Autore: SecurityIT

Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel

chinese-spies-lurked-in-networks-for-393-days,-hunted-for-zero-day-intel

Google’s Threat Intelligence Group and Mandiant have shared findings on a recent BrickStorm campaign linked to UNC5221.

The post Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel appeared first on SecurityWeek.

CSA Unveils SaaS Security Controls Framework to Ease Complexity

csa-unveils-saas-security-controls-framework-to-ease-complexity

New framework from the Cloud Security Alliance helps SaaS customers navigate the shared responsibility model with confidence.

The post CSA Unveils SaaS Security Controls Framework to Ease Complexity appeared first on SecurityWeek.

Volvo Group Employee Data Stolen in Ransomware Attack

volvo-group-employee-data-stolen-in-ransomware-attack

The Miljödata data breach has impacted numerous organizations, education institutions, and Swedish municipalities.

The post Volvo Group Employee Data Stolen in Ransomware Attack appeared first on SecurityWeek.

Cisco Patches Zero-Day Flaw Affecting Routers and Switches

cisco-patches-zero-day-flaw-affecting-routers-and-switches

The security defect allows remote attackers with administrative privileges to execute arbitrary code as the root user.

The post Cisco Patches Zero-Day Flaw Affecting Routers and Switches appeared first on SecurityWeek.

Hackers Target Casino Operator Boyd Gaming

hackers-target-casino-operator-boyd-gaming

Boyd Gaming has informed the SEC about a data breach affecting the information of employees and other individuals.

The post Hackers Target Casino Operator Boyd Gaming appeared first on SecurityWeek.

GeoServer Flaw Exploited in US Federal Agency Hack

geoserver-flaw-exploited-in-us-federal-agency-hack

The hackers remained undetected for three weeks, deploying China Chopper, remote access scripts, and reconnaissance tools.

The post GeoServer Flaw Exploited in US Federal Agency Hack appeared first on SecurityWeek.

European Airport Cyberattack Linked to Obscure Ransomware, Suspect Arrested

european-airport-cyberattack-linked-to-obscure-ransomware,-suspect-arrested

Cybersecurity researchers believe the attack on Collins Aerospace involved a piece of ransomware known as HardBit.

The post European Airport Cyberattack Linked to Obscure Ransomware, Suspect Arrested appeared first on SecurityWeek.

GitHub Boosting Security in Response to NPM Supply Chain Attacks

github-boosting-security-in-response-to-npm-supply-chain-attacks

GitHub will implement local publishing with mandatory 2FA, granular tokens that expire after seven days, and trusted publishing.

The post GitHub Boosting Security in Response to NPM Supply Chain Attacks appeared first on SecurityWeek.

Record-Breaking DDoS Attack Peaks at 22 Tbps and 10 Bpps

record-breaking-ddos-attack-peaks-at-22-tbps-and-10-bpps

The attack was aimed at a European network infrastructure company and it has been linked to the Aisuru botnet.

The post Record-Breaking DDoS Attack Peaks at 22 Tbps and 10 Bpps appeared first on SecurityWeek.

SonicWall Updates SMA 100 Appliances to Remove Overstep Malware

sonicwall-updates-sma-100-appliances-to-remove-overstep-malware

The software update includes additional file checks and helps users remove the known rootkit deployed in a recent campaign.

The post SonicWall Updates SMA 100 Appliances to Remove Overstep Malware appeared first on SecurityWeek.