Threats & Breaches - Security Boulevard

How did CVE-2024-27198 Lead to Critical Vulnerability in JetBrains?

Riddika Grover — Sat, 30 Mar 2024 06:37:55 +0000

CVE-2024-27198 Lead to Server Takeover Vulnerabilities

The post How did CVE-2024-27198 Lead to Critical Vulnerability in JetBrains? appeared first on Kratikal Blogs.

The post How did CVE-2024-27198 Lead to Critical Vulnerability in JetBrains? appeared first on Security Boulevard.

PyPI Goes Quiet After Huge Malware Attack: 500+ Typosquat Fakes Found

Richi Jennings — Fri, 29 Mar 2024 17:19:26 +0000

Emergency stop button: The Python Package Index was drowning in malicious code again, so they had to shut down registration for cleanup.

The post PyPI Goes Quiet After Huge Malware Attack: 500+ Typosquat Fakes Found appeared first on Security Boulevard.

A(nother) Ransomware Saga with a Twist

Joao Correia — Fri, 29 Mar 2024 16:29:21 +0000

The healthcare sector has once again found itself at the center of a storm. On February 21, Change Healthcare, a titan in healthcare support services, suffered a devastating cyberattack by the notorious BlackCat/ALPHV group. This incident has sent shockwaves through the U.S. healthcare system, affecting hospitals, clinics, and pharmacies nationwide. The Unfolding of the Cyberattack […]

The post A(nother) Ransomware Saga with a Twist appeared first on TuxCare.

The post A(nother) Ransomware Saga with a Twist appeared first on Security Boulevard.

SBOM, VDR, and Maven: Transforming the Apache Logging experience to a common pattern

Hervé Boutemy — Fri, 29 Mar 2024 14:40:10 +0000

In late 2023, a few members of the Apache Logging Services project – known for providing the famous Log4j logging framework – received funding from the Sovereign Tech Fund (STF) to enhance security aspects of their work.

The post SBOM, VDR, and Maven: Transforming the Apache Logging experience to a common pattern appeared first on Security Boulevard.

Prioritizing Vulnerabilities: A Growing Imperative

Shubham Jha — Fri, 29 Mar 2024 09:40:40 +0000

Did a security breach just become your biggest nightmare? It’s a harsh reality for many companies. A whopping 76% of enterprise IT security executives reported business disruptions due to vulnerabilities...

The post Prioritizing Vulnerabilities: A Growing Imperative appeared first on Strobes Security.

The post Prioritizing Vulnerabilities: A Growing Imperative appeared first on Security Boulevard.

LockBit Hacker Sentenced To 4 Years Jail Plus Fined $860K

Wajahat Raja — Fri, 29 Mar 2024 07:00:33 +0000

Recent reports about legal proceedings, a 34-year-old Russian-Canadian national, Mikhail Vasiliev, has been handed a sentence of almost four years in Canadian prison. Vasiliev’s involvement in the global ransomware scheme known as LockBit led to this outcome. The United States Department of Justice (DoJ) initially charged him with conspiring to intentionally damage protected computers and […]

The post LockBit Hacker Sentenced To 4 Years Jail Plus Fined $860K appeared first on TuxCare.

The post LockBit Hacker Sentenced To 4 Years Jail Plus Fined $860K appeared first on Security Boulevard.

Role of Cybersecurity For BFSI Industry

Shikha Dhingra — Fri, 29 Mar 2024 06:14:17 +0000

With ongoing technological advancements, the frequency of online financial transactions is expected to rise, offering enhanced convenience for both customers and financial institutions. Additionally, data breaches and cyberattacks result in significant financial losses for institutions annually. Consequently, there is a growing interest among executives in bolstering cybersecurity for BFSI industry. Based on the findings of […]

The post Role of Cybersecurity For BFSI Industry appeared first on Kratikal Blogs.

The post Role of Cybersecurity For BFSI Industry appeared first on Security Boulevard.

Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones

Richi Jennings — Thu, 28 Mar 2024 18:46:58 +0000

Rethink different: First, fatigue frightened users with multiple modal nighttime notifications. Next, call and pretend to be Apple support.

The post Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones appeared first on Security Boulevard.

Google: Zero-Day Attacks Rise, Spyware and China are Dangers

Jeffrey Burt — Thu, 28 Mar 2024 16:57:17 +0000

The number of zero-day vulnerabilities that are exploited jumped in 2023, with enterprises becoming a larger target and spyware vendors and China-backed cyberespionage groups playing an increasingly bigger role, according to Google cybersecurity experts. In a report this week, researchers with Google’s Threat Analysis Group (TAG) and its Mandiant business said they saw 97 zero-day..

The post Google: Zero-Day Attacks Rise, Spyware and China are Dangers appeared first on Security Boulevard.

Hundreds of Clusters Attacked Due to Unpatched Flaw in Ray AI Framework

Jeffrey Burt — Thu, 28 Mar 2024 13:54:38 +0000

Thousands of servers running AI workloads are under attack by threat actors exploiting an unpatched vulnerability in the open-source Ray AI framework – widely used by such companies as OpenAI, Uber, Amazon, Netflix, and Cohere – giving hackers entrée to huge amounts of data and compute power. The campaign has been ongoing for at least..

The post Hundreds of Clusters Attacked Due to Unpatched Flaw in Ray AI Framework appeared first on Security Boulevard.