Mayor Andrew Ginther, photographed in 2015, courtesy of Wikimedia Commons On July 18, the city of Columbus experienced a data breach that, among other things, exposed the private information of everyone who visited City Hall. And yet, city officials failed to inform anyone that their security might be at risk when the breach occurred. Coincidentally, […]
21 August 2024Ravie LakshmananCyber espionage / threat intelligence In an operational security breach (OPSEC) case, the operator of a new information stealer called Styx Stealer leaked data from his own computer, including customer details, winning information, nicknames, phone numbers and email addresses. Styx Stealer, a derivative of the Phemedrone Stealer, can steal browser data, Telegram […]
19 August 2024Ravie LakshmananSecurity vulnerability / zero-day A recently patched vulnerability in Microsoft Windows was exploited as a zero-day vulnerability by the Lazarus Group, a prolific state-sponsored actor linked to North Korea. The security vulnerability, which is CVE-2024-38193 (CVSS score: 7.8) was described as a privilege escalation flaw in the Windows Ancillary Function Driver (AFD.sys) […]
Monitoring evolving DDoS trends is essential to anticipate threats and adapt mitigation strategies. The comprehensive Gcore Radar Report for H1 2024 provides detailed insights into DDoS attack data, showing changes in attack patterns and the broader cyber threat landscape. Here we share a selection of insights from the full report. Key findings The number of […]
14 August 2024Ravie LakshmananWindows security/vulnerabilities Microsoft released fixes on Tuesday to address a total of 90 security vulnerabilities, including ten zero-day vulnerabilities, six of which were already being actively exploited. Of the 90 bugs, seven are classified as critical, 79 as important and one as moderate. In addition, there are the 36 vulnerabilities that the […]
