Coverage Advisory for CVE-2023-50164: Apache Struts Path Traversal and File Upload Vulnerability

CVE-2023-50164 is a path traversal flaw that allows a remote attacker to upload malicious files to vulnerable servers. After successful exploitation, an attacker can achieve Remote Code Execution (RCE) on the target server. An attacker exploiting such a vulnerability can Read More …

#StopRansomware: Play Ransomware

The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) are releasing this joint CSA to disseminate the Play ransomware group’s IOCs and TTPs identified through FBI investigations Read More …

Defense Contractor Austal USA Confirms a Cyber Attack by Hunters International Ransomware Group

Australian-based American defense contractor Austal USA has confirmed a cyber attack after the Hunters International ransomware group listed the company and shared samples of the stolen data as proof. Austal USA is a Contractor for the US Department of Defense Read More …

USAF cracks down on ‘need to know’ violations in wake of Discord leaks

Just because you’re cleared for secrets doesn’t mean you have a “need to know” them. After hundreds of classified documents were leaked earlier this year, the U.S. Air Force is trying to ensure that airmen clear both bars before they Read More …

Russian diplomat accuses West of patronizing Ukrainian IT army that commits cybercrime

The US-led West supervises Ukraine’s so-called IT army that may be responsible for cybercrime, Russia’s representative Irina Tyazhlova said on Monday. Addressing a meeting of the UN Open-ended Working Group (OEWG) on security of and in the use of information Read More …

US healthcare giant Norton says hackers stole millions of patients’ data during ransomware attack

Kentucky-based nonprofit healthcare system Norton Healthcare has confirmed that hackers accessed the personal data of millions of patients and employees during an earlier ransomware attack. Norton operates more than 40 clinics and hospitals in and around Louisville, Kentucky, and is Read More …

U.S., South Korea, Japan to step up actions on North Korea cyber threats

The United States, South Korea and Japan agreed new initiatives on Saturday to respond to North Korea’s threats in cyberspace, including cryptocurrency abuses and space launches, White House National Security Adviser Jake Sullivan said. The three countries’ national security advisers Read More …

New Tool Set Found Used Against Organizations in the Middle East, Africa and the US

Unit 42 researchers observed a series of apparently related attacks against organizations in the Middle East, Africa and the U.S. The researchers will discuss a set of tools used in the course of the attacks that reveal clues about the Read More …

FBI: IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, Including U.S. Water and Wastewater Systems Facilities

The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Environmental Protection Agency (EPA), and the Israel National Cyber Directorate (INCD) are disseminating this joint Cybersecurity Advisory (CSA) to highlight continued malicious cyber activity Read More …