ConnectWise, the developer of remote access and support software ScreenConnect, has confirmed it was targeted by a cyber-attack from a nation-state threat actor. In a message sent to Infosecurity, a ConnectWise spokesperson said, “We recently learned of suspicious activity within… Read More "ConnectWise Confirms Hack, “Very Small Number” of Customers Affected"
May 29, 2025Ravie LakshmananMalware / Windows Security Cybersecurity researchers have taken the wraps off an unusual cyber attack that leveraged malware with corrupted DOS and PE headers, according to new findings from Fortinet. The DOS (Disk Operating System) and PE… Read More "New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers"
“What certainly popped [from the survey results] is how difficult the job ends up being for CISOs who work in that $1 billion to $5 billion range,” Kakolowski of IANS said in an interview. “What we see when we put… Read More "Even $5M a year can’t keep top CISOs happy"
A new browser-based phishing technique has made it harder for users to spot malicious websites, according to recent cybersecurity research. The method, known as a Fullscreen Browser-in-the-Middle (BitM) attack and discovered by SquareX, exploits standard browser functionality to convincingly mask… Read More "New Browser Exploit Technique Undermines Phishing Detection"
The threat actors behind the DragonForce ransomware gained access to an unnamed Managed Service Provider’s (MSP) SimpleHelp remote monitoring and management (RMM) tool, and then leveraged it to exfiltrate data and drop the locker on multiple endpoints. It’s believed that… Read More "DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints"
Once a subscription is created, the guest user gains “Owner” rights over it. According to BeyondTrust, this elevated privilege enables them to deploy resources, assign roles, and potentially escalate their access, posing a significant threat to the tenant’s security posture.… Read More "Microsoft Entra’s billing roles pose privilege escalation risks in Azure"
Cybersecurity teams have become a significant contributor to business growth, contributing a median value of $36m per enterprise initiative they are involved in. Despite this, the Ernst & Young (EY) survey of global security leaders found that cybersecurity budgets have… Read More "Cybersecurity Teams Generate Average of $36M in Business Growth"
The United States government has collected DNA samples from upwards of 133,000 migrant children and teenagers—including at least one 4-year-old—and uploaded their genetic data into a national criminal database used by local, state, and federal law enforcement, according to documents… Read More "The US Is Storing Migrant Children’s DNA in a Criminal Database"
Over 90% of the world’s top email domains are vulnerable to spoofing, enabling cybercriminals to launch sophisticated phishing attacks, according to new research by EasyDMARC. The email authentication firm found that just 7.7% of the world’s top 1.8 million email… Read More "Over 90% of Top Email Domains Vulnerable to Spoofing Attacks"
May 29, 2025Ravie LakshmananMalware / Cloud Security Google on Wednesday disclosed that the Chinese state-sponsored threat actor known as APT41 leveraged a malware called TOUGHPROGRESS that uses Google Calendar for command-and-control (C2). The tech giant, which discovered the activity in… Read More "Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations"
