In a recent coordinated effort, the US Federal Bureau of Investigation (FBI)
dismantled a notorious Russian malware operation known for data theft by
employing a self-destruct command. The operation used the formidable Snake
malware to penetrate systems and exfiltrate sensitive information from various
sectors.

The Snake malware, also identified as Turla or Uroburos, has posed a constant
danger since it emerged in 2003. Analysts have connected the operation to
Russia’s Federal Security Service

Starting April 24, 2023, businesses or individuals acting in the exercise of
their professional activities can receive compensation from their insurer for
losses and damages caused by a breach, according to (article L12-10-1 of the
French Insurance Code
[https://www.legifrance.gouv.fr/codes/id/LEGISCTA000047048148][1]
[https://www.twobirds.com/en/insights/2023/france/data-breaches-and-insurance-coverage-in-france#section1]
).

Initially, the bill dealt specifically with insurance for ransom foll

Ransomware remains one of the biggest cyber threats that organizations and governments continue to face. However, hackers are engineering new ways to extract ransom from their victims as organizations take a conscious call to decline ransom payment demands.

With the fall of the most notorious ransomware gang Conti in May 2022, it was assumed that ransomware attacks would see a major decline. However, Tenable found that 35.5% of breaches in 2022 were the result of a ransomware attack, a minor 2.5% decrease from 2021. Similarly, in the fourth quarter of 2022 ransomware victim count declined by 5.1% versus the third quarter, according to Trend Micro.

To read this article in full, please click here

Microsoft has rolled out Patch Tuesday updates for May 2023 to address 38 security flaws, including one zero-day bug that it said is being actively exploited in the wild.
Trend Micro’s Zero Day Initiative (ZDI) said the volume is the lowest since August 2021, although it pointed out that “this number is expected to rise in the coming months.”
Of the 38 vulnerabilities, six are rated Critical and

Microsoft Patch Tuesday Security updates for May 2023 address a total of 40 vulnerabilities, including two zero-day actively exploited in attacks. Microsoft’s May 2023 security updates address 40 vulnerabilities, including two zero-day flaws actively exploited in attacks. The flaws affect Microsoft Windows and Windows Components; Office and Office Components; Microsoft Edge (Chromium-based); SharePoint Server; Visual […]

The post Microsoft Patch Tuesday for May 2023 fixed 2 actively exploited zero-day flaws appeared first on Security Affairs.