Stay informed with Security World Trend Now! Discover the latest security trends, technologies, and strategies to protect your data, networks, and digital identity. Get expert insights and practical advice for ensuring your online safety. Explore now!
Interconnected World and the Evolution of Digital Identity The world is becoming increasingly interconnected, and with it, the need for effective digital identity management is also growing. Two types of identity and access management (IAM) have emerged to address the unique needs of organizations and consumers: workforce IAM and consumer IAM. While there are some…
Cybercrime Ransomware Group Steal Data From Dozens of Organizations Through MOVEit Exploit Background A known ransomware group has been connected to the recent MOVEit Transfer zero-day attack, which allowed the group to steal data from dozens of organizations. Progress Software had informed customers on May 31st about the critical SQL injection vulnerability that affected its…
A Zero-Day Vulnerability Exploited in MOVEit File Transfer Software to Steal Data from Organizations On May 31, Progress Software, a software development company, issued a warning that its MOVEit Transfer product has a SQL injection vulnerability, allowing a cybercriminal to gain access to MOVEit Transfer databases. The observed attacks reveal that hackers have developed a…
Varonis Warns of “Salesforce Ghost Sites” Exposing Sensitive Information Salesforce has been a revolutionary software in the sales industry for many years, merging customer relationship management with cloud computing to provide services that improve customer experience and sales force automation. While Salesforce has worked to improve customer and data security, data breaches still happen, and…
Ransomware Organizations Worldwide Targeted in Rapidly Evolving Buhti Ransomware Operation On May 26, 2023, Symantec released information about a recently identified and rapidly expanding ransomware operation known as Buhti. The Buhti operation uses both Linux and Windows systems and targets organizations worldwide. The operation exploits recent vulnerabilities for initial access and exploits custom tools to…
Cybersecurity experts from the US Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI) and the Australian Cyber Security Centre (ACSC) have issued a warning to critical infrastructure organizations about the threats posed by the BianLian ransomware group. This malicious group has been active since at least June 2022, with a recent…
Rockwell Automation, a global automation company, has disclosed more than a dozen vulnerabilities in its products, according to a report by SecurityWeek. This disclosure was made available to its customers, and some were also distributed by the US Cybersecurity and Infrastructure Security Agency (CISA). These advisories describe vulnerabilities found in Rockwell’s Kinetix 5500 control routers,…