Blog
US-Canada International Joint Commission for Managing Lake and River Systems Suffers Cyberattack
On Wednesday, an ICJ spokesperson confirmed that it was dealing with a cybersecurity issue but declined to elaborate on whether law enforcement has been contacted or if the organization was facing operational issues.
Rollbar Discloses Data Breach After Hackers Stole Access Tokens
While inside Rollbar's servers, attackers accessed sensitive customer information, including usernames and email addresses, account names, and project information, such as environment names and service link configuration.
White House Urging Dozens of Countries to Publicly Commit to Not Pay Ransoms
The U.S. National Security Council (NSC) is urging the governments of all countries participating in the International Counter Ransomware Initiative (CRI) to issue a joint statement announcing they will not pay ransoms to cybercriminals.
RedLine and Vidar Stealers Abuse EV Certificates, Shift to Ransomware Payloads
Threat actors are using EV code signing certificates to distribute both information-stealing malware and ransomware, indicating a streamlining of operations and the need for stronger security measures.
SAP Patches Critical Vulnerability Impacting NetWeaver, S/4HANA
Five of the SAP security notes released this month are rated ‘hot news’, the German software company’s highest rating. Three of them, however, are updates for previously released security notes.
Microsoft Uncovers Flaws in ncurses Library Affecting Linux and macOS Systems
A set of memory corruption flaws have been discovered in the ncurses (short for new curses) programming library that could be exploited by threat actors to run malicious code on vulnerable Linux and macOS systems. "Using environment variable poisoning, attackers could...
Intel Capital Bets on Zenity for Low-Code/No-Code Security
Zenity said the Series A financing was led by Intel Capital and included new investors from Gefen Capital and B5. Existing backers Vertex Ventures and Upwest also expanded equity stakes.
Free Download Manager Site Compromised to Distribute Linux Malware to Users for 3+ Years
A download manager site served Linux users malware that stealthily stole passwords and other sensitive information for more than three years as part of a supply chain attack. The modus operandi entailed establishing a reverse shell to an actor-controlled server and...
Avoid These 5 IT Offboarding Pitfalls
Employee offboarding is no one’s favorite task, yet it is a critical IT process that needs to be executed diligently and efficiently. That’s easier said than done, especially considering that IT organizations have less visibility and control over employees’ IT use...
Class Action Lawsuit Against Capita Attracts 2,000 Claimants in Wake of Data Theft
The number of claimants in a class action lawsuit against Capita, a UK company, is increasing following a cybersecurity breach in March. Manchester-based law firm, Barings Law, sent a legal letter to Capita in June after receiving numerous enquiries.
FREE GUIDE