy (DOE) has announced that it will provide $12 million in funding to six university teams to develop defense and mitigation tools to protect US energy delivery systems from cyberattacks. […]
22 Apr T-Mobile confirms Lapsus$ hackers breached internal systemsT-Mobile has confirmed that the Lapsus$ extortion gang breached its network “several weeks ago” using stolen credentials and gained access to internal systems. […]
22 Apr Chinese hackers behind most zero-day exploits during 2021Threat analysts report that zero-day vulnerability exploitation is on the rise with Chinese hackers using most of them in attacks last year. […]
22 Apr Atlassian fixes critical Jira authentication bypass vulnerabilityAtlassian has published a security advisory to alert that its Jira and Jira Service Management products are affected by a critical authentication bypass vulnerability in Seraph, the company’s web application security framework. […]
22 Apr Ubuntu 22.04 LTS released with performance and security improvementsCanonical has announced the general availability of version 22.04 of the Ubuntu Linux distribution, codenamed ‘Jammy Jellyfish’, which brings better hardware support and an improved security baseline. […]
22 Apr Windows 10 KB5012636 cumulative update fixes freezing issuesMicrosoft has released the optional KB5012636 cumulative update preview for Windows 10 1809 and Windows Server 2019, with fixes for system freezing issues affecting client and server systems. […]
21 Apr Docker servers hacked in ongoing cryptomining malware campaignDocker APIs on Linux servers are being targeted by a large-scale Monero crypto-mining campaign from the operators of the Lemon_Duck botnet. […]
21 Apr Hackers earn $400K for zero-day ICS exploits demoed at Pwn2OwnPwn2Own Miami 2022 has ended with competitors earning $400,000 for 26 zero-day exploits (and several bug collisions) targeting ICS and SCADA products demoed during the contest between April 19 and April 21. […]
21 Apr QNAP asks users to mitigate critical Apache HTTP Server bugsQNAP has asked customers to apply mitigation measures to block attempts to exploit Apache HTTP Server security vulnerabilities impacting their network-attached storage (NAS) devices. […]