Thousands of BeyondTrust Systems Remain Exposed
Thousands of BeyondTrust instances remain connected to the Internet, amid dire warnings that Chinese state-sponsored threat actors are actively exploiting a critical vulnerability in unpatched systems. The BeyondTrust bug, tracked under CVE-2024-12356, has an assigned CVSS score of 9.8 and affects Privileged Remote Access (PRA) and Remote Support (RS). It was first reported by BeyondTrust on Dec. 16. READ MORE...
Telemetry data from 800K VW Group EVs exposed online
Welcome to 2025: hopefully you enjoyed a pleasant holiday season and returned to the security operations center without incident - unlike Volkswagen, which last week admitted it exposed data describing journeys made by some of its electric vehicles, plus info about the vehicle's owners. We're just as shocked as you that a massive firm left data exposed online, but here we are yet again. READ MORE...
IT Giant Atos Responds to Ransomware Group's Data Theft Claims
French IT services giant Atos said its systems have not been compromised after a ransomware group claimed to have stolen data belonging to the company. A cybercrime group named Space Bears listed Atos on its Tor-based leak website last week, claiming to have obtained a "company database". Shortly after, Atos issued a statement saying that it had been investigating the data breach claims, [with] "no evidence of any compromise or ransomware affecting any Atos/Eviden systems in any country". READ MORE...
Chinese hackers also breached Charter and Windstream networks
?More U.S. companies have been added to the list of telecommunications firms hacked in a wave of breaches by a Chinese state-backed threat group tracked as Salt Typhoon. This comes after AT&T, Verizon, and Lumen confirmed on December 30 that they have evicted the hackers from their networks. After breaching their networks, the Salt Typhoon hackers gained access to targeted individuals' text messages, voicemails, and phone calls. READ MORE...
Users receive at least one advanced phishing link every week
Phishing remains one of the most significant cyber threats impacting organizations worldwide, according to SlashNext. Credential theft attacks surged dramatically in the second half of 2024 (703%), signaling a sharp escalation in the use of sophisticated phishing kits and social engineering tactics. These attack methods frequently overlap, as many credential phishing attempts incorporate malicious links as part of their strategy. READ MORE...
Tenable Disables Nessus Agents Over Faulty Updates
Tenable has disabled two Nessus scanner agent versions after discovering that they would go offline when triggering a differential plugin update. On December 31, Tenable announced that it discovered an issue where agents were going offline following plugin updates and decided to pause the updates until it identified the cause of the problem. On January 2, the company revealed that the issue was affecting Nessus Agent versions 10.8.0 and 10.8.1 for TVM, TSC and Nessus. READ MORE...
Eagerbee backdoor deployed against Middle Eastern govt orgs, ISPs
New variants of the Eagerbee malware framework are being deployed against government organizations and internet service providers (ISPs) in the Middle East. Previously, the malware was seen in attacks conducted by Chinese state-backed threat actors who Sophos tracked as 'Crimson Palace.' According to a new report by Kaspersky researchers, there's a potential connection to a threat group they call 'CoughingDown,' based on code similarities and IP address overlaps. READ MORE...
- ...in 1838, Samuel Morse first demonstrates the telegraph.
- ...in 1907, Maria Montessori opens her first school and daycare center in Rome, Italy.
- ...in 1912, German geophysicist Alfred Wegener first presents his theory of continental drift at a lecture in Frankfurt.
- ...in 1936, Porky Pig makes his world debut in a Warner Brothers cartoon, "Gold Diggers of '49."
