The Federal Bureau of Investigation (FBI) has released an alert regarding the exploitation of a recent vulnerability in Zoho’s ManageEngine Desktop Central product.
FBI Sees APTs Exploiting Recent ManageEngine Desktop Central Vulnerability
Facebook Patches Vulnerability Exposing Page Admin Identity
Facebook paid a teenage researcher from Nepal a $4,750 bug bounty reward for a vulnerability that could have been exploited to uncover the identity of a page’s administrator.
Google Finds 35,863 Java Packages Using Defective Log4j
The computer security industry is bracing for travel on long, bumpy roads littered with Log4j security problems as experts warn that software dependency patching hiccups will slow global mitigation efforts.
ZeroFox to Go Public in $1.4 Billion SPAC Deal
Social media threat protection firm ZeroFox, announced on Monday that it would acquire incident response services firm IDX and become a publicly traded company via Merger with L&F Acquisition Corp.
Cybersecurity M&A Roundup for December 13-19, 2021
VMware Patches Vulnerabilities in Workspace ONE Access
Patches released by VMware to address a couple of vulnerabilities in the Workspace ONE Access authentication solution also resolve the recent Log4Shell security flaw.
Ransomware Operators Leak Data Stolen From Logistics Giant Hellmann
Logistics giant Hellmann Worldwide Logistics has confirmed that attackers were able to exfiltrate data from its systems during a cyberattack earlier this month.
Log4j Update Patches New Vulnerability That Allows DoS Attacks
CISA Orders Federal Agencies to Mitigate Log4j Vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive instructing federal agencies to mitigate the Log4j vulnerabilities. The announcement came just before the disclosure of a new flaw affecting the popular logging utility.
Ransomware Persists Even as High-Profile Attacks Have Slowed
In the months since President Joe Biden warned Russia’s Vladimir Putin that he needed to crack down on ransomware gangs in his country, there hasn’t been a massive attack like the one last May that resulted in gasoline shortages. But that’s small comfort to Ken Trzaska.
Trend Micro Spots Chinese Hackers Targeting Transportation Sector
Since the middle of 2020, a Chinese state-sponsored threat actor called ‘Tropic Trooper’ has been targeting transportation organizations and government entities related to transportation sector, Trend Micro reports.
