15 Mar First-known Dero cryptojacking operation seen targeting KubernetesThe first known cryptojacking operation mining the Dero coin has been found targeting vulnerable Kubernetes container orchestrator infrastructure with exposed APIs. […]
14 Mar SAP releases security updates fixing five critical vulnerabilitiesSoftware vendor SAP has released security updates for 19 vulnerabilities, five rated as critical, meaning that administrators should apply them as soon as possible to mitigate the associated risks. […]
14 Mar Rubrik confirms data theft in GoAnywhere zero-day attackCybersecurity company Rubrik has confirmed that its data was stolen using a zero-day vulnerability in the Fortra GoAnywhere secure file transfer platform. […]
14 Mar YoroTrooper cyberspies target CIS energy orgs, EU embassiesA new threat actor named ‘YoroTrooper’ has been running cyber-espionage campaigns since at least June 2022, targeting government and energy organizations in Commonwealth of Independent States (CIS) countries. […]
13 Mar NordVPN makes its Meshnet private tunnel free for everyoneNordVPN’s Meshnet private tunnel feature for Windows, macOS, and Linux is now free for everyone, even users who do not have a subscription to NordVPN. […]
13 Mar Fortinet: New FortiOS bug used as zero-day to attack govt networksUnknown attackers used zero-day exploits to abuse a new FortiOS bug patched this month in attacks targeting government and large organizations that have led to OS and file corruption and data loss. […]
13 Mar LA housing authority discloses data breach after ransomware attackThe Housing Authority of the City of Los Angeles (HACLA) is warning of a “data security event” after the LockBit ransomware gang targeted the organization and leaked data stolen in the attack. […]
13 Mar Kali Linux 2023.1 introduces ‘Purple’ distro for defensive securityOffensive Security has released Kali Linux 2023.1, the first version of 2023 and the project’s 10th anniversary, with a new distro called ‘Kali Purple,’ aimed at Blue and Purple teamers for defensive security. […]
13 Mar STALKER 2 game developer hacked by Russian hacktivists, data stolenGSC Game World, the developer of the highly-anticipated ‘STALKER 2: Heart of Chornobyl’ game, warned their systems were breached, allowing threat actors to steal game assets during the attack. […]
12 Mar Hands on with Windows 11’s new leaked File Explorer featureMicrosoft is working on a new XAML-based gallery view for the Windows 11 File Explorer that allows you to browse your photos by date, as well as through a built-in search box. […]