Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability, CISAWarning Newsroom Ransomware/Vulnerability as of February 16, 2024 Following reports that it is likely being used in Akira ransomware attacks, the U.S. Cybersecurity and Infrastructure Security Agency ( CISA ) added a now-patched security flaw affecting Cisco Adaptive Security Appliance ( ASA ) and Firepower Threat Defense (FTD )…

The Good | GRU Spy Network, Major RAT Infrastructure, and Back-to-Back FBI Ops Disrupt The FBI has achieved two victories this week in its battle against malicious activities carried out by state-sponsored hackers and cybercriminals. The Warzone remote access Trojan (RAT ) was the first component of a massive cybercrime operation that the Bureau dismantled.…

NewsroomEndpoint Security / Cryptocurrency, February 16, 2024 A recently discovered Apple macOS backdoor code called RustDoor is targeting a number of cryptocurrency-related businesses. Bitdefender first identified RustDoor last week, describing it as a malware based on ruby that can download files, upload them, and gather data on infected computers. By posing as a Visual Studio…

The cybersecurity challenges we face are becoming more apparent to small to medium businesses, the general public, and large businesses that have developed security capabilities over time as breaches make the headlines almost weekly. SMBs frequently find themselves without access to security tooling that is both simple for them to use and affordable, despite the…

NewsroomCyber Threat / Cloud Security, February 16, 2024 Threat actors are advertised as using Amazon Web Services ( AWS ) Simple Notification Service ( SNS ) to send bulk smishing messages using a malicious Python script called SNS Sender. According to SentinelOne, a threat actor by the name of ARDUINO_DAS, the SMS phishing messages are…

Newsroom Cybersecurity / Data Breach, February 16, 2024 An administrator account belonging to a former employee was used to compromise the network environment of an unnamed state government organization, according to the U.S. Cybersecurity and Infrastructure Security Agency ( CISA ). In a joint advisory released on Thursday with the Multi-State Information Sharing and Analysis…

NewsroomBotnet / Network Security, February 16, 2024 On Thursday, the U.S. government announced that it had disrupted a botnet that the Russia-linked APT28 actor had used to hide its malicious activities and included hundreds of small office and home office ( SOHO ) routers in the nation. The U.S. Department of Justice ( DoJ) stated…