lithos Twitter
Lithos Header
Last Updated
Age in hrs 
⬇ Latest Press Releases ⬇

 CrowdStrike 2024 Global Threat Report: Adversaries Gain Speed and Stealth  - Latin America (LATAM) is a growing market, and threat actors have used numerous eCrime malware variants to target users in this region. Over the past few years, many researchers have[...]

 New Leak Shows Business Side of China’s APT Menace  - A new data leak that appears to have come from one of China’s top private cybersecurity firms provides a rare glimpse into the commercial side of China’s many state-sponsored hacking groups. Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage...

[End Press Releases]

 LockBit ransomware secretly building next-gen encryptor before takedown  - LockBit ransomware developers were secretly building a new version of their file encrypting malware, dubbed LockBit-NG-Dev - likely a future LockBit 4.0, when law enforcement took down the cybercriminal's infrastructure earlier this week.

 Joomla fixes XSS flaws that could expose sites to RCE attacks  - Five vulnerabilities have been discovered in the Joomla content management system that could be leveraged to execute arbitrary code on vulnerable websites.

 FTC sues H&R Block over deceptive 'free' online filing ads  - The U.S. Federal Trade Commission (FTC) sued tax preparation giant H&R Block over the company's deceptive "free" online filing advertising and for pressuring people into overpaying for its services.

 Microsoft now force installing Windows 11 23H2 on eligible PCs  - Microsoft has started force installing Windows 11 23H2 on eligible devices that have reached or are close to their end-of-servicing date.

 FTC to ban Avast from selling browsing data for advertising purposes  - The U.S. Federal Trade Commission (FTC) will order Avast to pay $16.5 million and ban the company from selling the users' web browsing data or licensing it for advertising purposes.

 Customizing Security with Security Configuration Management (SCM)  - Many of the breaches of the past ten years have taken advantage of weak or nonexistent security settings. Conversely, for example, companies that configured their Docker application to the CIS recommended security settings for container users and privileges were not as vulnerable to container escape exploits....

 Insomniac Games alerts employees hit by ransomware data breach  - Sony subsidiary Insomniac Games is sending data breach notification letters to employees whose personal information was stolen and leaked online following a Rhysida ransomware attack in November.

 U-Haul says hacker accessed customer records using stolen creds  - U-Haul has started informing customers that a hacker used stolen account credentials to access an internal system for dealers and team members to track customer reservations.

 UnitedHealth confirms Optum hack behind US healthcare billing outage  - US healthcare giant UnitedHealth Group announced that its subsidiary Optum suffered a cyberattack by "nation-state" hackers on the Change Healthcare platform, forcing the company to shut down IT systems and various services.

 ScreenConnect servers hacked in LockBit ransomware attacks  - Attackers are exploiting a maximum severity authentication bypass vulnerability to breach unpatched ScreenConnect servers and deploy LockBit ransomware payloads on compromised networks.

 Bring us the head of LockBit! $15 million bounty offered for information on leaders of notorious ransomware gang  - A huge reward is being offered for information leading to the identification or location of any of the leaders of the LockBit ransomware gang. The bounty offer comes from the US State Department, following this week's disruption of the criminal organisation's activities. LockBit, which has been operating...