Daily Cyber Brief
The ALPHV ransomware group created a new site for victims, Symbiote malware is nearly impossible to detect, and CloudFlare stopped the largest DDoS attack ever...
Cybersecurity
Every ransomware attack starts with a compromised endpoint, and to that end, threat actors have now started looking into Microsoft Exchange servers. As per a report published by the Microsoft 365 Defender Threat Intelligence Team, at least one unpatched and vulnerable…
Canadian businesses operating in critical infrastructure sectors would be required to report cyber attacks to the federal government and would have to fortify their cyber systems under a new law introduced on Tuesday. The legislation identifies finance, telecommunications…
Internet infrastructure company Cloudflare said on Tuesday that it recently caught and mitigated the largest HTTPS distributed denial of service (DDoS) attack ever recorded. The 26 million request per second (rps) DDoS attack was launched at the website of a…
A new high-severity vulnerability has been disclosed in the Zimbra email suite that, if successfully exploited, enables an unauthenticated attacker to steal cleartext passwords of users sans any user interaction. "With the consequent access to the victims' mailboxes…
The ALPHV ransomware gang, aka BlackCat, has brought extortion to a new level by creating a dedicated website that allows the customers and employees of their victim to check if their data was stolen in an attack When ransomware gangs conduct attacks, they quietly steal…
Symbiote, discovered in November, parasitically infects running processes so it can steal credentials, gain rootlkit functionality and install a backdoor for remote access. A new Linux malware that’s “nearly impossible to detect” can harvest credentials and gives attackers…
One of the largest supermarket chains serving multiple countries across southern Africa has been hit with ransomware. The Shoprite Group released a statement late last week announcing a cyberattack. The RansomHouse ransomware group took credit for the attack…
Microsoft has incorporated additional improvements to address the recently disclosed SynLapse security vulnerability in order to meet comprehensive tenant isolation requirements in Azure Data Factory and Azure Synapse Pipelines. The latest safeguards include moving…
A new side-channel attack known as Hertzbleed allows remote attackers to steal full cryptographic keys by observing variations in CPU frequency enabled by dynamic voltage and frequency scaling (DVFS). This is possible because, on modern Intel (CVE-2022-24436) and…
An unpatched security issue in the Travis CI API has left tens of thousands of developers' user tokens exposed to potential attacks, effectively allowing threat actors to breach cloud infrastructures, make unauthorized code changes, and initiate supply chain attacks…