The U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Coast Guard Cyber Command (CGCYBER) have shared new details on in-the-wild attacks targeting a recently patched flaw in Zoho’s ManageEngine ADSelfService Plus product.
GoDaddy Breach Exposes 1.2 Million Managed WordPress Customer Accounts
Domain registrar and web hosting giant GoDaddy has been hacked and customer data for some 1.2 million WordPress users were exposed to the attacker for more than three months.
Wind Turbine Giant Vestas Fending Off Cyberattack
Danish wind turbine giant Vestas Wind Systems has been hit by what appears to be a ransomware attack that took out parts of its internal IT infrastructure and caused unspecified data compromise.
U.S Banks Required to Report Cyberattacks to Regulators Within 36 Hours
In less than half a year, banks in the United States will be required to notify federal regulators of serious cybersecurity incidents within 36 hours.
SecurityWeek to Host Security Operations Summit as Virtual Event Dec. 8
CISA Releases Incident and Vulnerability Response Playbooks
In response to an executive order signed by President Biden in May, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday released two cybersecurity playbooks focusing on incident response and vulnerability response.
GitHub Confirms Another Major NPM Security Defect
Microsoft-owned GitHub is again flagging major security problems in the npm registry, warning that a pair of newly discovered vulnerabilities continue to expose the soft underbelly of the open-source software supply chain.