Industrial-strength April Patch Tuesday covers 135 CVEs
One actively exploited issue patched; five Critical-severity Office vulns exploitable via Preview Pane
Similar Posts
How To Automate Ticket Creation, Device Identification and Threat Triage With Tines
Bys sRun by the team at workflow orchestration and AI platform Tines, the Tines library features over 1,000 pre-built workflows shared by security practitioners from across the community – all free to import and deploy through the platform’s Community Edition. A recent standout is a workflow that handles malware alerts with CrowdStrike, Oomnitza, GitHub, and PagerDuty….
Tiffany discloses data breach involving gift cards — second breach disclosure in recent months
Bys sIn May, Tiffany & Co. confirmed a data breach affecting an unspecified number of customers in South Korea. Tiffany is one of LVMH Moët Hennessy Louis Vuitton’s 75 high-end brands in six different sectors. On May 26, Tiffany Korea emailed select customers to notify them of a cybersecurity breach involving unauthorized access to a vendor……
GamaCopy Mimics Gamaredon Tactics in Cyber Espionage Targeting Russian Entities
Bys sA previously unknown threat actor has been observed copying the tradecraft associated with the Kremlin-aligned Gamaredon hacking group in its cyber attacks targeting Russian-speaking entities. The campaign has been attributed to a threat cluster dubbed GamaCopy, which is assessed to share overlaps with another hacking group named Core Werewolf, also tracked as Awaken Likho and…
FBI Warns FSB-Linked Hackers Exploiting Unpatched Cisco Devices for Cyber Espionage
Bys sA Russian state-sponsored cyber espionage group known as Static Tundra has been observed actively exploiting a seven-year-old security flaw in Cisco IOS and Cisco IOS XE software as a means to establish persistent access to target networks. Cisco Talos, which disclosed details of the activity, said the attacks single out organizations in telecommunications, higher education…
Lotte Card reissues 650,000 cards after data leak, protects 1.28 million customers
Bys sChosunBiz reports: Lotte Card, whose internal data was leaked in a recent hacking incident, said on the 24th that from the 1st of this month through the previous day, among the 2.97 million customers whose information was leaked, about 650,000 applied for card reissuance, about 820,000 changed their card PINs, about 110,000 suspended their cards,……
Ransomware in Italy, strike at the Diskstation gang: hacker group leader arrested in Milan
Bys sRedazione reports: A 44-year-old man, a Romanian citizen, was arrested in Milan on charges of being the main director behind a series of cyber attacks orchestrated by the ‘Diskstation’ gang. This is a criminal organisation specialised in ransomware, active mainly against companies, professionals and technical studies. The arrest, carried out by the Italian Postal Police, is the…