Source: The Hacker News
CISA warns of active exploitation of a critical vulnerability in SolarWinds Web Help Desk software, which allows unauthorized access to sensitive data. A critical security flaw impacting SolarWinds Web Help Desk software was added to its (KEV) catalog.
Schools Face Spike in Cyberattacks From Nation-State Hackers
Source: Info Risk Today
U.S. schools and universities have become the target of cyberattacks from nation-state hackers, naming Iran and North Korea. The threats have endangered sensitive data by adopting new tactics such as creating fake companies in order to establish business relationships, gaining them access to regulated information like financial and health records.
Cisco investigates breach after stolen data for sale on hacking forum
Source: Bleeping Computer
Cisco is investigating a data breach after a hacker claimed to have stolen significant developer data, including source code and customer information, and is selling it on a hacking forum. The compromised data includes source code, credentials, and customer documents.
CISA Urges Improvements in US Software Supply Chain Transparency
Source: Infosecurity Magazine
CISA, along with the NSA and the Office of the Director of National Intelligence, has released a new guide for securing the software supply chain. This guide is part of a three-part series aimed at improving software security across the ecosystem. The guidance emphasizes the importance of continuous monitoring and risk management.
The internet is now a "cyber storm" — Microsoft says customers face 600 million attacks per day and the lines between nation states and cybercriminals are blurring
Source: Techradar
Microsoft's 2024 report warns of 600 million daily cyberattacks, blurring the lines between cybercriminals and nation-states. Geopolitical tensions drive cyber threats, targeting critical infrastructure and data.