A 28-year-old man from Ukraine has been arrested for developing crypters to help the ransomware groups evade detection and for his role in a ransomware attack on a Dutch multinational company.
A zero-day vulnerability in the DNSSEC protocol, impacting the NSEC3 mechanism, allows attackers to launch DoS attacks on DNS resolvers. Microsoft has issued a patch for Windows Server to address the issue.
Record levels of cyber insurance claims in North America in 2023 due to increasing sophistication of cyber-attacks, the MOVEit file transfer incident, privacy claims, and rising number of organizations purchasing cyber insurance.
Threat actors, specifically the ransomware group TellYouThePass, have been exploiting a critical Remote Code Execution (RCE) vulnerability in PHP to execute arbitrary PHP code on targeted systems.
Scattered Spider, a cybercrime group previously associated with ALPHV/BlackCat, has partnered with RansomHub to conduct ransomware operations, targeting organizations like UnitedHealth Group with extortion demands.
Chinese threat actors exploit zero-day vulnerability in Fortinet’s FortiOS and FortiProxy software, deploying Coathanger RAT malware on over 14,000 devices, including government systems in the Netherlands.
