Arctic Wolf Buys Cylance From BlackBerry for $160M Plus Stock, After Buying It for $1.4B
Security operations firm Arctic Wolf announced on Monday that it has acquired Cylance endpoint security technology from BlackBerry. BlackBerry has agreed to sell Cylance assets to Arctic Wolf for $160 million of cash and roughly 5.5 million Arctic Wolf common shares. BlackBerry will receive approximately $80 million in cash at closing and roughly $40 million […]
Read More
Citrix Warns of Password Spraying Attacks Targeting NetScaler Appliances
Citrix has issued a fresh warning on password spraying attacks targeting NetScaler and NetScaler Gateway appliances deployed by organizations worldwide. The attacks appear to be related to a broad campaign that was initially detailed in April 2024, targeting VPN and SSH services from Cisco, CheckPoint, Fortinet, SonicWall, and other organizations to brute-force them. Cisco patched […]
Read More
Undocumented DrayTek Vulnerabilities Exploited to Hack Hundreds of Orgs
More than 300 organizations were hacked by ransomware groups using undocumented vulnerabilities in DrayTek devices, including a potential zero-day flaw, according to a warning from cybersecurity vendor Forescout. In October, Forescout published an advisory documenting 14 security defects in DrayTek Vigor router models potentially impacting hundreds of thousands of devices, many of which had not […]
Read More
Major Auto Parts Firm LKQ Hit by Cyberattack
LKQ Corporation, a major US-based provider of auto parts, informed the SEC late last week that a recent cyberattack caused disruptions at a Canadian business unit. LKQ provides parts for repairing and accessorizing consumer cars and other vehicles. The company has 1,600 locations across two dozen countries, and a total of 45,000 employees. In an […]
Read More
SRP Federal Credit Union Ransomware Attack Impacts 240,000
SRP Federal Credit Union is notifying over 240,000 people that their personal information was stolen in a recent cyberattack. According to the credit union, a threat actor had access to its systems from at least September 5, 2024, until November 4, 2024, and “potentially acquired certain files from our network during that time”. After securing […]
Read More
CVE Assigned to Cleo Vulnerability as Cl0p Ransomware Group Takes Credit for Exploitation
A notorious ransomware group has taken credit for the recent attacks exploiting vulnerabilities in file transfer products from enterprise software developer Cleo. The attacks involve vulnerabilities affecting Cleo’s Harmony, VLTrader, and LexiCom file transfer tools. Attacks exploiting the flaws have been seen since December 3. The vulnerabilities allow unauthenticated attackers to achieve remote code execution. […]
Read More
Keepit Raises $50 Million for SaaS Data Protection Solution
Denmark-based SaaS data protection and backup provider Keepit on Monday announced that it has raised $50 million, which brings the total investment received by the company to $90 million. The latest funding round was led by One Peak and EIFO (Export and Investment Fund of Denmark), and it will be used to accelerate product innovation […]
Read More
900,000 People Impacted by ConnectOnCall Data Breach
ConnectOnCall is notifying more than 900,000 individuals that their personal information and medical information was compromised in a data breach earlier this year. A digital, on-call answering solution, ConnectOnCall enables healthcare providers to manage after-hour calls and simplify patient communication and care coordination. The newly disclosed incident, the company says, was discovered on May 12, […]
Read More
Critical Vulnerabilities Found in Ruijie Reyee Cloud Management Platform
Vulnerabilities in the Reyee cloud management platform and Reyee OS network appliances could allow threat actors to take over tens of thousands of devices, according to a warning from cybersecurity firm Claroty. Ruijie devices use the MQTT messaging protocol for communication, where devices authenticate to a broker using a username/password pair, where the username is […]
Read More
US Updates a Science and Technology Pact With China to Reflect Growing Rivalry and Security Threats
The U.S. has updated a decades-old science and technology agreement with China to reflect their growing rivalry for technological dominance. The new agreement, signed Friday after many months of negotiations, has a narrower scope and additional safeguards to minimize the risk to national security. The State Department said the agreement sustains intellectual property protections, establishes […]
Read More