Ivanti VPN Flaw Exploited to Inject Novel Backdoor; Hundreds Pwned
A SAML vulnerability in Ivanti appliances has led to persistent remote access and full control for opportunistic cyberattackers.
News & Updates
News & Updates
Islamic Nonprofit Infiltrated for 3 Years With Silent Backdoor
Saudi Arabia charity was under surveillance with the modified reverse proxy tool, researchers discovered.
News & Updates
Aircraft Leasing Company Acknowledges Cyberattack in SEC Filing
Black Basta ransomware claimed responsibility, but the company says its investigation is ongoing.
News & Updates
Middle East & Africa CISOs Plan to Increase 2024 Budgets by 10%
New data shows higher-than-expected cybersecurity growth in the Middle East, Turkey, and Africa region, thanks to AI and other factors.
News & Updates
Ivanti Gets Poor Marks for Cyber Incident Response
Cascading critical CVEs, cyberattacks, and delayed patching are plaguing Ivanti VPNs, and forcing cybersecurity teams to scramble for solutions. Researchers are unimpressed.
News & Updates
BofA Warns Customers of Data Leak in Third-Party Breach
An attack on a technology partner claimed by LockBit ransomware exposed sensitive information, including Social Security numbers, of more than 57,000 banking customers.
News & Updates
CISO and CIO Convergence: Ready or Not, Here It Comes
Recent shifts underscore the importance of collaboration and alignment between these two IT leaders for successful digital transformation.
News & Updates
Raspberry Robin Jumps on 1-Day Bugs to Nest Deep in Windows Networks
The developers behind a widespread worm are nesting further into networks by exploiting Windows escalation opportunities faster than organizations can patch them.
Security
Friday Squid Blogging: Vegan Squid-Ink Pasta
It uses black beans for color and seaweed for flavor. As usual, you can also use this squid post to
Security
CISA adds Microsoft Exchange and Cisco ASA and FTD bugs to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Exchange and Cisco ASA and FTD bugs to its Known Exploited