Security News > 2023 > November > Week in review: LockBit exploits Citrix Bleed, Apache ActiveMQ bug exploited for cryptojacking

How LockBit used Citrix Bleed to breach Boeing and other targetsCVE-2023-4966, aka "Citrix Bleed", has been exploited by LockBit 3.0 affiliates to breach Boeing's parts and distribution business, and "Other trusted third parties have observed similar activity impacting their organization," cybersecurity and law enforcement officials have confirmed on Tuesday.

Apache ActiveMQ bug exploited to deliver Kinsing malwareAttackers are exploiting a recently fixed vulnerability in Apache ActiveMQ to install Kinsing malware and cryptocurrency miners on targeted Linux systems.

Only 9% of IT budgets are dedicated to securityDespite their best efforts, 67% of businesses say they need to improve security and compliance measures with 24% rating their organization's security and compliance strategy as reactive, according to Vanta.

Why boards must prioritize cybersecurity expertiseIn this Help Net Security video, Graeme Payne, US Advisory Service Leader at Kudelski Security, discusses how, with the incredible number of complex threats facing modern businesses, board members must take an increased role in cybersecurity decisions - or face the consequences.

New horizons in cyber protection with 2024 trends to watchIn this Help Net Security video, Fei Huang, VP of Security Strategy at SUSE, dives into the latest cybersecurity predictions, unveiling the trends shaping our online defenses and exploring how innovation will safeguard our digital lives.

Smaller businesses embrace GenAI, overlook security measuresOrganizations are feeling the pressure to rush into generative AI tool usage, despite significant security concerns, according to Zscaler.

News URL

https://www.helpnetsecurity.com/2023/11/26/week-in-review-lockbit-exploits-citrix-bleed-apache-activemq-bug-exploited-for-cryptojacking/