The White House has announced it is taking concrete measures to effectively protect core sectors as well as critical infrastructure against cyberthreats. The actions, delineated in an order from President Joe Biden, are an appreciation of the cybersecurity flaws of important industries. According to a senior administration official, they also Continue Reading
CODESYS, an industrial automation software provider, informed its customers that it had patched about a dozen vulnerabilities that affected a number of products. More than half of these vulnerabilities were found by Cisco Talos, the details of which were also revealed. Flaws in CODESYS software could have grave consequences given Continue Reading
In a major security update, technology giant Apple said it has patched a security flaw that the company said might have been actively exploited to plant malware on macOS and iOS devices. Apple, however, did not share details on the in-the-wild attacks or the profile of the targets, nor did Continue Reading
According to a warning from security vendor Intezer, cybercriminals have been exploiting Argo Workflows to attack Kubernetes deployments and install crypto-miners. The Intezer team recognized a spate of vulnerable instances run by organizations in technology, finance, and logistics sectors, which let anyone install workflows. However, malevolent actors have, in some Continue Reading
As per a new report from anti-malware vendor Kaspersky, a newly revealed advanced persistent threat (APT) drive is targeting legions of users in South Asia, including government organizations. Termed LuminousMoth, the activity comprises cyberespionage attacks on entities since at least October 2020 but, unlike similar attacks that are highly targeted, Continue Reading
By