News

Nextgov20h
China-linked ‘Silk Typhoon’ hackers accessed Commvault cloud environments, person familiar says
The hacking unit previously infiltrated Treasury Department networks and compromised some of the agency’s most sensitive ...
Cyberdefense cuts could sap U.S. response to China hacks, insiders say
Some Trump administration officials want to hit back at China for its hacks on U.S. infrastructure — a risky strategy, ...
CISA says SaaS providers in firing line after Commvault zero-day Azure attack
CISA said this week that the zero-day gave attackers a way into Commvault's Azure-hosted M365 backup SaaS solution, which ...
CSO Online1d
Beijing may have breached US government systems before Cityworks plugged a critical flaw
Talos' research revealed that Chinese hackers are actively exploiting the flaw to execute code and attempt persistence on ...
SecurityWeek1d
Companies Warned of Commvault Vulnerability Exploitation
CISA warns companies of a widespread campaign targeting a Commvault vulnerability to hack Azure environments. The ongoing ...
CSO Online1d
Critical infrastructure under attack: Flaws becoming weapon of choice
While phishing and stolen credentials remain frequent points of entry, overexposure and poor patch management of critical ...
ExecutiveGov1d
CISA, FBI Release LummaC2 Malware Joint Advisory
The Cybersecurity and Infrastructure Security Agency and the FBI have unveiled a joint cybersecurity advisory highlighting ...
Data-snatching malware attacks computers and you don’t know it’s there, feds warn
The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) are warning the public of a fast-spreading LummaC2 ...
Manufacturing.net2d
CISA Warns of New Threats Targeting U.S. Industrial Sector
Bad actors include a highly volatile infostealer, and cyber espionage schemes targeting support for Ukraine.
SecurityWeek2d
CISA Says Russian Hackers Targeting Western Supply-Lines to Ukraine
Russian military intelligence hackers intensify targeting of Western logistics and technology companies moving supplies into ...
Lumma infostealer malware operation disrupted, 2,300 domains seized
Earlier this month, a coordinated disruption action targeting the Lumma malware-as-a-service (MaaS) information stealer ...
'Ongoing' Ivanti hijack bug exploitation reaches clouds
The "ongoing exploitation" of two Ivanti bugs has now extended beyond on-premises environments and hit customers' cloud ...