Ransomware‘Pig butchering’ led to banner 2024 for cryptocurrency scamsShaun NicholsFebruary 14, 2025Cryptocurrency scams netted cyber criminals $9.9 billion last year.
IdentityMicrosoft 365 accounts targeted in device code spear-phishing schemeLaura FrenchFebruary 14, 2025Suspected Russian threat actors obtain access tokens through a lesser-known authentication flow.
Network SecurityChina’s RedMike hackers taking aim at telcos via flaws in Cisco gearShaun NicholsFebruary 13, 2025China-sponsored threat group exploiting more than 1,000 Cisco devices globally.
Vulnerability ManagementPalo Alto Networks PAN-OS flaw risks authentication bypassLaura FrenchFebruary 13, 2025The vulnerability stems from path confusion between Nginx and Apache components.
Vulnerability ManagementCritical Nvidia flaw could menace AI systemsShaun NicholsFebruary 12, 2025A flaw rated "critical" in Nvidia server tools could potentially allow attackers to compromise AI servers.
Vulnerability ManagementIvanti fixes 4 critical flaws, including CVSS 9.9 in Connect SecureLaura FrenchFebruary 12, 2025The flaws could enable remote code execution or arbitrary file writing and should be patched immediately.
RansomwareLockBit crackdown continues with Zservers sanctionsLaura FrenchFebruary 11, 2025The Russia-based bulletproof hosting service provided infrastructure to LockBit affiliates, officials say.
Network SecurityFebruary brings 56 Patch Tuesday fixes from MicrosoftShaun NicholsFebruary 11, 2025The 56 security vulnerabilities Microsoft addressed with its latest Patch Tuesday update includes two zero-day flaws.
Network SecurityFinancial sector sees 117% rise in DDoS attacks in second half of 2024Steve ZurierFebruary 11, 2025Threat actors prey on concerns banks have with online banking downtime to carry out ransom threats.
RansomwareCyberattacks targeting medical organizations up 32% in 2024Shaun NicholsFebruary 11, 2025In 2024, 1 in 10 ransomware incidents struck a medical organization.