CISA Warns of Suspected Broader SaaS Attacks Exploiting App Secrets and Cloud Misconfigs

GitLab Duo Vulnerability Enabled Attackers to Hijack AI Responses with Hidden Prompts

Chinese Hackers Exploit Trimble Cityworks Flaw to Infiltrate U.S. Government Networks

Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise

Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks

The threat actors behind the RansomHub ransomware-as-a-service (RaaS) scheme have been observed leveraging now-patched security flaws in Microsoft Active Directory and the Netlogon protocol to escalate privileges and gain unauthorized access to a victim network's domain controller as part of their post-compromise strategy.
"RansomHub has targeted over 600 organizations globally, spanning sectors

Headline

RansomHub Becomes 2024’s Top Ransomware Group, Hitting 600+ Organizations Globally

The Hacker News: Latest News