6 New zero-day Vulnerabilities in Schneider Electric StruxureWare

A team setup by TIM’s Cybersecurity to detect vulnerabilities that attackers could exploit to carry out attacks on its infrastructure found six zero-day flaws in Schneider Electric StruxureWare.

How prevalent is DNS spoofing? Could a repeat of the Dyn/Mirai DDoS attack have the same results?

Researchers found that majority of popular site operators haven’t set up a backup DNS server, while the rate of DNS spoofing, though still very small, has more than doubled in less than seven years.

BEC Attackers Abuse Auto-forwarding Email Rules to Hide Their Presence

The US Federal Bureau of Investigation says that cyber-criminals are increasingly relying on email forwarding rules in order to disguise their presence inside hacked email accounts.

EclecticIQ Closes $24 Million Series C Funding Round

The new funding round was led by Ace Management and saw participation from Arches Capital, Capricorn Digital Growth Fund and Quest for Growth, Invest-NL, and existing investors.

Multi-Vector Miner+Tsunami Botnet with SSH Lateral Movement

The botnet carries two payloads: 1) a Monero XMR Miner binaries; and 2) Tsunami binaries. This botnet is targeting cloud servers and was still active as of December 1, 2020.

Critical iOS Bug Could Allow Attackers to Monitor Everything on Nearby Devices

The flaw (tracked as CVE-2020-3843) was addressed by Apple in a series of security updates pushed as part of iOS 13.5 and macOS Catalina 10.15.5 in May earlier this year.
December 2, 2020

Ivanti announces double acquisition of MobileIron, Pulse Secure in zero-trust security push

Under the deal, Ivanti has purchased outstanding MobileIron stock for roughly $872 million. Pulse Secure was acquired from affiliates of Siris Capital Group but the financial terms were not disclosed.

Federal Agencies Warn of Major Hacking Groups Targeting Think Tanks

The FBI and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) warned Tuesday that major hacking groups are targeting U.S. think tanks.

GoSecure raises $35M to continue growth

W Investments Group, based in Montreal, led this Series E growth round of $35 million, with guidance from Yaletown Partners, leaders of the initial Series E round in June 2020.

Huntsville City Schools District in Alabama Gets Hit by Disruptive Ransomware Attack

To prevent the ransomware from spreading to devices loaned to students and faculties, the district asked that all district-issued devices be shut down and remain off until told otherwise.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags