Cybercriminals are scanning servers for the Microsoft Exchange ProxyShell RCE vulnerabilities after technical details presented at the Black Hat

Threat actors are actively scanning for Internet-exposed VMware vCenter servers unpatched against a critical remote code execution (RCE) vulnerability impacting all vCenter deployments and patched by VMware ten days ago. The ongoing scanning activity was spotted by threat intelligence company Bad Packets yesterday and confirmed earlier today by cybersecurity expert Kevin Beaumont. Security researchers have also developed and published a proof-of-concept…

Campbell Conroy & O’Neil, P.C. (Campbell), a major American law firm whose clientele includes dozens of Fortune 500 and Global 500 companies, announced suffering a data breach in the wake of a February 2021 ransomware attack.  In its report on the data breach, Bleeping Computer noted that the attackers gained access to  “certain individuals’ names,…

Famed anti-virus pioneer John McAfee has been indicted on charges of cryptocurrency fraud, money laundering and more. The 75-year-old, who is in Spain awaiting extradition to the US for tax evasion, is accused of conspiring with executive advisor Jimmy Watson and others on two fraud schemes running from December 2017-October 2018. The first was a…

NEW YORK: The group behind the SolarWinds cyber attack identified late last year is now targeting government agencies, think tanks, consultants, and non-governmental organisations, Microsoft Corp said late on Thursday. “This week we observed cyberattacks by the threat actor Nobelium targeting government agencies, think tanks, consultants, and non-governmental organisations”, Microsoft said in a blog. Nobelium,…

Fraud Management & Cybercrime , Fraud Risk Management , Governance & Risk Management Stuart McKenzie of FireEye on the Importance of Testing Defenses Anna Delaney (annamadeline) • April 21, 2021     Stuart McKenzie, SVP, Mandiant Services, EMEA, FireEye Ransomware attacks now routinely feature multifaceted extortion efforts, and defenses need…

TPG Telecom Limited has disclosed that its legacy cloud-based hosting service, TrustedCloud, was affected in a recent cyberattack, with two clients found to have their data accessed. Only two TPG clients had their data stolen during the April cyberattack, which the enterprise observed on the same day, forcing it to take TrustedCloud offline while the…