Serious security vulnerabilities have been discovered in CyberPower’s PowerPanel Enterprise Data Center Infrastructure Management (DCIM) platform and Dataprobe’s iBoot Power Distribution Unit (PDU), potentially paralyzing data centers and enabling large-scale attacks.
The Xurum campaign exploits a critical security flaw in Adobe Commerce and Magento Open Source, allowing attackers, believed to be of Russian origin, to gain unauthorized access to e-commerce sites and collect payment statistics and credit card information.
Law enforcement agencies successfully seize servers and arrest administrators of Lolek Hosted, a web hosting service known for aiding cybercriminals in activities such as botnet server management, spam distribution, and ransomware attacks.
Implementing ITDR and other security measures can enhance organizations’ ability to detect and respond to identity-related security threats in SaaS environments.
JanelaRAT, a financial malware targeting FinTech users in Latin America, has been discovered by researchers at Zscaler ThreatLabz and is capable of extracting sensitive information from compromised Windows systems.
Between May and July 2023, the Alberta Dental Service Corporation experienced a ransomware attack that resulted in the unauthorized access and copying of personal information for approximately 1.47 million individuals, prompting the organization to notify those affected and provide credit monitoring services for two years.
