Since June 2021, a relatively new ransomware group called Sabbath has been targeting critical infrastructure in the United States and Canada, including education, health and natural resources.
Hardware Security Firm Axiado Banks $25M Investment
Axiado Corp, a hardware security firm based in San Jose, Calif., has banked $25 million in what is being described as an “oversubscribed” Series B funding round.
Apple Slaps Lawsuit on NSO Group Over Pegasus iOS Exploitation
The troubles for Israeli surveillance software maker NSO Group continue to pile up with news that Apple has filed suit to ban the company from using its software, services or devices.
PoC Exploit Published for Latest Microsoft Exchange Zero-Day
A security researcher has released proof-of-concept (PoC) exploit code for a recently patched code execution vulnerability affecting on-prem Microsoft Exchange Server installations.
Low Code/No Code App Security Firm Zenity Emerges From Stealth
Low-code/no-code application security provider Zenity today announced that it has emerged from stealth mode with $5 million in seed funding.
The investment round was led by Vertex Ventures and UpWest, but Zenity says it is also backed by former Google CISO Gerhard Eschelbeck and former SuccessFactors CIO Tom Fisher.
Severe Code Execution Vulnerabilities Affect OpenVPN-Based Applications
Security researchers at Claroty have raised the alarm for a series of severe code execution vulnerabilities affecting virtual private network (VPN) solutions relying on OpenVPN.
U.S. Agencies Share More Details on ADSelfService Plus Vulnerability Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Coast Guard Cyber Command (CGCYBER) have shared new details on in-the-wild attacks targeting a recently patched flaw in Zoho’s ManageEngine ADSelfService Plus product.
GoDaddy Breach Exposes 1.2 Million Managed WordPress Customer Accounts
Domain registrar and web hosting giant GoDaddy has been hacked and customer data for some 1.2 million WordPress users were exposed to the attacker for more than three months.
Wind Turbine Giant Vestas Fending Off Cyberattack
Danish wind turbine giant Vestas Wind Systems has been hit by what appears to be a ransomware attack that took out parts of its internal IT infrastructure and caused unspecified data compromise.
New ‘SharkBot’ Android Banking Malware Hitting U.S., UK and Italy Targets
A new Android banking trojan has been found, targeting international banks from the United Kingdom and Italy (including in the U.S.). and five different cryptocurrency services. Twenty-two instances have been discovered, but more are expected.