Hackers, dubbed “Scattered Spider”, are targeting insurance and financial enterprises with cloud service attacks to steal data and demand ransom. The hackers’ methods include searching services like GitHub for cloud access tokens accidentally left in source code by programmers. The stolen data is exfiltrated and a ransom demanded for its return. Admins can protect against such attacks by enabling multi-factor authentication (MFA) and ensuring staff can recognise phishing attempts.

CISA Details New RESURGE Malware Used In Ivanti Attacks
The U.S. Cybersecurity and Information Security Agency (CISA) has detected a new malware variant termed RESURGE, which can modify files and manipulate integrity checks. The