High-profile Attacks

What To Do In Response To The Latest LastPass Breach

LastPass have released an update that discloses some additional details about the second of two data breaches in…

March 2, 2023 15:38 GMT

Okta Investigating Reported Breach of Customer Data by Threat Group LAPSUS$ – UPDATED

UPDATES ADDED — IAM service provider Okta is investigating a claim by the LAPSUS$ group that they have breached the company's administrative portal and are targeting Okta customer data.

March 22, 2022 18:25 GMT

Cyber Threats Associated with Russia’s Invasion of Ukraine (updated)

This advisory is a rundown of known cyber threats and groups associated with Russia's invasion of Ukraine.

March 4, 2022 17:29 GMT

Microsoft warns of continued supply chain attacks leveraging service providers and product resellers

Recent nation state attacks are proving that compromising a company through vendor relationships is the new normal. Background…

October 26, 2021 19:13 GMT

Critical F5 Vulnerabilities Under Active Attack Due to PoC Exploit Code Release

A week after F5 announced it had patched critical vulnerabilities, proof-of-concept code for exploits has appeared and has been…

August 26, 2021 21:16 GMT

Briefing on the Colonial Pipeline Attack

Below is background and known details of how the pipeline attack was executed, as well as some recommended mitigation…

May 12, 2021 22:33 GMT

Cyber-Espionage Campaign Operation Tunnelsnake Utilizes Highly Evasive Rootkit “Moriya”

A rootkit of unprecedented stealth and evasion has been uncovered while investigating the espionage campaign Operation Tunnelsnake. While…

May 10, 2021 22:38 GMT

Hand-Picked Top-Read Stories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

What Happened To The Internet Archive?

Trending Tags

High-profile Attacks

What To Do In Response To The Latest LastPass Breach

Okta Investigating Reported Breach of Customer Data by Threat Group LAPSUS$ – UPDATED

Cyber Threats Associated with Russia’s Invasion of Ukraine (updated)

Microsoft warns of continued supply chain attacks leveraging service providers and product resellers

Critical F5 Vulnerabilities Under Active Attack Due to PoC Exploit Code Release

Briefing on the Colonial Pipeline Attack

Cyber-Espionage Campaign Operation Tunnelsnake Utilizes Highly Evasive Rootkit “Moriya”

Threat Advisories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Weekly Top 10: 11.11.2024: Veeam Backup Exploit Used by Frag Ransomware; North Korean Hackers Use macOS Malware to Steal Crypto; Palo Alto PAN-OS May be Vulnerable to RCE, and More.

Weekly Top 10: 11.04.2024: Android Malware ‘FakeCall’ Hijacks Outgoing Calls; PTZ Cameras Being Targeted Using Two Zero-Days; Hacker Group TeamTNT Targets Docker Environments, and More.

Weekly Top 10: 10.28.2024: Severe Flaws in E2EE Cloud Storage Platforms Used by Millions; ClickFix Tactic: The Phantom Meet; Firm Hacked After Accidentally Hiring North Korean Cyber Criminal, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware