Today is Microsoft’s Jube 2021 Patch Tuesday, in which Microsoft had fixed Six Zero-day vulnerabilities which you should apply. In total Microsoft patched 50 vulnerabilities in this June update, among which five are noted as critical and the rest 45 are marked as important. The six actively exploited zero-day vulnerabilities are: CVE-2021-31955 – Windows Kernel…
New York City’s law department was been hit with a cyberattack that forced officials to take the 1,000-lawyer agency offline, but Mayor Bill de Blasio said he believes no data was compromised in the hack. “To this hour we have not seen information compromised or a ransom demand,” the Democratic mayor said at a virtual…
Using Windows Server in a “Windows container”? Then beware of it, as recently, it has been confirmed that highly sophisticated malware has been active for over a year. The cybersecurity researchers at Palo Alto Networks Unit 42 have recently discovered a new malware, known as, “Siloscape,” and it uses Windows containers to access Kubernetes clusters. …
Application Security , Critical Infrastructure Security , Cybercrime Security Agency Will Use Bugcrowd, EnDyna for Platform Scott Ferguson (Ferguson_Writes) • June 8, 2021 The U.S. Cybersecurity and Infrastructure Security Agency is preparing to expand its vulnerability research and disclosure program, which is now mandatory for nearly all executive branch agencies within the federal…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Company’s IT Team Was Unaware the VPN Exploited to Gain Entry Existed Doug Olenick (DougOlenick) • June 8, 2021 Colonial Pipeline Co. CEO Joseph Blount testifying on Tuesday before the Senate Homeland Security and Governmental Affairs Committee Colonial Pipeline Co. CEO Joseph Blount defended his…
In recent weeks, cybercriminals have increasingly targeted organizations that play critical roles across broad swaths of the US economy. The fallout from those attacks show how hackers are now causing chaos for everyday Americans at an unprecedented pace and scale. Energy Secretary Jennifer Granholm on Sunday warned that “very malign actors” had the US in their sights…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Agency Notes Attacks Have Spiked Since February Akshaya Asokan (asokan_akshaya) • June 8, 2021 Ransomware actors continue to target schools and universities across the U.K., and attacks have surged since February, a new report by the U.K’s National Cyber Security Center warns. The agency has…
US authorities charged Alla Witte for helping build TrickBot, a type of malware that was active for many years in a worldwide campaign, defrauding numerous people. Taking down much of TrickBot was a group effort involving multiple countries and coordination that doesn’t usually happen with similar threats. While all of Trickbot’s infrastructure was eventually primarily…
The chief executive of the massive fuel pipeline hit by ransomware last month is expected to detail his company”s response to the cyberattack and to explain his decision to authorise a multimillion-dollar payment when he testifies before Congress this week. Colonial Pipeline CEO Joseph Blount will face the Senate Homeland Security Committee on Tuesday, one…
Ratko Mladic, a former Bosnian Serb commander, has lost his appeal against a 2017 conviction for genocide, war crimes and crimes against humanity. The UN court upheld the life sentence for his role in the killing of around 8,000 Bosnian Muslim (Bosniak) men and boys in Srebrenica in 1995. Bosnia’s Foreign Minister Bisera Turkovic told…
