ICYMI: 2024-01-12
Latest Headlines
Nation-State Actors Weaponize Ivanti VPN Zero-Days, Deploying 5 Malware Families
Medusa Ransomware on the Rise: From Data Leaks to Multi-Extortion
Applying the Tyson Principle to Cybersecurity: Why Attack Simulation is Key to Avoiding a KO
Urgent: GitLab Releases Patch for Critical Vulnerabilities - Update ASAP
Cryptominers Targeting Misconfigured Apache Hadoop and Flink with Rootkit in New Attacks
Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability
How to Stop Your X Account From Getting Hacked Like the SEC’s
Laptop Maker Framework Says Customer Data Stolen in Third-Party Breach
In Other News: WEF’s Unsurprising Cybersecurity Findings, KyberSlash Cryptography Flaw
New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise
Russian Hackers Likely Not Involved in Attacks on Denmark’s Critical Infrastructure
Apple Patches Keystroke Injection Vulnerability in Magic Keyboard
Malware Used in Ivanti Zero-Day Attacks Shows Hackers Preparing for Patch Rollout
22-yr Old Hacker from ShinyHunters Group Arrested for Hacking 60+ Organizations
Hackers Impersonating as Security Researcher to Aid Ransomware Victims
Microsoft Patch Tuesday 2024 Released with Fixes for 49 vulnerabilities – Update Now!
The Week in Ransomware - January 12th 2024 - Targeting homeowners’ data
CISA: Critical Microsoft SharePoint bug now actively exploited
GitLab warns of critical zero-click account hijacking vulnerability
Juniper warns of critical RCE bug in its firewalls and switches
Ivanti Connect Secure zero-days exploited to deploy custom malware
– MTZ