How Did Authorities Identify the Alleged Lockbit Boss?

Last week, the United States joined the U.K. and Australia in sanctioning and charging a Russian man named Dmitry Yuryevich Khoroshev as the leader of the infamous LockBit ransomware group. LockBits leader "LockBitSupp" claims the feds named the wrong guy, saying the charges dont explain how they...

Russian TrickBot Mastermind Gets 5-Year Prison Sentence for Cybercrime Spree

40-year-old Russian national Vladimir Dunaev has been sentenced to five years and four months in prison for his role in creating and distributing the TrickBot malware, the U.S. Department of Justice DoJ said. The development comes nearly two months after Dunaev pleaded guilty to committing comput...

U.S. Indicts North Korean Hackers in Theft of $200 Million

The U.S. Justice Department today unsealed indictments against three men accused of working with the North Korean regime to carry out some of the most damaging cybercrime attacks over the past decade, including the 2014 hack of Sony Pictures, the global WannaCry ransomware contagion of 2017, and...

The vulnerability of the Financial Sanctions component of the PeopleSoft Enterprise FIN Payables business application allows a perpetrator to gain unauthorized access to the device.

The vulnerability of the Financial Sanctions component in the PeopleSoft Enterprise FIN Payables business application exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to the device throu...

Oracle PeopleSoft Enterprise FIN Payables Information Disclosure Vulnerability

Oracle PeopleSoft Products is the United States Oracle Oracle company's set of enterprise human capital management solutions. The product provides human capital management, financial management, supplier relationship management and other functions.PeopleSoft Enterprise FIN Project Costing is one ...

SQL Server Malware Tied to Iranian Software Firm, Researchers Allege

Researchers have made new discoveries surrounding the source of a previously-uncovered cryptomining operation that has targeted internet-facing database servers. The campaign, dubbed MrbMiner, was discovered in September 2020 downloading and installing a cryptominer on thousands of SQL servers...

CVE-2021-2044

Vulnerability in the PeopleSoft Enterprise FIN Payables product of Oracle PeopleSoft component: Financial Sanctions. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise FIN...

Oracle PeopleSoft 安全漏洞

Oracle PeopleSoft Products is the United States Oracle Oracle company's set of enterprise human capital management solutions. The product provides human capital management, financial management, supplier relationship management and other functions.PeopleSoft Enterprise FIN Project Costing is one ...

Department of Treasury Releases Advisory on Potential Sanctions Risks for Facilitating Ransomware Payments

The U.S. Department of the Treasury’s Office of Foreign Assets Control OFAC has released an Advisory on Potential Sanctions Risks for Facilitating Ransomware Payments. Financial institutions, cyber insurance firms, and companies that facilitate payments on behalf of victims may be violating OFAC...