VMware released security updates to fix critical sandbox escape vulnerabilities in VMware ESXi, Workstation, Fusion, and Cloud Foundation products, allowing attackers to escape virtual machines and access the host operating system. […]
Category Archives: Security
Auto Added by WPeMatico
VMware and Apple rush out security updates, a new ScreenConnect malware is found, and more. Welcome to Cyber Security Today. It’s Wednesday, March 6th, 2024. I’m Howard Solomon, contributing reporter on cybersecurity for ITWorldCanada.com and TechNewsday.com in the U.S. VMware has pushed out security updates to close four vulnerabilities in major products. They must […]
Hackers are targeting misconfigured servers running Apache Hadoop YARN, Docker, Confluence, or Redis with new Golang-based malware that automates the discovery and compromise of the hosts. […]
Kaseya, a provider of unified IT management and security software for managed service providers (MSPs) and small to midsize business (SMBs), today released its 2024 MSP Benchmark Report, which surveyed close to 1,000 MSPs from the Americas, EMEA (Europe, Middle East and Africa) and APAC (Asia Pacific) regions and includes responses from both IT professionals […]
A Little Sunshine, ALPHV ransomware, BlackCat ransomware, Change Healthcare, Data Breaches, Dmitry Smilyanets, Emsisoft, Fabian Wosar, fbi, Krebs, LockBit, NCA, News, Optum, RAMP, ransomware, Recorded Future, Security, wired.com
BlackCat Ransomware Group Implodes After Apparent $22M Payment by Change Healthcare
There are indications that U.S. healthcare giant Change Healthcare has made a $22 million extortion payment to the infamous BlackCat ransomware group (a.k.a. “ALPHV“) as the company struggles to bring services back online amid a cyberattack that has disrupted prescription drug services nationwide for weeks. However, the cybercriminal who claims to have given BlackCat access […]
The National Security Agency is sharing new guidance to help organizations limit an adversary’s movement on the internal network by adopting zero-trust framework principles. […]
Apple released emergency security updates to fix two iOS zero-day vulnerabilities that were exploited in attacks on iPhones. […]
Canada’s national anti-money laundering agency has been hit by a cyber attack. The Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) said Tuesday that over the last 24 hours it has been managing a cyber incident. “The incident does not involve the centre’s intelligence or classified systems,” it said in a statement. “As a […]
A new malware dubbed ‘WogRAT’ targets both Windows and Linux in attacks abusing an online notepad platform named ‘aNotepad’ as a covert channel for storing and retrieving malicious code. […]
The U.S. has imposed sanctions on two individuals and five entities linked to the development and distribution of the Predator commercial spyware used to target Americans, including government officials and journalists. […]