RansomwareRansomHub outage takes Group-IB researchers by surpriseSteve ZurierApril 30, 2025Outage shows how fast things change in the cyber underground.
Vulnerability ManagementOver 400 servers found to be exposed to SAP NetWeaver bug Steve ZurierApril 29, 2025Active exploitation of flaw with 10.0 CVSS has been confirmed.
Critical Infrastructure SecurityIran claims to repel cyberattack on critical infrastructureSteve ZurierApril 28, 2025Details are scarce, so security experts say jumping to conclusions on who executed the alleged cyberattack is premature.
Vulnerability ManagementSAP patches zero day rated 10.0 in NetWeaverSteve ZurierApril 25, 2025Attackers observed exploiting vulnerability in SAP's NetWeaver Visual Composer product.
Vulnerability ManagementCommvault Command Center bug rated 10.0 patchedSteve ZurierApril 24, 2025CVE-2025-34028 could lead to a complete compromise of the Command Center.
Critical Infrastructure SecurityCritical bugs in Siemens, Schneider Electric gear top CISA advisorySteve ZurierApril 23, 2025CISA cites 16 CVEs impacting industrial systems in ICS advisory, four critical.
Security Strategy, Plan, BudgetTwo senior officials resign from federal cybersecurity office, CISASteve ZurierApril 22, 2025Continued brain drain includes two of the experts who managed CISA’s Secure by Design program.
RansomwareBulletproof hosting provider Proton66 steps-up malware campaignsSteve ZurierApril 21, 2025Researchers advise security teams to block sources of bulletproof hosting.
RansomwareLegends International notifies customers, employees of data breachSteve ZurierApril 18, 2025Sports venue support company said sensitive information was stolen, but offers no further details.
Vulnerability ManagementCISA funds CVE program in the 11th hour of contract with MITRESteve ZurierApril 16, 2025Foundation to support CVE Program formally announced amid news that program was saved.
