Security News > 2024 > September

Malicious npm Packages Mimicking 'noblox.js' Compromise Roblox Developers’ Systems
2024-09-02 03:36

Roblox developers are the target of a persistent campaign that seeks to compromise systems through bogus npm packages, once again underscoring how threat actors continue to exploit the trust in...

Keeping up with automated threats is becoming harder
2024-09-02 03:30

98% of organizations attacked by bots in the past year lost revenue as a result, according to Kasada. Web scraping (web crawling) is a significant threat followed closely by account fraud, with...

Novel attack on Windows spotted in phishing campaign run from and targeting China
2024-09-02 03:06

Resources hosted at Tencent Cloud involved in Cobalt Strike campaign Chinese web champ Tencent's cloud is being used by unknown attackers as part of a phishing campaign that aims to achieve...

Infosec products of the month: August 2024
2024-09-02 03:00

Here’s a look at the most interesting products from the past month, featuring releases from: Adaptive Shield, AppOmni, ArmorCode, Bitwarden, Cequence Security, ClearSale, Clutch Security, Contrast...

Linux version of new Cicada ransomware targets VMware ESXi servers
2024-09-01 14:14

A new ransomware-as-a-service (RaaS) operation named Cicada3301 has already listed 19 victims on its extortion portal, as it quickly attacked companies worldwide. [...]

Cicada3301 ransomware’s Linux encryptor targets VMware ESXi systems
2024-09-01 14:14

A new ransomware-as-a-service (RaaS) operation named Cicada3301 has already listed 19 victims on its extortion portal, as it quickly attacked companies worldwide. [...]

Week in review: SonicWall critical firewalls flaw fixed, APT exploits WPS Office for Windows RCE
2024-09-01 08:00

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: SonicWall patches critical flaw affecting its firewalls (CVE-2024-40766) SonicWall has patched a...