NEW: The ransomware gang that hacked into U.S. health tech giant Change Healthcare used a set of stolen credentials to remotely access company systems.

These systems were not protected by MFA, according to the CEO of its parent company UnitedHealth.

techcrunch.com/2024/04/30/uhg…

Microsoft shares guidance on how defenders can utilize Azure logs to enhance threat hunting capabilities & proactively identify potential security threats in their environment: msft.it/6014YO1Ms

Data breaches on a massive scale affecting the healthcare 🩺 sector have become increasingly common over the last few years. We cannot let them become the norm!

👨‍💻🔐 A new security #vulnerability (CVE-2024-27322) has been discovered in the R #programming language. It could allow attackers to execute arbitrary code through malicious RDS files, exposing your projects to supply chain attacks.

Read: thehackernews.com/2024/04/new-r-…

#cybersecurity

WP Automatic WordPress plugin hit by millions of SQL injection attacks - Bill Toulas
bleepingcomputer.com/news/security/…

bleepingcomputer.com/news/security/…

Today RedSense proudly launched its Public Sector Safety Shield Solution, which utilizes data from TEAM CYMRU, enabling state and regional cyber command centers to secure smaller public entities like municipalities, schools, and healthcare providers.

redsense.com/news/public-se…

🕵️‍♂️Precursors/attack chains of these types are trending highly right now!

🚨Stay alert with RedSense and our customer alerts, which are additionally informed and contextualized using our adversarial visibility.

U.S. Treasury Department has sanctioned two Iranian firms and four individuals for their involvement in malicious cyber activities targeting U.S. companies and government entities on behalf of the IRGC-CEC.

More details. 👇 thehackernews.com/2024/04/us-tre…

#hacking #CyberSecurity

Analyzing APT28 custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials
(Windows Print Spooler Elevation of Privilege Vulnerability)
microsoft.com/en-us/security…

‼️👇🏻

GitLab affected by GitHub-style CDN flaw allowing malware hosting - Ax Sharma
bleepingcomputer.com/news/security/…

bleepingcomputer.com/news/security/…

Malware review:

2024-03-26 - Malware Disguised as Installer from Korean Public Institution (Kimsuky Group)

- Masquerades as installer (0 points)
- Masqueraded installer is not functional (-1 points)
- Dropper is signed (+1 points)
- Drops src.rar (-1 points)
- Password

LabHost phishing service with 40,000 domains disrupted, 37 arrested - Bill Toulas
bleepingcomputer.com/news/security/…

bleepingcomputer.com/news/security/…

If you're running liblzma 5.6.0 or 5.6.1 (as seen in the compromised releases), it's advised to roll back to a safe version such as liblzma 5.4.1!

Today we are happy to welcome Chance Coy to the team!

RedSense is proud to work with DoD-SkillBridge, who's program provides military personnel with valuable civilian work experience in their final 180 days of service, connecting them with industry partners.

DoD SkillBridge

🚨 Urgent security warning - If you use FortiClientLinux, update immediately. Critical #vulnerability could let attackers run code on your system.

Patch now, get the details here: thehackernews.com/2024/04/fortin…

#cybersecurity #hacking #Linux

It’s time! ⏰

Tomorrow, join DomainTools and RedSense for context regarding the state of #ransomware within healthcare and discoveries and methodologies from DomainTools research in phishing, malware, and spam that impact information security professionals. bit.ly/4ayzUfi

Outstanding visual summary of the CVE-2024-3094 XZ utils backdoor vulnerability by Thomas Roccia 🤘 👏🏻
We’ve already seen adversaries in public communities (open-source TG channels) & vetted communities (post-Conti #ransomware rocket-chat) discussing the weaponization of this backdoor.

‼️ Two days left to register! ‼️

🔗👇🏻