cns247 security news
"Bleeping Computer"

CISA tags Broadcom Fabric OS, CommVault flaws as exploited in attacks
by Bill Toulas on April 29, 2025 at 2:15 pm
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning of Broadcom Brocade Fabric OS, Commvault web servers, and Qualitia Active! Mail clients vulnerabilities that are actively exploited in attacks. [...]
Google: 97 zero-days exploited in 2024, over 50% in spyware attacks
by Sergiu Gatlan on April 29, 2025 at 10:00 am
Google's Threat Intelligence Group (GTIG) says attackers exploited 75 zero-day vulnerabilities in the wild last year, over 50% of which were linked to spyware attacks. [...]
Marks & Spencer breach linked to Scattered Spider ransomware attack
by Lawrence Abrams on April 28, 2025 at 8:28 pm
Ongoing outages at British retail giant Marks & Spencer are caused by a ransomware attack believed to be conducted by a hacking collective known as "Scattered Spider" BleepingComputer has learned from multiple sources. [...]
Hitachi Vantara takes servers offline after Akira ransomware attack
by Sergiu Gatlan on April 28, 2025 at 7:39 pm
Hitachi Vantara, a subsidiary of Japanese multinational conglomerate Hitachi, was forced to take servers offline over the weekend to contain an Akira ransomware attack. [...]
VeriSource now says February data breach impacts 4 million people
by Bill Toulas on April 28, 2025 at 5:54 pm
Employee benefits administration firm VeriSource Services is warning that a data breach exposed the personal information of four million people. [...]
Over 1,200 SAP NetWeaver servers vulnerable to actively exploited flaw
by Bill Toulas on April 28, 2025 at 4:46 pm
Over 1,200 internet-exposed SAP NetWeaver instances are vulnerable to an actively exploited maximum severity unauthenticated file upload vulnerability that allows attackers to hijack servers. [...]