Volatile Cedar, a cybercriminal group affiliated with the Hezbollah Cyber Unit, has resurfaced after disappearing for almost 6 years.
The Northern Territory Government's third-party IT system supply has fallen victim to a ransomware attack.
On 2022-05-11, a campaign was reported, involving an unknown actor, gaining initial access via 1-day vulnerability, targeting WordPress to achieve Resource hijacking.
Key findings from the 5th year of the Active Cyber Defence (ACD) programme.
Assessing the cyber security threat to UK organisations using Enterprise Connected Devices.
Nobelium, the Russian hacking group believed to be responsible for the Solarwinds supply chain attack, has launched new attacks targeting Microsoft customers.
Cochise Eye & Laser, an Arizona-based optometrist, has suffered a ransomware attack.
SITA, an IT systems vendor for 90% of the global aviation industry, has been used as an instrument for a sophisticated international supply chain attack.
The California Department of Motor Vehicles has been breached, potentially exposing millions of driver registration records.
US retailer Kmart has fallen victim to an Egregor ransomware attack.
Nobelium, the Russian hacking group believed to be responsible for the Solarwinds supply chain attack, has launched new attacks targeting Microsoft customers.
Cochise Eye & Laser, an Arizona-based optometrist, has suffered a ransomware attack.
SITA, an IT systems vendor for 90% of the global aviation industry, has been used as an instrument for a sophisticated international supply chain attack.
The California Department of Motor Vehicles has been breached, potentially exposing millions of driver registration records.
US retailer Kmart has fallen victim to an Egregor ransomware attack.
Learn about the security risks of misconfigured Lambda function URLs and how to properly secure them.
Continuing to walk down Linux Kernel exploitation lane. This time around with an unanticipated topic: DirtyPipe as it actually nicely fits the series as an example.
The Colonial Pipeline story has taken an unexpected plot twist after Darkside announced the cessation of their criminal operations.
Colonial Pipeline has fallen victim to a ransomware attack, forcing its 5,500-mile pipeline to shutdown.
The Colonial Pipeline story has taken an unexpected plot twist after Darkside announced the cessation of their criminal operations.
Colonial Pipeline has fallen victim to a ransomware attack, forcing its 5,500-mile pipeline to shutdown.
This report outlines the risks associated with the use of official and third party app stores.
On 2022-05-04, a campaign was reported, involving UNC2903, gaining initial access via , while using IMDS abuse, SSRF,.
Wiz Research discovers a chain of critical vulnerabilities in the widely used Azure Database for PostgreSQL Flexible Server.
A technical analysis of a new variant of the SparrowDoor malware.
There are a number of key questions which are always asked by people wanting to get into security research, find out more about how others go about it or just generally improve their processes. In...
On 2022-04-21, a campaign was reported, involving LemonDuck, gaining initial access via ,.
On the last day of March 2022, Claroty (Team82) published an article on two vulnerabilities they had identified in Rockwell Automation products. We believe that the severity of these...
On April 12, 2022, GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and...
Community Feature - @SteveD3There has been a noticeable uptick in the number of Fake Anti-Virus (Fake AV) phishing pages in Q1 2022. During his normal daily phishing scans, in the first quarter...