A new report released by Palo Alto Networks' Unit 42 delves into how the BianLian ransomware group operates as it evolves to focus primarily on the healthcare and manufacturing sectors, as well as the US and Europe.

According to Check Point Research's annual review, organizations faced a significant increase in cyberattacks in 2023. Specifically, one out of every ten companies suffered a cyberattack last year, which was 33 percent higher than in 2022.

Two malicious packages on the NPM package registry use GitHub to store Base64-encrypted SSH keys stolen from developer systems. One module was downloaded 412 times, and the other was downloaded 1,281 times before being removed by the NPM maintainers.

The Black Basta ransomware gang says it hacked Southern Water, a major player in the UK's water industry.

Laurie Mercer, a security architect at HackerOne, emphasizes that no company is invulnerable to cyberattacks. However, when an attack occurs, many companies continue to stay silent.

The Australian government has publicly named Aleksandr Ermakov, 33, a Russian cybercriminal, as responsible for the Medibank data breach, which affected 9.7 million people.

Researchers from Aqua Security's Team Nautilus conducted a statistical analysis of the top 50,000 most downloaded packages in the NPM registry, revealing that users download deprecated packages an estimated 2.1 billion times per week.

In October, VMware patched a critical Remote Code Execution (RCE) vulnerability in its vCenter Server and Cloud Foundation enterprise products.

Hackers are delivering information-stealing malware to macOS users through Domain Name System (DNS) records that hide malicious scripts.

One Traffic Distribution System (TDS) operator with over 70,000 domains is facilitating unprecedented levels of scams, phishing, and malware infections.

According to IT consultancy Tietoery, online services at some Swedish government agencies and shops have been disrupted in a ransomware attack believed to have been carried out by a Russian hacker group.

Sandwich chain Subway has recently launched an investigation after the notorious LockBit ransomware group claimed over the weekend that it hacked into the company’s systems and stole vast amounts of information.