[ad_1] Cybersecurity vendor Sophos is posing as a new ransomware-as-a-service called SophosEncrypt, with threat actors using the company's name for their operation. Discovered yesterday by MalwareHunterTeamthe ransomware was initially thought to be part of a red team exercise by Sophos.…

[ad_1] The Global Cyber ​​Insurance Market is Expected to Reach more than 20 billion dollars by 2025. However, many organizations are finding it harder (and more expensive) than ever to insure against their nightmare breach scenarios. The premiums have greatly…

[ad_1] Citrix is ​​today notifying customers of a Critical Severity Vulnerability (CVE-2023-3519) in NetScaler ADC and NetScaler Gateway that already has exploits in the wild, and "urges" to install updated versions without time limit. The security issue may be the…

[ad_1] Citrix is ​​today notifying customers of a Critical Severity Vulnerability (CVE-2023-3519) in NetScaler ADC and NetScaler Gateway that already has exploits in the wild, and "urges" to install updated versions without time limit. The security issue may be the…

[ad_1] A critical design flaw in the Google Cloud Build service discovered by cloud security firm Orca Security can allow attackers to elevate privileges, providing them with near-full, unauthorized access to Google Artifact Registry code repositories. Double Bad.BuildThe flaw could…

[ad_1] A gang of financially motivated cybercriminals have been observed deploying BlackCat ransomware payloads to backnets using a revamped version of the Sardonic malware. Tracked as END8 (aka Syssphinx), this threat actor has been actively operating since at least January…

[ad_1] CISA ordered federal agencies to mitigate zero days of remote code execution affecting Windows and Office products that were exploited by Russian cybercriminal group RomCom in NATO phishing attacks. Security vulnerabilities (collectively tracked as CVE-2023-36884) were also added to…

[ad_1] Microsoft is investigating an ongoing Exchange Online outage preventing customers from sending email and triggering 503 errors on affected systems. Affected users are reporting issues with emails sent from Microsoft 365 environments returning with "503 5.5.1 Bad sequence of…

[ad_1] Update 7/17/23: The article has been updated due to an erroneous disclaimer added by Adobe to its email notification. However, a newer version of the bug was considered by Rapid7 to be actively exploited. Hackers are actively exploiting two…

[ad_1] Mark your calendar for mWISE™, Mandiant's targeted, community-driven cybersecurity conference. It takes place September 18-20, 2023 in Washington, DC. The organizers of mWISE, Mandiant's highly anticipated cybersecurity conference, now part of Google Cloud, have released this year's catalog of…