The Hive ransomware gang has been leveraging a novel obfuscation approach involving IPv4 addresses and numerous conversions resulting in Cobalt Strike beacon downloads, BleepingComputer reports.
A Texas judge ruled that class-actions against SolarWinds, its CISO Tim Brown and two private equity investors may proceed, while dismissing actions against former CEO Kevin Thompson for misleading investors and selling millions in company stock right before the breach was disclosed.
Threat actors only spent an average of 12 days exploiting software vulnerabilities in 2021, compared with 42 days in 2020, with the 71% decline in time to known exploitation attributed to the significant increase in zero-day attacks.
Axie Infinity blockchain game creator Sky Mavis had its Ronin Network hacked, resulting in the exfiltration of 173,600 Ethereum, or $594.6 million, and $25.5 million, making it one of the largest cryptocurrency hacks based on Comparitech data.
Online photography firm Shutterfly has confirmed that employee information has been compromised in a data breach resulting from a Conti ransomware attack last December, BleepingComputer reports.
Malicious actors have been exploiting the widespread Log4Shell vulnerability to infect vulnerable VMware Horizon servers with backdoors and miners, reports Threatpost.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.