The UK’s National Cyber Security Centre with it’s partners in the Five Eyes, has issued an advisory for the top exploited software vulnerabilities in 2021 – meaning they could continue being the top exploits in 2022. 2021 Top Routinely Exploited Vulnerabilities | CISA Microsoft Exchange server, VMware, SonicWall and Log4j …
Hive is the most active ransomware gang at the moment – and ransomware attacks are on the increase
This report from NCC Group about the state of cyber attacks for March 2022 shows the continuing rise of ransomware attacks across the United States and Europe. With the Hive ransomware gang emerging as one of the greatest threats. NCC Group Monthly Threat Pulse – March 2022 | NCC Group …
VMware make sure you have it patched
I have written a couple of time about the vulnerabilities in VMware – they are patched now but the article below shows there are groups still trying to attack those organisations, slow to patch, with an active exploit. Iran’s Rocket Kitten likely behind VMware exploitation • The Register Why bother. …
Coca-Cola data breach – and the data is on sale for $64,000
The Stormous cyber extortion gang has claimed it stole 161GB of data from Coca-Cola. Coca-Cola is investigating the claim but in the mean time what is stated to be Coca-Cola data has appeared for sale. Stormous, a recently formed cyber gang, has declared its support for the Russian government’s invasion …
Continue reading “Coca-Cola data breach – and the data is on sale for $64,000”
Lapsus$ hits T-Mobile
T-Mobile is the latest in a string of high profile organisations targeted by the Lapsus$ gang. It is reported this time that they stole valuable source code. T-Mobile hit by data breaches from Lapsus$ extortion group | TechRepublic The operation appears to have originated with a social engineering attack directed …