Researchers released PoC exploit for Ivanti Sentry flaw CVE-2023-38035
Proof-of-concept exploit code for critical Ivanti Sentry authentication bypass flaw CVE-2023-38035 has been released. Researchers released a proof-of-concept (PoC) exploit…
Security
Lazarus APT exploits Zoho ManageEngine flaw to target an Internet backbone infrastructure provider
The North Korea-linked Lazarus group exploits a critical flaw in Zoho ManageEngine ServiceDesk Plus to deliver the QuiteRAT malware. The…
Act Now to Prepare for New NCUA Cyber Incident Reporting Requirements
We recently discussed the new SEC rule requiring all registered companies to report material cyber incidents within four (4) days.…
Parmesan Anti-Forgery Protection
The Guardian is reporting about microchips in wheels of Parmesan cheese as an anti-forgery measure.
Lapsus$ member has been convicted of having hacked multiple high-profile companies
An 18-year-old member of the Lapsus$ gang has been convicted of having helped hack multiple high-profile companies. A teenage member…
More than 3,000 Openfire servers exposed to attacks using a new exploit
Researchers warn that more than 3,000 unpatched Openfire servers are exposed to attacks using an exploit for a recent flaw.…
DoJ charged Tornado Cash founders with laundering more than $1 billion
The U.S. DoJ charged two men with operating the Tornado Cash service and laundering more than $1 Billion in criminal…
FBI identifies wallets holding cryptocurrency funds stolen by North Korea
The U.S. FBI warned that North Korea-linked threat actors may attempt to cash out stolen cryptocurrency worth more than $40…
December’s Reimagining Democracy Workshop
Imagine that we’ve all—all of us, all of society—landed on some alien planet, and we have to form a government:…