CISA and other Western security agencies have shared guidance for OT owners and operators when procuring products.
The post Western Security Agencies Share Advice on Selecting OT Products appeared first on SecurityWeek.
Compromised AWS Keys Abused in Codefinger Ransomware Attacks
A ransomware group tracked as Codefinger is using compromised AWS keys to encrypt S3 bucket data using SSE-C.
The post Compromised AWS Keys Abused in Codefinger Ransomware Attacks appeared first on SecurityWeek.
CISA, JCDC, Government and Industry Partners Publish AI Cybersecurity Collaboration Playbook
CISA Warns of Second BeyondTrust Vulnerability Exploited in Attacks
Attackers have been exploiting a second vulnerability in BeyondTrust’s remote management solutions, CISA warns.
The post CISA Warns of Second BeyondTrust Vulnerability Exploited in Attacks appeared first on SecurityWeek.
Many Ivanti VPNs Still Unpatched as UK Domain Registry Emerges as Victim of Exploitation
Many Ivanti VPNs are still exposed to attacks exploiting a recent vulnerability tracked as CVE-2025-0282 and Nominet has been named as a victim.
The post Many Ivanti VPNs Still Unpatched as UK Domain Registry Emerges as Victim of Exploitation appeared first on SecurityWeek.
Critical Aviatrix Controller Vulnerability Exploited Against Cloud Environments
Attackers are exploiting a critical vulnerability in Aviatrix Controller to execute arbitrary code in AWS cloud environments.
The post Critical Aviatrix Controller Vulnerability Exploited Against Cloud Environments appeared first on SecurityWeek.
4 Reasons Your SaaS Attack Surface Can No Longer be Ignored
What do identity risks, data security risks and third-party risks all have in common? They are all made much worse by SaaS sprawl. Every new SaaS account adds a new identity to secure, a new place where sensitive data can end up, and a new source of third party risk. Learn how you can protect this sprawling attack surface in 2025.
What do identity risks, data security risks and third-party
Illicit HuiOne Telegram Market Surpasses Hydra, Hits $24 Billion in Crypto Transactions
The Telegram-based online marketplace known as HuiOne Guarantee and its vendors have cumulatively received at least $24 billion in cryptocurrency, dwarfing the now-defunct Hydra to become the largest online illicit marketplace to have ever operated.
The figures, released by blockchain analytics firm Elliptic, show that monthly inflows have increased by 51% since July 2024.
Huione Guarantee, part
The figures, released by blockchain analytics firm Elliptic, show that monthly inflows have increased by 51% since July 2024.
Huione Guarantee, part
Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces
Threat hunters are calling attention to a new campaign that has targeted Fortinet FortiGate firewall devices with management interfaces exposed on the public internet.
“The campaign involved unauthorized administrative logins on management interfaces of firewalls, creation of new accounts, SSL VPN authentication through those accounts, and various other configuration changes,” cybersecurity firm
“The campaign involved unauthorized administrative logins on management interfaces of firewalls, creation of new accounts, SSL VPN authentication through those accounts, and various other configuration changes,” cybersecurity firm
Infostealer Infections Lead to Telefonica Ticketing System Breach
Infostealer malware allowed threat actors to compromise Telefonica employees’ credentials and access the company’s internal ticketing system.
The post Infostealer Infections Lead to Telefonica Ticketing System Breach appeared first on SecurityWeek.