Russian-Linked Hackers Target Eastern European NGOs and Media
Russian and Belarusian non-profit organizations, Russian independent media, and international non-governmental organizations active in Eastern Europe have become the target of two separate spear-phishing campaigns orchestrated by threat actors whose interests align with that of the Russian government.
While one of the campaigns – dubbed River of Phish – has been attributed to COLDRIVER, an
While one of the campaigns – dubbed River of Phish – has been attributed to COLDRIVER, an
Palo Alto Networks Patches Unauthenticated Command Execution Flaw in Cortex XSOAR
Palo Alto Networks has patched multiple vulnerabilities, including ones rated high severity, in several products.
The post Palo Alto Networks Patches Unauthenticated Command Execution Flaw in Cortex XSOAR appeared first on SecurityWeek.
Identity Threat Detection and Response Solution Guide
The Emergence of Identity Threat Detection and Response
Identity Threat Detection and Response (ITDR) has emerged as a critical component to effectively detect and respond to identity-based attacks. Threat actors have shown their ability to compromise the identity infrastructure and move laterally into IaaS, Saas, PaaS and CI/CD environments. Identity Threat Detection and Response solutions help
Identity Threat Detection and Response (ITDR) has emerged as a critical component to effectively detect and respond to identity-based attacks. Threat actors have shown their ability to compromise the identity infrastructure and move laterally into IaaS, Saas, PaaS and CI/CD environments. Identity Threat Detection and Response solutions help
Russian Sentenced to Prison in US for Selling Stolen Information
Georgy Kavzharadze was sentenced to prison in the US for selling stolen financial, login, and personal information on an online cybercriminal marketplace.
The post Russian Sentenced to Prison in US for Selling Stolen Information appeared first on SecurityWeek.
RansomHub Group Deploys New EDR-Killing Tool in Latest Cyber Attacks
A cybercrime group with links to the RansomHub ransomware has been observed using a new tool designed to terminate endpoint detection and response (EDR) software on compromised hosts, joining the likes of other similar programs like AuKill (aka AvNeutralizer) and Terminator.
The EDR-killing utility has been dubbed EDRKillShifter by cybersecurity company Sophos, which discovered the tool in
The EDR-killing utility has been dubbed EDRKillShifter by cybersecurity company Sophos, which discovered the tool in
AutoCanada Hit by Cyberattack
AutoCanada has disclosed a disruptive cybersecurity incident after also being impacted by the recent CDK Global ransomware attack.
The post AutoCanada Hit by Cyberattack appeared first on SecurityWeek.
Google Confirms an Iranian Group Is Trying to Access Emails Linked to Both US Presidential Campaigns
Google said an Iranian hacking group has tried to infiltrate the personal email accounts of roughly a dozen people linked to President Joe Biden and former President Donald Trump since May.
The post Google Confirms an Iranian Group Is Trying to Access Emails Linked to Both US Presidential Campaigns appeared first on SecurityWeek.
GitHub Makes Copilot Autofix Generally Available
GitHub has made AI-powered Copilot Autofix generally available to help developers fix code vulnerabilities faster.
The post GitHub Makes Copilot Autofix Generally Available appeared first on SecurityWeek.
Mayor of Columbus, Ohio, Says Ransomware Attackers Stole Corrupted, Unusable Data
Hackers recently stole data from Ohio’s largest city, but what they got was not usable and no personal information about city workers was made available online, the mayor said.
The post Mayor of Columbus, Ohio, Says Ransomware Attackers Stole Corrupted, Unusable Data appeared first on SecurityWeek.