While the French IT outsourcer Sopra Steria did not reveal the family of malware that infected its systems, local media speculate the involvement of the notorious Ryuk ransomware.

The Energetic Bear APT group (aka DragonFly or TEMP.Isotope) has been active since at least 2010 most of the victims of the group are organizations in the energy and industrial sectors.

The report provides details on threats that characterized the period of the analysis and highlights major changes from the 2018 threat landscape due to the COVID-19-led transformation of cyberspace.

The Taiwanese vendor published an advisory to warn customers that certain versions of the operating system for its network-attached storage (NAS) devices are affected by the Zerologon vulnerability.

The flaw resides in the Cisco Discovery Protocol implementation for Cisco IOS XR Software. It could allow an unauthenticated, adjacent attacker to execute arbitrary code or cause a reload.

On September 18, the company was hit by a cyberattack, some of the websites operated by the company were not reachable, including Ray-Ban, Sunglass Hut, LensCrafters, EyeMed, and Pearle Vision.

Researchers from Kaspersky Lab have spotted new variants of GravityRAT which is known for checking the CPU temperature of Windows computers to avoid being executed in sandboxes and virtual machines.

A group of researchers from the Ben-Gurion University of the Negev demonstrated that it is possible to fool commercial advanced driver-assistance systems by displaying virtual objects (phantoms).

Since August, FIN11 started targeting organizations in many industries, including defense, energy, finance, healthcare, legal, pharmaceutical, telecommunications, technology, and transportation.

Microsoft has released two out-of-band security updates to address two remote code execution (RCE) vulnerabilities that affect the Microsoft Windows Codecs Library and Visual Studio Code.