Advance Auto Parts is sending data breach notifications to over 2.3 million people whose personal data was stolen in recent Snowflake data theft attacks. […]
Category Archives: Security
Auto Added by WPeMatico
The seemingly legitimate online marketplace Huione Guarantee is being used as a platform for laundering money from online scams, especially “pig butchering” investment fraud, researchers say. […]
GitLab warned today that a critical vulnerability in its product’s GitLab Community and Enterprise editions allows attackers to run pipeline jobs as any other user. […]
The latest variants of the ViperSoftX info-stealing malware use the common language runtime (CLR) to load and execute PowerShell commands within AutoIt scripts to evade detection. […]
CISA and the FBI urged software companies on Wednesday to review their products and eliminate path OS command injection vulnerabilities before shipping. […]
Japan’s Computer Emergency Response Team Coordination Center (JPCERT/CC) is warning that Japanese organizations are being targeted in attacks by the North Korean ‘Kimsuky’ threat actors. […]
7-zip, Advanced IP Scanner, AIMP, AnyDesk, AutoDesk, Bastion Secure, Bitwarden, Blackberry, Combi Security, eSentire, Fin7, Krebs, Malwarebytes, Microsoft, Ne'er-Do-Well News, News, Node.js, Notepad, pgAdmin, ProDaft, ProtectedPDFViewer, PuTTY, Python, ransomware, Rest Proxy, Russia's War on Ukraine, Security, Silent Push, spearphishing, Stark Industries Solutions, Sublime Text, typosquatting, Web Fraud 2.0, Zach Edwards
The Stark Truth Behind the Resurgence of Russia’s Fin7
10
Jul
Jul
The Russia-based cybercrime group dubbed “Fin7,” known for phishing and malware attacks that have cost victim organizations an estimated $3 billion in losses since 2013, was declared dead last year by U.S. authorities. But experts say Fin7 has roared back to life in 2024 — setting up thousands of websites mimicking a range of media […]
Microsoft fixed a Windows zero-day vulnerability that has been actively exploited in attacks for eighteen months to launch malicious scripts while bypassing built-in security features. […]
A large-scale fraud campaign with over 700 domain names is likely targeting Russian-speaking users looking to purchase tickets for the Summer Olympics in Paris. […]
Google announced today that passkeys are now available for high-risk users when enrolling in the Advanced Protection Program, which provides the strongest level of account security. […]