Financial technology firm Finastra, which serves 45 of the world’s top 50 banks, confirmed a major data breach involving its internal file transfer system. The breach, which used stolen credentials, resulted in the theft of 400 gigabytes of compressed information, which was then advertised for sale online by the attacker. Finastra is now investigating the extent of the breach and is closely communicating with its customers about ongoing risks and remedies.
Weaponized LDAP PoC Exploit Installing Information-Stealing Malware
Security researchers are falling victim to a fake proof-of-concept exploit for CVE-2024-49113, also known as LDAPNightmare, which downloads malware that steals information. This cybersecurity attack
