-
Cyber Espionage Alert: LilacSquid Targets IT, Energy, and Pharma Sectors
A previously undocumented cyber espionage-focused threat actor named LilacSquid has been linked to targeted attacks spanning various sectors in the United States (U.S.), Europe, and Asia as part of a data theft campaign since at least 2021. “The campaign is geared toward establishing long-term access to compromised victim organizations to enable LilacSquid to siphon data…
-
RedTail Crypto-Mining Malware Exploiting Palo Alto Networks Firewall Vulnerability
The threat actors behind the RedTail cryptocurrency mining malware have added a recently disclosed security flaw impacting Palo Alto Networks firewalls to its exploit arsenal. The addition of the PAN-OS vulnerability to its toolkit has been complemented by updates to the malware, which now incorporates new anti-analysis techniques, according to findings from web infrastructure and…
-
Researchers Uncover Active Exploitation of WordPress Plugin Vulnerabilities
Cybersecurity researchers have warned that multiple high-severity security vulnerabilities in WordPress plugins are being actively exploited by threat actors to create rogue administrator accounts for follow-on exploitation. “These vulnerabilities are found in various WordPress plugins and are prone to unauthenticated stored cross-site scripting (XSS) attacks due to inadequate input sanitization
-
PeaceHealth nurses win 18% raises in tentative agreement
The raises make these RNs among the best paid in the state of Washington, according to the union.
-
OHSU’s controversial chief people officer will step down
Qiana Williams came to OHSU in 2022 after an investigation into workplace culture found it “devalued and marginalized” its HR functions.
-
Dr. Martens, Steve Madden settle $14M patent infringement lawsuit
The British footwear maker had filed a patent infringement lawsuit against competitor Steve Madden and its manufacturer in August 2023.
-
Oregon revenue and economic forecast shows modest uptick
After last year’s $5 billion kicker, a smaller rebate could be in the works for taxpayers.
-
Epicurate sees promise in $36B destination luxury marketplace
Portland startup Epicurate is combining two of the region’s strengths: tech and hospitality as it builds out its private dining and luxury experience platform.
-
Cybercriminals Abuse StackOverflow to Promote Malicious Python Package
Cybersecurity researchers have warned of a new malicious Python package that has been discovered in the Python Package Index (PyPI) repository to facilitate cryptocurrency theft as part of a broader campaign. The package in question is pytoileur, which has been downloaded 316 times as of writing. Interestingly, the package author, who goes by the name…
-
Check Point Warns of Zero-Day Attacks on its VPN Gateway Products
Check Point is warning of a zero-day vulnerability in its Network Security gateway products that threat actors have exploited in the wild. Tracked as CVE-2024-24919, the issue impacts CloudGuard Network, Quantum Maestro, Quantum Scalable Chassis, Quantum Security Gateways, and Quantum Spark appliances. “The vulnerability potentially allows an attacker to read certain information on
