Cisco
public
–
1 min read
In April 2024, the China-linked APT group Velvet Ant exploited zero-day vulnerability CVE-2024-20399 in Cisco switches to deploy custom malware,…
Humane Intelligence
public
–
1 min read
At the 2023 Defcon hacker conference, Humane Intelligence in partnership with AI transparency groups and US government support, initiated a…
NM Office of Superintendent of Insurance (OSI)
public
–
1 min read
The New Mexico Office of Superintendent of Insurance, the organisation in charge of overseeing the insurance sector, has acknowledged a…
AnyDesk
public
–
1 min read
The Mad Liberator ransomware group used social engineering to exploit the remote-access application AnyDesk, gaining unauthorized access and exfiltrating data…
Chainalysis
public
–
1 min read
In their analysis, Chainalysis detected a 2% increase in ransomware payments, totaling $459.8 million. The largest payment was $75…
Amazon Web Services
public
–
1 min read
A vulnerability in Amazon Web Services' Application Load Balancer was discovered by security firm Miggo, which could potentially allow…
USPS
public
–
1 min read
A sophisticated smishing campaign using fake USPS package delivery notifications led to significant data compromise. Security researcher Grant Smith unveiled…
United States Postal Service
public
–
1 min read
The United States Postal Service (USPS) faced a massive smishing scam where a Chinese-language group tricked users into entering credit…
Microsoft
public
–
1 min read
Microsoft's AI-powered Copilot exposed to security vulnerabilities where a hacker could access sensitive information such as employee salaries…
Russian government and IT organizations
public
–
1 min read
The EastWind campaign utilized sophisticated backdoors to target Russian entities, compromising government and IT organizations' security. Malware delivered via…
UnDisruptable27
public
–
1 min read
UnDisruptable27, a security initiative empowered by a $700,000 grant, aims to secure critical infrastructure with urgency. Amidst rampant cyber…
Russian government and IT organizations
public
–
1 min read
The EastWind campaign involved a series of sophisticated cyberattacks targeting Russian government and IT organizations. The attacks were orchestrated via…