Category Security

Microsoft claims that recent attacks exploiting two vulnerabilities in its PaperCut print management software are likely the result of Clop ransomware affiliates. The two bugs in question are CVE-2023–27350 (Critical Unauthenticated Remote Code Execution Flaw) and CVE-2023–27351 (High Severity Unauthenticated…

Microsoft has confirmed that active exploitation of its PaperCut servers is associated with attacks designed to deliver the Cl0p and LockBit ransomware families. The technology giant’s threat intelligence team says it tracks some of the intrusions under the name of…

An actor known as Alloy Taurus has been observed deploying a new variant of the PingPull malware targeting Linux systems. Rated by Palo Alto Networks’ Unit 42 to be a Chinese Advanced Persistent Threat (APT) group focused on espionage, Alloy…

Google’s generative AI efforts in cybersecurity began in earnest in 2017 with the release of Transformer’s new neural network architecture. The company notes that recurrent neural networks are now at the heart of its approach to language modeling. Fast-forward to…

Boss hits rock bottom after one of the worst crimes in Finnish history. Strava’s privacy isn’t all that private, and a private investigator uncovers some of his TikTok tall tales. All of this and much more is discussed in the…

Lessons learned from the ongoing cyber warfare raging between Russia and Ukraine should be applied to other scenarios, including ongoing tensions between China and Taiwan. Laura Galante, director of the Director’s Office of the Director of National Intelligence’s Center for…

Professional sports face unique cyber threats and challenges, especially the nexus between cyber and physical security. These unique challenges have led to close cooperation between the top organizations in the field. This is from the CISOs of three of America’s…

ESET security researchers have observed a new malware campaign by the APT group known as Evasive Panda (as well as Daggerfly and Bronze Highland), relying on a custom backdoor known as MgBot. “To our knowledge, the backdoor has not been…

April 26, 2023hacker newsBrowser Security / SaaS Security Browsers serve as the primary interface between on-premises environments, the cloud, and the modern enterprise web. As such, browsers are also exposed to various types of cyber threats and operational risks. How…

ISACA has published a new quick reference document designed to help organizations prepare to mitigate ransomware incidents. a guide titled Ransomware incident management quick referenceis a checklist designed to help businesses be as prepared as possible to mitigate and recover…