Fortinet VPN devices are targeted by Cring Ransomware
Cring Ransomware is exploiting Fortinet vulnerability to breach and encrypt industrial sector companies’ networks. The Cring operators drop customized Mimikatz samples, followed by CobaltStrike after gaining initial access and deploy…
Pharmaceutical group Pierre Fabre is latest victim of Cyber Attack
Pharmaceutical and cosmetic group Pierre Fabre has been the victim of a latest cyber attack, and some production sites have been closed. “Some of the production activities have been stopped,”…
Ubiquiti data was leaked following Security Attack
Security Researcher revealed that Ubiquiti was the target of an extortion attempt following a January security breach. The company, however, didn’t confirm the whistleblower’s claims that user data was accessed…
Backdoor added in PHP Source code
PHP is the latest victim of source code attack. PHP Git repository was hacked and source code was tampered. A couple of malicious code was committed to php-src Git repository.…
Russian state hackers targets German Parliament
German Parliament members emails were targeted in a spearphishing attack. The extent of data compromised is not yet known. Attackers targeted German politician by sending emails from an account name…
Apple issues patches for its Zero day vulnerability CVE-2021-1879
Apple has released security patches to address an iOS zero-day vulnerability which is being actively exploited in the wild and affecting iPhone, iPad, iPod, and Apple Watch devices. “Apple is…
Phoenix CryptoLocker ransomware targets Insurance giant CNA
Chicago-based CNA Financial is the sixth-largest in the insurance firm in US. On March 21, the firm revealed it sustained a sophisticated cyber security attack using a new variant ransomware…
Shell discloses data breach after Accellion hack
Shell which deals in petrochemical and energy companies with more than 86,000 employees in over 70 countries has disclosed a data breach after attackers compromised the company’s secure file-sharing system…
Black Kingdom ransomware actively Targets Microsoft Exchange server
Black Kingdom ransomware is frequently exploiting the Microsoft exchange server ProxyLogon Vulnerabilities. Marcus Hutchins form MalwareTechBlog notified that threat actor was compromising Microsoft Exchange servers via the ProxyLogon vulnerabilities to…
Adobe ColdFusion fixes Critical Code Execution vulnerability
Adobe has released out-of-band security updates to address a critical vulnerability impacting ColdFusion versions 2021, 2016, and 2018. Adobe released ColdFusion 2016 Update 17, ColdFusion 2018 Update 11, and ColdFusion…