Security news that informs and inspires

All Articles

2376 articles:

GitLab Fixes Critical Account-Takeover Bug

GitLab has patched a critical vulnerability caused by hardcoded passwords in several versions.

Gitlab

Local Government Ransomware Attacks Disrupt Public Services

Ransomware attacks on local governments over the past year have resulted in various public service disturbances, from disabling jail surveillance cameras to disrupting COVID-19 vaccination appointment scheduling.

Ransomware, Local Government, State and Local Government

Log4Shell Attacks by Chinese APT Reveal Windows Rootkit

After investigating the Deep Panda APT's recent exploitation attempts of the Log4j flaw, researchers uncovered a new kernel rootkit.

Apt, Rootkit, Log4j

Researchers Warn of RCE Bug in Spring Framework

A remote code execution flaw in the Spring Java framework has been uncovered, and exploits are circulating in some places.

Java

Law Enforcement Agencies Arrested 65 in BEC Crackdown

A widespread, international crackdown on business email compromise resulted in the arrest of 65 suspects.

Business Email Compromise, Fbi

CISA Warns of Attacks on UPS Devices

CISA is warning enterprises about ongoing attacks against Internet-connected UPS devices and encouraging them to change default credentials and enforce MFA.

CISA, Iot Security

Decipher Podcast: Caitlin Condon

Caitlin Condon, vulnerability research manager at Rapid7, talks about the rise of “widespread threats,” how the time to exploitation by attackers has shifted and what that means for security teams.

Podcast, Zero Day

FBI: Election Officials in Nine States Received Phishing Emails

U.S. election officials and other state and local government officials received invoice-themed phishing emails aiming to steal their credentials, warned the FBI.

Election Security, Elections, Phishing

IcedID Thread-Hijacking Attack Uses Compromised Exchange Servers

Attackers are using compromised Microsoft Exchange servers to launch thread-hijacking attacks that infect victims with the IcedID malware.

Malware, Phishing

Urgent Update for Chrome Fixes Zero Day Under Attack

Google has patched a zero day in the V8 engine in Chrome that is under active attack.

Google

Decipher Podcast: Source Code 3/25

This week's Source Code podcast by Decipher takes a look behind the scenes at top news with input from our sources.

Source Code, Podcast

Azure Developers Targeted By Malicious NPM Packages

A recent campaign targeted Azure developers with malicious npm packages designed to look like legitimate tools.

Supply Chain

North Korean Actors Exploited Chrome Flaw to Target U.S. Orgs

Google researchers have detailed campaigns by two North Korean government-backed groups that exploited a now-fixed Chrome flaw to target organizations across various industries.

Lazarus, Google Chrome, Exploit Kits

U.S. Indicts Four Russians Allegedly Behind Triton and Dragonfly Attacks

The U.S. has indicted four Russians it alleges are affiliated with the FSB and GRU units responsible for the Triton and Dragonfly attacks against critical infrastructure in the United States and abroad.

Russia

Lapsus$ Group Uses ‘Unique Blend’ of Social Engineering, Identity-Centric Tactics

The Lapsus$ group, which most recently claimed breaches of Microsoft and Okta, relies on several tactics used less frequently by other threat groups.

Data Breaches, Threat Actors