InfoSecBulletin Cybersecurity for mankind
Researchers unveiled a new ransomware, called SEXi, that poses a threat to VMware ESXi servers. Additionally, it is believed to have scored its first victim which is a hosting provider.
Intel 471 reported a surge in smishing attacks from a group of threat actors, called The Com, which uses sophisticated social engineering tactics to target organizations in the telecommunications, IT, and industry sectors.
Australian fintech database exposed in 27000 records
Over 200 Million Info Leaked Online Allegedly Belonging to X
FBI investigating cyberattack at Oracle, Bloomberg News reports
OpenAI Offering $100K Bounties for Critical Vulns
Splunk Alert User RCE and Data Leak Vulns
CIRT alert Situational Awareness for Eid Holidays
Cyberattack on Malaysian airports: PM rejected $10 million ransom
Micropatches released for Windows zero-day leaking NTLM hashes
VMware Patches Authentication Bypass Flaw in Windows Tool
IngressNightmare
Over 40% of cloud environments are vulnerable to RCE
Proofpoint’s Threat Research team identified a rise in the use of a new Latrodectus loader malware in campaigns throughout February and March. The malware is being distributed by the TA577 threat actor.
Sucuri researchers found a new variant of Magento Shoplift malware that executed a malicious script on a website to perform credit card skimming attacks and data theft.
NIST awarded nearly $3.6 million to 18 education and community organizations across 15 states in an effort to build the workforce needed to safeguard enterprises from cybersecurity threats.
