LockBit, ALPHV (BlackCat), and Cl0p ransomware groups were responsible for a significant increase in attacks during the last quarter of 2023, resulting in over 1,200 victims across various industries being listed on data leak sites.
Cloudflare experienced a security breach when unauthorized individuals gained access to their internal systems, but no customer data or systems were compromised.
A software supply-chain vulnerability has been discovered in Bazel, an open-source tool developed by Google, involving a command injection vulnerability in a custom GitHub Action used by Bazel in its CI/CD workflows.
Law enforcement agencies from over 50 Interpol member countries collaborated in Operation Synergia to disrupt malicious infrastructure involved in phishing, malware, and ransomware attacks, resulting in the arrest of 31 suspected cybercriminals and the takedown of 70% of identified command-and-control servers.
The National Institute of Standards and Technology’s National Cybersecurity Center of Excellence (NCCoE) has released a draft practice guide to assist major industries in implementing TLS 1.3, the latest internet security protocol, to enhance network traffic security and prevent eavesdropping and man-in-the-middle attacks.
The US government successfully disrupts the Volt Typhoon hacking operation, supported by China, which targeted critical infrastructure in the United States, highlighting the ongoing threat posed by China-backed hackers.
