-
"MetroHealth Data Breach Involved 1700 Patients"The MetroHealth System in Cleaveland, Ohio, recently discovered that it had been the victim of a data breach involving 1700 of its patients. In a recent statement, MetroHealth announced that on November 13, while the health system’s electronic…
-
"Elementor Fixes Critical Bug in Popular WordPress Plugin"The developer of a popular WordPress plugin has updated its product to fix a critical vulnerability that could be exploited to change the appearance of websites. Elementor is marketed as a leading website building platform for WordPress, enabling…
-
"OldGremlin Ransomware Gang Targets Russia With New Malware"A cybercriminal group called OldGremlin has returned after a hiatus of more than one year. The group is known to be highly skilled in running carefully planned and scattered campaigns. OldGremlin is different from other ransomware operations because of…
-
"Researchers Find Security Flaw in Rarible: Users Could Have Lost All Their NFTs"Researchers at Check Point have identified a vulnerability in the Rarible Non-Fungible Token (NFT) marketplace, which could have resulted in nearly two million active users losing their NFTs in one transaction. An NFT is defined as a unit of data stored…
-
"US Warns of State-Backed Malware Designed to Hijack Critical Infrastructure Systems"An advisory, recently published jointly by the Cybersecurity and Infrastructure Security Agency (CISA), the FBI, NSA, and the Department of Energy, warns that threat actors have developed a custom toolkit that enables them to scan for, compromise, and…
-
"Justice Department Seizes Major Cybercrime Spot RaidForums"The Department of Justice (DOJ) seized the popular online cybercriminal marketplace RaidForums. The takedown is the latest massive sweep by the U.S. government and international law enforcement partners of online marketplaces where hackers buy and…
-
"Spring Framework Flaw Exploited in Mirai Malware Attacks"A high-severity Remote Code Execution (RCE) vulnerability previously discovered in the Spring framework has been exploited by hackers since April to deploy the Mirai botnet malware on vulnerable devices in a likely attempt to execute Distributed Denial-…
-
"DHS Investigators Say They Foiled Cyberattack on Undersea Internet Cable in Hawaii"Last week, Hawaii-based agents with Homeland Security Investigations (HSI), an arm of the Department of Homeland security (DHS), “disrupted” an apparent cyberattack on an unnamed telecommunication company’s servers associated with an underwater cable…
-
"FIU and UAlbany Researchers Team Up to Launch $1.5 Million Virtual Cybersecurity Institute"
An interdisciplinary group of researchers from Florida International University and the University at Albany will co-lead a new $1.5 million virtual institute aimed at training the next generation of cybersecurity professionals for military and civilian…
-
"Microsoft Fixes Actively Exploited Zero-Day Reported by the NSA"
Microsoft has released patches for 128 CVE-numbered vulnerabilities. One of the vulnerabilities is a zero-day that has been exploited in the wild. A Proof of Concept (PoC) and a Metasploit module is already available for another vulnerability. The zero-…
-
"Flaws in ABB Network Interface Modules Expose Industrial Systems to DoS Attacks"
The industrial technology giant ABB is working on patches for high-severity vulnerabilities affecting Symphony Plus SPIET800 and PNI800, which are network interface modules implemented to enable communications between a control network and a host…
-
"Ukrainian Energy Supplier Targeted by New Industroyer Malware"
Security researchers from cybersecurity vendor ESET in collaboration with the Ukrainian Computer Emergency Response Team (CERT-UA), have found that a Ukrainian energy supplier was targeted by a new variant of Industroyer malware named Industroyer2.…
News