Category

US

US Page 1

Chinese Hackers APT Threat Group Winnti Threat Campaign Operation CuckooBees Malware

Chinese APT group, Winnti, is back with a new threat campaign

Researchers discovered a new attack campaign attributed to the Chinese-sponsored advanced persistent threat group known as Winnti. Based on reports, the recently discovered campaign remained undetected for several years. The researchers called the campaign ‘Operation CuckooBees’, which leveraged a past undocumented malware and stole confidential trade data from several organisations worldwide. An incident response team...
Continue Reading
Sysrv Botnet Flaw Abuse Vulnerability Windows Linux Web Servers CMS Wordpress Spring Framework

Sysrv botnet abuses flaws found in Windows and Linux servers

Critical flaws are found in Java’s Spring Framework and WordPress CMS, allowing the Sysrv botnet to exploit them and deploy malware on compromised Windows and Linux servers. The botnet was found with a new upgraded variant, Sysrv-K, capable of scanning unpatched Spring and WordPress deployments. According to researchers, the new variant of the Sysrv botnet...
Continue Reading
Omnicell Health Tech Firm Ransomware Attack

Omnicell, a health tech firm, revealed suffering from a ransomware attack

Omnicell is a healthcare technology company that assists with health-related equipment and tools. It is also an American multinational company that develops systems for automated medication management at hospitals and patient engagement software for pharmaceutical firms. The US SEC received a file regarding Omnicell’s confirmation of a ransomware attack that recently hit them. The company...
Continue Reading
Cyber Security Experts Critical Flaw F5 BIG-IP Network Devices RCE Vulnerability

Security experts found a critical flaw in F5 BIG-IP devices

According to researchers, the F5 BIG-IP currently has a remote code execution (RCE) vulnerability that can enable threat actors to conduct numerous exploits. The F5 BIG-IP device users are warned to apply the latest security patch to avoid being a target. F5 has disclosed a critical remote code execution flaw tracked by researchers as CVE-2022-1388...
Continue Reading
Researchers Critical Vulnerability dotCMS Content Management System RCE

Researchers discovered a critical vulnerability in dotCMS

A pre-authenticated remote code execution (RCE) flaw was discovered inside the dotCMS, a source content management system. The system is coded in Java and has several users that reach about 10,000 individuals across over 70 countries globally. Fortune 500 brands and average-sized businesses comprise these.   The vulnerability in the dotCMS could allow RCE if...
Continue Reading
ARcare US Healthcare Provider Data Breach Threat Actors Mississippi Arkansas Kentucky

ARcare, a US healthcare provider, breached by threat actors

An American healthcare provider called ARcare has admitted that it suffered a data breach attack from a group of malicious threat actors. The healthcare institution has branches in Mississippi, Arkansas, and Kentucky, and a representative of the organisation revealed that the breach may have impacted nearly 350,000 individuals. According to the data breach alert provided...
Continue Reading
Cybersecurity Malware Loader Bumblebee BazarLoader Backdoor Threat Actors Cyberthreat

Researchers discovered a new malware loader dubbed Bumblebee

A newly discovered malware loader, called Bumblebee, has been identified by cybersecurity researchers as being utilised by roughly three separate threat groups connected with ransomware operations. Experts assumed that the Bumblebee was created by its operators to become a substitute for the BazarLoader backdoor. They also claimed that there is a high possibility that the...
Continue Reading
APT29 Cozy Bear Russian Hackers US Europe Government Phishing Campaign

APT29 targets government agencies in a recent phishing campaign

Government agencies are the recent target of an ongoing phishing campaign run by the Cozy Bear advance persistent threat group or the APT29. The threat group, also known as Nobelium, has been active since 2014 that mainly operates on cyber-espionage campaigns. The recently identified spear-phishing campaign involves hackers pretending to include important policy updates originating...
Continue Reading
Upgraded BlackByte Ransomware Malware

Upgraded BlackByte ransomware discovered on its new samples

Cybersecurity researchers have published a new advisory regarding the notorious BlackByte ransomware group. The advisory includes information and assessment regarding the newly discovered BlackByte samples from the group’s recent attacks. Based on reports, the analysts responsible for examining the group’s behaviour discovered several variants of BlackByte ransomware circulating in the wild. The variants are coded...
Continue Reading
Beverage Coca-Cola Coke Cyberattack Stormous Ransomware Threat Group Data Breach

Beverage giant Coca-Cola gets hit with a cyberattack

The world’s most popular American beverage company, Coca-Cola, reports a cyberattack incident after confirming to security researchers that threat actors have compromised their network. As of now, the beverage giant is investigating the scope of the attack.   Based on the reports, the ransomware gang dubbed Stormous claimed the attack against the beverage giant after...
Continue Reading
1 2 3 28