Microsoft Links GoAnywhere Flaw to Storm-1175 Ransomware Attacks
Storm-1175 exploited a GoAnywhere MFT flaw for multi-stage ransomware attacks. Fortra has yet to acknowledge active exploitation despite mounting evidence.…
OpenAI Identifies Existing Hacking Tactics Adopting ChatGPT for Efficiency
Actors use ChatGPT mainly to streamline established hacking and scam tactics. Influence campaigns with AI-generated content often fail to gain…
Clop Hackers Target Oracle Zero-Day, Prompt Urgent Response
Oracle patched a zero-day exploited by Clop in E-Business Suite. Clop demanded large ransoms after months of undetected access. Authorities…
Okta and Zscaler Respond to Salesloft Drift Security Breach
Drift’s supply chain breach affected Okta, Zscaler, and hundreds more firms. Okta evaded damage through IP restrictions; Zscaler faced customer…
Red Hat Reports Consulting Data Breach in GitLab System
Red Hat confirmed a security breach in its consulting GitLab instance. Customer data, including project details, may have been exposed…
Clop Demands Payment From Oracle Users via Targeted Emails
Clop group targets Oracle E-Business Suite users with extortion emails. Attackers use third-party compromised accounts to boost credibility. Security experts…
North Korean Operatives Target Firms Globally Through Remote Job Infiltration
North Korean agents broaden infiltration to multiple industries and countries via remote work. Okta, CrowdStrike, and Mandiant have tracked thousands…
Clop Ransomware Group Targets Oracle Users with Data Theft Threats
Clop actors target Oracle customers with extortion emails about alleged data theft. Researchers have not verified any actual breach of…
Security Experts Warn of Exploitation Risks in GoAnywhere MFT Flaw
Researchers find evidence of active exploitation in GoAnywhere MFT vulnerability. Critical flaw enables remote code execution if a private key…
Federal Agencies Respond to Cisco Zero-Day Attacks, Assessment Continues
Federal agencies address Cisco zero-day attacks through an emergency directive. CISA and Cisco worked together on investigation and patch deployment.…
