The all in one place for non-profit security aid.
Cybersecurity agencies have warned about the emergence of new variants of the TrueBot malware. These variants specifically target organizations in the United States and Canada, aiming to extract sensitive data from compromised networks.
These sophisticated attacks exploit a critical vulnerability (CVE-2022-31199) in the widely used Netwrix Auditor server and its associated agents.
This Read More
The Hacker News | #1 Trusted Cybersecurity News Site
MISP Platform Integration, CISO Spotlight, & Intel Briefing
In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Manpreet Kang, security automation engineer at Williams-Sonoma, Inc. and RH-ISAC staff, Ian Furr, security integration engineer and JJ Josing, principal threat researcher, to discuss Williams-Sonoma’s adoption of the MISP platform. Manpreet touches upon the pros associated with MISP and how Williams-Sonoma integrated the platform within their own environment. Then, Luke talks with Ngozi Eze, Global CISO at Levi Strauss & Co. about how he entered the cybersecurity industry and how the retail sector presents unique challenges. Finally, Lee Clark, cyber threat intelligence analyst & writer at RH-ISAC, provides the latest intel briefing. Read More
The CyberWire
ConnectWise urges ScreenConnect admins to patch critical RCE flaw
ConnectWise warned customers to patch their ScreenConnect servers immediately against a maximum severity flaw that can be used in remote code execution (RCE) attacks. […] Read More
BleepingComputer
Intercontinental Exchange to pay $10M SEC penalty over VPN breach
The Intercontinental Exchange (ICE) will pay a $10 million penalty to settle charges brought by the U.S. Securities and Exchange Commission (SEC) after failing to ensure its subsidiaries promptly reported an April 2021 VPN security breach. […] Read More