The US Department of Justice (DoJ) recently indicted a Russian national accused
of orchestrating the “WhisperGate” wiper attack on Ukrainian government
computers. The attack destroyed vital infrastructure systems before Russia
invaded the European country.

22-year-old Amin Stigal is believed to have ties with the Russian Military
Intelligence (GRU).

Suspect Used Data Wiping Malware Against Ukrainian Targets
“In advance of the full-scale Russian invasion of Ukraine, targets included
Ukrainian G

Prin mini-seria noastră de articole Cybersecurity Grand Prix, explorăm emoția
curselor de Formula 1 prin parteneriatul nostru cu Scuderia Ferrari HP și îți
oferim totodată cunoștințele și instrumentele de care ai nevoie pentru a-ți
menține datele în siguranță în cursa împotriva amenințărilor cibernetice.

Douăzeci de mașini F1. Cinci lumini roșii. Reflexe ultra-rapide. Startul unui
Grand Prix de Formula 1 este un moment esențial care poate influența masiv
rezultatul unei curse. Așteptând în cock

Cybersecurity researchers have disclosed a high-severity security flaw in the Vanna.AI library that could be exploited to achieve remote code execution vulnerability via prompt injection techniques.
The vulnerability, tracked as CVE-2024-5565 (CVSS score: 8.1), relates to a case of prompt injection in the “ask” function that could be exploited to trick the library into executing arbitrary

A 22-year-old Russian national has been indicted in the U.S. for his alleged role in staging destructive cyber attacks against Ukraine and its allies in the days leading to Russia’s full-blown military invasion of Ukraine in early 2022.
Amin Timovich Stigal, the defendant in question, is assessed to be affiliated with the Main Directorate of the General Staff of the Armed Forces of the Russian

Four alleged members of the FIN9 cybercrime gang have been charged in relation
to a series of hacks that caused over US $71 million of losses for companies
across the United States.

The defendants, all Vietnamese nationals, are accused of launching a series of
sophisticated phishing and supply-chain attacks to gain unauthorised access to
company networks, in order to steal sensitive information.

As the US Department of Justice describes
[https://www.justice.gov/usao-nj/pr/four-members-notoriou

A critical security flaw has been disclosed in Fortra FileCatalyst Workflow that, if left unpatched, could allow an attacker to tamper with the application database.
Tracked as CVE-2024-5276, the vulnerability carries a CVSS score of 9.8. It impacts FileCatalyst Workflow versions 5.1.6 Build 135 and earlier. It has been addressed in version 5.1.6 build 139.
“An SQL injection vulnerability in

Researchers warn that the P2Pinfect worm is targeting Redis servers with ransomware and cryptocurrency mining payloads. Cado Security researchers warned that the P2Pinfect worm is employed in attacks against Redis servers, aimed at deploying both ransomware and cryptocurrency mining payloads. In July 2023, Palo Alto Networks Unit 42 researchers first discovered the P2P worm P2PInfect that targets Redis servers […]