Healthcare software as a service (SaaS) company Phreesia is notifying over 910,000 people that their personal and health data was exposed in a May breach of its subsidiary ConnectOnCall. […]
Rhode Island confirms data breach after Brain Cipher ransomware attack
Rhode Island is warning that its RIBridges system, managed by Deloitte, suffered a data breach exposing residents’ personal information after the Brain Cipher ransomware gang hacked its systems. […]
BlackBerry Sells Cylance to Arctic Wolf for $160 Million After Buying It for $1.4 Billion
Security operations firm Arctic Wolf has acquired Cylance from BlackBerry for $160 million in cash and 5.5 million common shares.
The post BlackBerry Sells Cylance to Arctic Wolf for $160 Million After Buying It for $1.4 Billion appeared first on SecurityWeek.
New Android NoviSpy spyware linked to Qualcomm zero-day bugs
The Serbian government exploited Qualcomm zero-days to unlock and infect Android devices with a new spyware named ‘NoviSpy,’ used to spy on activists, journalists, and protestors. […]
Citrix Warns of Password Spraying Attacks Targeting NetScaler Appliances
Citrix issues warning on password spraying attacks targeting NetScaler and NetScaler Gateway appliances deployed by organizations worldwide.
The post Citrix Warns of Password Spraying Attacks Targeting NetScaler Appliances appeared first on SecurityWeek.
DeceptionAds Delivers 1M+ Daily Impressions via 3,000 Sites, Fake CAPTCHA Pages
Cybersecurity researchers have shed light on a previously undocumented aspect associated with ClickFix-style attacks that hinge on taking advantage of a single ad network service as part of a malvertising-driven information stealer campaign dubbed DeceptionAds.
“Entirely reliant on a single ad network for propagation, this campaign showcases the core mechanisms of malvertising — delivering over
“Entirely reliant on a single ad network for propagation, this campaign showcases the core mechanisms of malvertising — delivering over
Undocumented DrayTek Vulnerabilities Exploited to Hack Hundreds of Orgs
Undocumented vulnerabilities in DrayTek devices were exploited in ransomware campaigns that compromised over 300 organizations.
The post Undocumented DrayTek Vulnerabilities Exploited to Hack Hundreds of Orgs appeared first on SecurityWeek.
Major Auto Parts Firm LKQ Hit by Cyberattack
LKQ, a major provider of auto parts, told the SEC that a recent cyberattack caused disruptions at a Canadian business unit.
The post Major Auto Parts Firm LKQ Hit by Cyberattack appeared first on SecurityWeek.
SRP Federal Credit Union Ransomware Attack Impacts 240,000
SRP Federal Credit Union says the personal information of 240,000 was stolen in a recent cyberattack claimed by a ransomware gang.
The post SRP Federal Credit Union Ransomware Attack Impacts 240,000 appeared first on SecurityWeek.
CVE Assigned to Cleo Vulnerability as Cl0p Ransomware Group Takes Credit for Exploitation
The Cl0p ransomware group has taken credit for exploitation of the Cleo product vulnerability tracked as CVE-2024-55956.
The post CVE Assigned to Cleo Vulnerability as Cl0p Ransomware Group Takes Credit for Exploitation appeared first on SecurityWeek.