German law enforcement has disrupted dstat[.]cc, a criminal platform enabling individuals to easily conduct DDoS attacks. This service, accessible even to those lacking technical skills, provided reviews of stresser services, aiding in the execution of attacks against targeted websites.

The SEC has charged four companies—Avaya, Check Point, Mimecast, and Unisys—for misleading disclosures related to the SolarWinds cyberattack in 2020. The companies downplayed the extent of the breach, resulting in penalties totaling $6 million and violations of federal securities laws.

AI has transformed from a mere concept to a significant threat, with AI impersonation fraud on the rise. Current detection methods struggle to keep pace with attackers. A secure-by-design identity platform, like Beyond Identity’s RealityCheck, offers robust defenses against this emerging danger.

Apple has launched its Private Cloud Compute (PCC) Virtual Research Environment (VRE) for scrutiny by the research community, promoting transparency and security in its cloud AI services. The iPhone maker invites researchers to verify its privacy claims and offers substantial rewards for identified vulnerabilities.

A security flaw in the Wi-Fi Test Suite can allow unauthenticated local attackers to execute arbitrary code on Arcadyan FMIMG51AX000J routers. Tracked as CVE-2024-41992, this vulnerability enables attackers to gain full administrative control, risking network integrity.

CERT-UA has reported a dangerous email campaign targeting Ukrainian governmental and military entities. The attackers utilize deceptive emails featuring Remote Desktop Protocol (RDP) files. Once executed, these files allow threat actors to gain remote access, steal data, and spread malware.

Four members of the defunct REvil ransomware group have been sentenced to prison in Russia for hacking and money laundering. The court found them guilty of illegal payment circulation and malware distribution, with sentences ranging from 4.5 to 6 years.

The notorious cryptojacking group TeamTNT is gearing up for a large-scale campaign targeting cloud-native environments to mine cryptocurrencies. They aim to deploy Sliver malware via exposed Docker daemons while renting out compromised servers to others for illicit mining activities.

A new attack technique has emerged that bypasses Microsoft’s Driver Signature Enforcement on fully patched Windows systems, enabling OS downgrade attacks. This vulnerability allows the loading of unsigned kernel drivers, which can lead to malicious rootkit deployment, compromising system security.

Operational Technology (OT) security is increasingly vital as marine vessel and port operators digitize and automate systems. This shift introduces new security challenges, emphasizing the need for secure remote access management for industrial control systems (ICS). Learn more in our guide.