It is the first campaign in which the hacker group exploits SysAid apps as a vector for initial access
TeamTNT Targeted Cloud Instances and Containerized Environments For Two Years
The hacking group most likely originates from Germany
0ktapus Phishing Campaign Targets Okta Identity Credentials
Despite using low-skill methods, the campaign compromised a large number of well-known companies
Cosmetics Giant Sephora to Pay $1m+ Privacy Settlement
California’s data protection law bares its teeth
Block Faces Class Action Suit After 2021 Breach
Plaintiffs argue firm’s security posture was ineffective
LastPass Hackers Stole Source Code
Password management firm reveals incident in early August
Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed.
Microsoft Attributes New Post-Compromise Capability to Nobelium
MagicWeb improves on FoggyWeb by facilitating covert access directly via a malicious DLL
Talos Renews Cybersecurity Support For Ukraine on Independence Day
Cisco and Talos both have resources available to organizations in Ukraine in need of assistance
CISA Releases Guidelines to Aid Companies Transition to Post-quantum Cryptography
The guide provides overview of potential impacts of quantum computing on National Critical Functions