A web skimmer was likely used to steal names and payment card data from the Oregon Zoo’s online ticketing service.
The post Oregon Zoo Ticketing Service Hack Impacts 118,000 appeared first on SecurityWeek.
Category Added in a WPeMatico Campaign
100,000 Impacted by Jewish Home Lifecare Data Breach
A Jewish Home Lifecare data breach resulting from a BlackCat ransomware attack impacts over 100,000 individuals.
The post 100,000 Impacted by Jewish Home Lifecare Data Breach appeared first on SecurityWeek.
Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign
Security researchers at Palo Alto Networks discover a threat actor extorting organizations after compromising their cloud environments using inadvertently exposed environment variables.
The post Cloud Misconfigurations Expose 110,000 Domains to Extortion in Widespread Campaign appeared first on SecurityWeek.
In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack
Noteworthy stories that might have slipped under the radar: there are 400 CVE Numbering Authorities, crash reports can be a valuable source of information, and Schlatter was hit by a cyberattack.
The post In Other News: 400 CNAs, Crash Reports, Schlatter Cyberattack appeared first on SecurityWeek.
Consolidation vs. Optimization: Which Is More Cost-Effective for Improved Security?
Security leaders are facing big decisions about how they use their monetary and people resources to better secure their environments.
The post Consolidation vs. Optimization: Which Is More Cost-Effective for Improved Security? appeared first on SecurityWeek.
Western, Russian Civil Society Targeted in Sophisticated Phishing Attacks
Multiple Russian, Belarusian, and Western entities perceived as Russia’s enemies have been targeted in two recent spear-phishing campaigns.
The post Western, Russian Civil Society Targeted in Sophisticated Phishing Attacks appeared first on SecurityWeek.
New Banshee Stealer macOS Malware Priced at $3,000 Per Month
Russian cybercriminals are advertising a new macOS malware, Banshee Stealer, capable of stealing passwords, browser data, and crypto wallets.
The post New Banshee Stealer macOS Malware Priced at $3,000 Per Month appeared first on SecurityWeek.
SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day
The US cybersecurity agency CISA warns that a recent SolarWinds Web Help Desk vulnerability has been exploited in the wild.
The post SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day appeared first on SecurityWeek.
Copy2Pwn Zero-Day Exploited to Bypass Windows Protections
ZDI details a zero-day named Copy2Pwn and tracked as CVE-2024-38213, which cybercriminals exploited to bypass MotW protections in Windows.
The post Copy2Pwn Zero-Day Exploited to Bypass Windows Protections appeared first on SecurityWeek.
Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw
Security experts are ratcheting up the urgency for Windows admins to patch a wormable, pre-auth remote code execution vulnerability in the Windows TCP/IP stack.
The post Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw appeared first on SecurityWeek.