Network SecurityPalo Alto Expedition bug with 9.3 rating exploited by attackers, CISA warnsSteve ZurierNovember 8, 2024CISA urges security teams to run the patch right away and don’t let devices running Palo Alto Expedition software on the public internet.
Cloud SecurityMalicious Python package collects AWS credentials via 37,000 downloadsSteve ZurierNovember 7, 2024Socket researchers say malicious package "Fabrice" has been live on PyPI since 2021.
IdentityGoogle Cloud mandates MFA by end of 2025Steve ZurierNovember 6, 2024Security pros says the move to make MFA mandatory is long overdue.
Network SecurityDocuSign’s API used to lure victims into e-signing fake invoicesSteve ZurierNovember 5, 2024Researchers say they’ve seen continued reports of these automated email campaigns on the DocuSign community forums for the past five months.
RansomwareRhysida ransomware attack on Columbus claimed 500K victimsSteve ZurierNovember 4, 2024Columbus, Ohio, confirms 500,000 residents affected after dropping lawsuit against whistleblower.
IdentityMicrosoft credentials pilfered by APT Storm via botnet spray-and-pray router attackSteve ZurierNovember 1, 2024Password spray attacks on compromised SOHO routers underscore the need for security pros to lock down remote workers.
Cloud SecurityEmeraldWhale steals 15,000 credentials from exposed Git configurationsSteve ZurierOctober 31, 2024In a twist, more than 1 terabyte of data was stored in the S3 bucket of a previous victim.
Network SecurityMidnight Blizzard uses RDP to target 100 organizations in US, EuropeSteve ZurierOctober 30, 2024The Russian nation-state actor continues its espionage activities, using RDP to access sensitive information or drop malicious code.
Vulnerability ManagementIntel and AMD chips still vulnerable to Spectre flawSteve ZurierOctober 29, 2024New research finds that six years later, AMD and Intel processors can still be hit with speculative execution attacks.
NetworkingWindows Update takeover lets an attacker revive a patched flawSteve ZurierOctober 28, 2024SafeBreach argues that Microsoft’s narrow definition of a flaw leaves the Windows kernel open to attacks.
