Security News

VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware
2024-11-06 17:52

An ongoing threat campaign dubbed VEILDrive has been observed taking advantage of legitimate services from Microsoft, including Teams, SharePoint, Quick Assist, and OneDrive, as part of its modus...

China's Volt Typhoon reportedly breached Singtel in 'test-run' for US telecom attacks
2024-11-06 02:30

Alleged intrusion spotted in June Chinese government cyberspies Volt Typhoon reportedly breached Singapore Telecommunications over the summer as part of their ongoing attacks against critical...

Suspect behind Snowflake data-theft attacks arrested in Canada
2024-11-05 15:20

Canadian authorities have arrested a man suspected of having stolen the data of hundreds of millions after targeting over 165 organizations, all of them customers of cloud storage company Snowflake. [...]

Google fixes two Android zero-days used in targeted attacks
2024-11-05 14:30

Google fixed two actively exploited Android zero-day flaws as part of its November security updates, addressing a total of 51 vulnerabilities. [...]

Canadian Suspect Arrested Over Snowflake Customer Breach and Extortion Attacks
2024-11-05 05:08

Canadian law enforcement authorities have arrested an individual who is suspected to have conducted a series of hacks stemming from the breach of cloud data warehousing platform Snowflake earlier...

Columbus, Ohio, confirms 500K people affected by Rhysida ransomware attack
2024-11-04 17:01

Victims were placed in serious danger following highly sensitive data dump The City of Columbus, Ohio, has confirmed half a million people's data was accessed and potentially stolen when Rhysida's...

Windows infected with backdoored Linux VMs in new phishing attacks
2024-11-04 15:53

A new phishing campaign dubbed 'CRON#TRAP' infects Windows with a Linux virtual machine that contains a built-in backdoor to give stealthy access to corporate networks. [...]

City of Columbus: Data of 500,000 stolen in July ransomware attack
2024-11-04 14:52

​The City of Columbus, Ohio, notified 500,000 individuals that a ransomware gang stole their personal and financial information in a July 2024 cyberattack. [...]

Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)
2024-11-04 14:04

Synology has released fixes for an unauthenticated “zero-click” remote code execution flaw (CVE-2024-10443, aka RISK:STATION) affecting its popular DiskStation and BeeStation network attached...

Stop LUCR-3 Attacks: Learn Key Identity Security Tactics in This Expert Webinar
2024-11-02 05:32

Did you know that advanced threat actors can infiltrate the identity systems of major organizations and extract sensitive data within days? It’s a chilling reality, becoming more common and...