Why does ICS/OT need specific controls and its own cybersecurity budget today? Because treating ICS/OT security with an IT security […]
Category: Security
FBI Deletes PlugX Malware from 4,250 Hacked Computers in Multi-Month Operation
Jan 15, 2025Ravie LakshmananMalware / Threat Intelligence The U.S. Department of Justice (DoJ) on Tuesday disclosed that a court-authorized operation […]
3 Actively Exploited Zero-Day Flaws Patched in Microsoft’s Latest Security Update
Microsoft kicked off 2025 with a new set of patches for a total of 161 security vulnerabilities across its software […]
Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks
Jan 15, 2025Ravie LakshmananVulnerability / Server Security Cybersecurity researchers have disclosed multiple security flaws in SimpleHelp remote access software that […]
FBI forces Chinese malware to delete itself from thousands of US computers
The FBI said today that it removed Chinese malware from 4,258 US-based computers and networks by sending commands that forced […]
Microsoft Uncovers macOS Vulnerability CVE-2024-44243 Allowing Rootkit Installation
Jan 14, 2025Ravie LakshmananEndpoint Security / Vulnerability Microsoft has shed light on a now-patched security flaw impacting Apple macOS that, […]
Google OAuth Vulnerability Exposes Millions via Failed Startup Domains
Jan 14, 2025Ravie LakshmananVulnerability / Data Privacy New research has pulled back the curtain on a “deficiency” in Google’s “Sign […]
4 Reasons Your SaaS Attack Surface Can No Longer be Ignored
What do identity risks, data security risks and third-party risks all have in common? They are all made much worse […]
Illicit HuiOne Telegram Market Surpasses Hydra, Hits $24 Billion in Crypto Transactions
Jan 14, 2025Ravie LakshmananCryptocurrency / Online Scam The Telegram-based online marketplace known as HuiOne Guarantee and its vendors have cumulatively […]
Zero-Day Vulnerability Suspected in Attacks on Fortinet Firewalls with Exposed Interfaces
Jan 14, 2025Ravie LakshmananVulnerability / Network Security Threat hunters are calling attention to a new campaign that has targeted Fortinet […]