Cybercrime , Fraud Management & Cybercrime , Network Detection & Response ExtraHop’s Executive Suite Will Retain Its Roles Doug Olenick (DougOlenick) • June 9, 2021 ExtraHop announced Tuesday it has entered into a definitive agreement to be acquired by the private equity firms Bain Capital Private Equity and Crosspoint Capital Partners for $900…
United States trucks and military vehicles maker Navistar International Corporation has confirmed a cyberattack that resulted in some data being stolen. On Monday, in a Form 8-K filing with the Securities and Exchange Commission (SEC), Navistar said it learned of a credible potential cybersecurity threat to its information technology system on May 20, 2021. Navistar…
An early clue that something was amiss with the computers at New York City’s Law Department — the 1,000-lawyer agency that represents the city in court — emerged on Monday when a lawyer for the department wrote to a federal judge in Manhattan, asking for a short delay in filing court papers because of “connectivity”…
Today is Microsoft’s Jube 2021 Patch Tuesday, in which Microsoft had fixed Six Zero-day vulnerabilities which you should apply. In total Microsoft patched 50 vulnerabilities in this June update, among which five are noted as critical and the rest 45 are marked as important. The six actively exploited zero-day vulnerabilities are: CVE-2021-31955 – Windows Kernel…
New York City’s law department was been hit with a cyberattack that forced officials to take the 1,000-lawyer agency offline, but Mayor Bill de Blasio said he believes no data was compromised in the hack. “To this hour we have not seen information compromised or a ransom demand,” the Democratic mayor said at a virtual…
Using Windows Server in a “Windows container”? Then beware of it, as recently, it has been confirmed that highly sophisticated malware has been active for over a year. The cybersecurity researchers at Palo Alto Networks Unit 42 have recently discovered a new malware, known as, “Siloscape,” and it uses Windows containers to access Kubernetes clusters. …
Application Security , Critical Infrastructure Security , Cybercrime Security Agency Will Use Bugcrowd, EnDyna for Platform Scott Ferguson (Ferguson_Writes) • June 8, 2021 The U.S. Cybersecurity and Infrastructure Security Agency is preparing to expand its vulnerability research and disclosure program, which is now mandatory for nearly all executive branch agencies within the federal…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Company’s IT Team Was Unaware the VPN Exploited to Gain Entry Existed Doug Olenick (DougOlenick) • June 8, 2021 Colonial Pipeline Co. CEO Joseph Blount testifying on Tuesday before the Senate Homeland Security and Governmental Affairs Committee Colonial Pipeline Co. CEO Joseph Blount defended his…
In recent weeks, cybercriminals have increasingly targeted organizations that play critical roles across broad swaths of the US economy. The fallout from those attacks show how hackers are now causing chaos for everyday Americans at an unprecedented pace and scale. Energy Secretary Jennifer Granholm on Sunday warned that “very malign actors” had the US in their sights…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Agency Notes Attacks Have Spiked Since February Akshaya Asokan (asokan_akshaya) • June 8, 2021 Ransomware actors continue to target schools and universities across the U.K., and attacks have surged since February, a new report by the U.K’s National Cyber Security Center warns. The agency has…
