CISA, FBI, HHS, and MS-ISAC released a joint Cybersecurity Advisory called #StopRansomware: Black Basta. It provides tactics, techniques, procedures, and indicators of compromise used by Black Basta ransomware affiliates, identified through FBI investigations and third-party reporting. Black Basta is a type of ransomware called ransomware-as-a-service (RaaS). It was discovered in …
Read More »ALERT CISA WARNS
Cyber Attack On Data Center Cooling Systems results disruption
According to cybersecurity analysts at Dragos, while cloud adoption offers many benefits for industrial companies , it also poses certain risks. The core operational risks relate to interruptions in data center cooling systems. Data centers use building automation and management systems (BAS/BMS) to control important aspects like temperature. Places like …
Read More »Chrome Zero-Day Alert — Update Your Browser to Patch
Google released an urgent security update for Chrome browser. The update fixes a critical vulnerability that is already being exploited by hackers. The vulnerability, known as CVE-2024-4671, is a bug in the browser’s Visuals component. CVE-2024-4671 is a type of vulnerability referred to as “use after free” in the Visuals …
Read More »Dell Discloses Data Breach: 49 million customers allegedly affected
A security breach has been reported, with a threat actor claiming to be selling a database with 49 million customer records from Dell. The data includes information on systems bought from Dell between 2017 and 2024. According to Daily dark web, recent data obtained from Dell servers includes sensitive personal …
Read More »BIG VULNERABILITIES IN NEXT-GEN BIG-IP
Eclypsium recently found flaws in F5’s BIG-IP Next Central Manager, which could let attackers take control of the network. BIG-IP is a product line from F5 that includes software and hardware for managing, securing, and optimizing applications across networks. The Next Central Manager is a key control point for tasks …
Read More »UK confirms Ministry of Defence payroll data exposed in data breach
The UK government confirmed that hackers recently broke into the country’s Ministry of Defence and accessed part of the Armed Forces payment network. The system that was attacked contained personal data of active and reserve personnel and some recently retired veterans. MoD core network unaffected: Defense Secretary Grant Shapps announced …
Read More »LockBit Ransomware Leader Unmasked and Sanctioned
The UK, US, and Australia have imposed sanctions on the leader of the ransomware group LockBit, which is known worldwide. Russian national Dmitry Khoroshev has been identified as a leader of a group involved in an international law enforcement investigation. The group has extorted over one billion dollars from victims …
Read More »Samsung mobile devices 25 flaws patched
Samsung has patched 25 vulnerabilities in its mobile devices. This is to strengthen them against code execution and privilege escalation attacks. Samsung is continuously working to improve the security of its smartphones and tablets, protecting the safety and privacy of its users. Samsung recently disclosed vulnerabilities, known as Samsung Vulnerabilities …
Read More »Bangladesh to make law to protect customers using electronic currency
A new law has been drafted to protect customers in electronic currency transactions. It will soon be presented to the National Assembly for approval. The Act is called the ‘Electronic Currency Payment and Settlement System Bill 2024′ and has been created by the Financial Institutions Department under the Ministry of …
Read More »
Outpost24 report
Cybersecurity Loopholes in Paris 2024 Olympics Infrastructure
The 2024 Olympic Games in Paris are coming soon. A recent cybersecurity assessment by Outpost24, a provider of cyber threat exposure management solutions, has raised concerns about the online infrastructure of the games. Outpost24 has identified critical vulnerabilities in the security posture, despite it being considered “mostly secure”. These vulnerabilities …
Read More »