SEARCH
All Articles
Citrix Warns of Critical NetScaler Console Flaw
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and Citrix are urging users and administrators to apply updates for the flaw.
US, Australian Governments: APT40 Poses Ongoing Threat
APT40 has jumped on these flaws days or even hours within public release, warned a new advisory by CISA, the Australian government and others.
How to Unearth Ransomware, Infostealer Trends From Malicious Domain Data
Ben Nahorney, threat intelligence analyst with Cisco, talks about how his team digs into malicious DNS activity to unearth new insights about how threat actors are using infostealers, ransomware and trojans.
New OpenSSH CVE-2024-6409 Flaw Emerges
A week after the disclosure of the regreSSHion CVE-2024-6387 flaw in OpenSSH, researchers have found a related flaw (CVE-2024-6409) in some recent versions of the library.
Decipher Podcast: Chris Hughes
Chris Hughes, co-founder of Aquia and a Cyber Innovation Fellow at the Cybersecurity and Infrastructure Security Agency, joins Dennis Fisher to talk about the challenges of supply chain security, working with the government to address systemic issues, and the importance of collaboration.
New Eldorado Ransomware Hits Windows, Linux Systems
Researchers have discovered the Eldorado group, which they said has developed and deployed a “highly effective” ransomware builder used to target both Windows and Linux systems.
TeamViewer Ties Cyberattack to Russian APT29 Group
After disclosing a security incident on Thursday, remote access software company TeamViewer on Friday said that the attack was “tied to credentials of a standard employee account” within its Corporate IT environment.
Exploit Code Released For Fortra SQL Injection Bug
Fortra disclosed a critical-severity SQL injection flaw in FileCatalyst Workflow, and researchers have also published a proof-of-concept exploit code for the bug.
Researchers Warn of Widespread Polyfill Supply Chain Attack
The popular polyfill.io JavaScript library has been used to inject malicious code into thousands of sites in the last few days.
Cisco Talos: How Threat Actors Target MFA
According to the latest Cisco Talos Incident Response Quarterly Trends report, instances related to MFA were involved in some capacity in half of all security incidents that the Talos team responded to in the first quarter of 2024.
Critical MOVEit Authentication Bypass Flaws Fixed
The flaws include a critical-severity MOVEit Transfer authentication bypass bug (CVE-2024-5806).
Chinese APT Moves to Ransomware in Some Intrusions
A Chinese APT known as ChamelGang has been deploying the CatB ransomware in some intrusions around the world.
European Council Sanctions Individuals Tied to Conti, Trickbot
The European Council has sanctioned six individuals allegedly tied to the Wizard Spider, Armageddon and Callisto threat groups.
Decipher Podcast: Metin Kortak
Metin Kortak, CISO with Rhymetec, talks about how organizations are approaching data privacy and security compliance, and thinking about risk management policies, when it comes to generative AI in the workplace.
Serious Flaws Fixed in ExpressionEngine CMS
Packet Tide has fixed a group of XSS vulnerabilities and an open HTTP redirection bug in its ExpressionEngine content management system, some of which could give an attacker admin access.