Latest Windows TCO Cautionary Tales
![Two different Phantoms: [W]hen nobody is using Windows, there will be no botnets -Professor Eben Moglen, 2010](/i/2023/12/moglen-botnets.jpg)
-
-
BianLian Ransomware Hits Northeast Spine and Sports Medicine
If the ransomware group’s claim of cyberattack on Northeast Spine and Sports Medicine is proven true, the implications could be far-reaching, considering the sensitive nature of healthcare data and the potential compromise of patient information.
-
Active Exploitation of Critical Vulnerability in Microsoft SharePoint Server
Microsoft had previously released updates addressing a critical vulnerability (CVE-2023-29357) in Microsoft SharePoint Server. The vulnerability is reportedly being actively exploited and has a Common Vulnerability Scoring System (CVSSv3) score of 9.8 out of 10.
-
Microsoft SharePoint has a worrying security flaw, experts warn
The US Cybersecurity and Infrastructure Agency (CISA) is warning admins that a Microsoft SharePoint Server flaw is now being actively exploited in the wild.
In a new addition to its Known Exploited Vulnerabilities (KEV) catalog, CISA says CVE-2023-29357 is being used to gain elevated privileges.
-
CISA: Attacks exploiting Microsoft SharePoint flaw underway
Meanwhile, an exploit chain combining the flaw with a code injection vulnerability, tracked as CVE-2023-24955, that was also previously addressed by Microsoft had been developed by StarLabs SG security researcher Nguyen Tien Giang.
-
LockBit Ransomware Strikes Again: Two New Victims Added to Dark Web Portal
Maisons de l’Avenir, a reputable house builder with over 60 years of experience in Brittany and Loire-Atlantique, and Shinwa Co Ltd, a Japan-based manufacturing company specializing in production equipment and materials, find themselves under the ominous shadow of the LockBit ransomware.
-
Cloud Server Abuse Leads to Huge Spike in Botnet Scanning
Malicious actors are increasingly abusing free cloud services, which has led to a significant spike in botnet scanning activity, according to performance and security solutions provider Netscout.
-