Tag: January 2024

A new campaign has emerged targeting vulnerable Docker services, implementing a dual monetization approach by deploying an XMRig miner and the 9hits viewer app

COLDRIVER, a Russia-linked threat actor, has evolved its tactics by introducing a new custom malware, SPICA, written in the Rust programming language.

A malicious npm package named "oscompatible" has been discovered deploying a sophisticated remote access trojan on compromised Windows machines.

Ransomware actors are revisiting a tactic of using TeamViewer to gain initial access to organizational endpoints and attempting to deploy encryptors.

Continuous integration and continuous delivery (CI/CD) misconfigurations in the open-source TensorFlow machine learning framework have been identified.

CISA, FBI, and EPA have released a collaborative guide to empower owners and operators in the Water and Wastewater Systems (WWS) Sector with best practices

The cyberattack on Kyivstar, Ukraine's largest telecom provider, is expected to result in a financial setback of approximately $100 million for its parent company

Connecticut-based startup Kusari has successfully secured $8 million in combined pre-seed and seed funding to bolster its efforts in software supply chain security

Industrial organizations relying on the widely-used Rapid SCADA open-source platform are confronted with a serious security risk as seven vulnerabilities.

The scammers deploy fake news campaigns, often mimicking reputable outlets, and falsely attribute endorsements from reality shows like Shark Tank and Dragons