-
Cryptojacking Campaign Targets Misconfigured Kubernetes Clusters
Cybersecurity researchers have warned of an ongoing cryptojacking campaign targeting misconfigured Kubernetes clusters to mine Dero cryptocurrency. Cloud security firm Wiz, which shed light on the activity, said it’s an updated variant of a financially motivated operation that was first documented by CrowdStrike in March 2023. “In this incident, the threat actor abused anonymous access…
-
Lessons from the Ticketmaster-Snowflake Breach
Last week, the notorious hacker gang, ShinyHunters, sent shockwaves across the globe by allegedly plundering 1.3 terabytes of data from 560 million Ticketmaster users. This colossal breach, with a price tag of $500,000, could expose the personal information of a massive swath of the live event company’s clientele, igniting a firestorm of concern and outrage. …
-
Black Basta Ransomware May Have Exploited MS Windows Zero-Day Flaw
Threat actors linked to the Black Basta ransomware may have exploited a recently disclosed privilege escalation flaw in the Microsoft Windows Error Reporting Service as a zero-day, according to new findings from Symantec. The security flaw in question is CVE-2024-26169 (CVSS score: 7.8), an elevation of privilege bug in the Windows Error Reporting Service that…
-
New Phishing Campaign Deploys WARMCOOKIE Backdoor Targeting Job Seekers
Cybersecurity researchers have disclosed details of an ongoing phishing campaign that leverages recruiting- and job-themed lures to deliver a Windows-based backdoor named WARMCOOKIE. “WARMCOOKIE appears to be an initial backdoor tool used to scout out victim networks and deploy additional payloads,” Elastic Security Labs researcher Daniel Stepanic said in a new analysis. “Each sample is…
-
China-Backed Hackers Exploit Fortinet Flaw, Infecting 20,000 Systems Globally
State-sponsored threat actors backed by China gained access to 20,000 Fortinet FortiGate systems worldwide by exploiting a known critical security flaw between 2022 and 2023, indicating that the operation had a broader impact than previously known. “The state actor behind this campaign was already aware of this vulnerability in FortiGate systems at least two months…
-
One publicly traded Oregon cannabis company has flourished. Here’s how.
Medford-based weed producer’s market cap has climbed from less than $10 million two years ago to $137 million today.
-
Hanzo’s new product aims to lower AI costs for legal, compliance teams
Portland software maker Hanzo, which specializes in legal and compliance technology, has a new product to reduce the cost of AI.
-
Vancouver apartments sell to New York investor for $27M
Real estate firm CBRE brokered the sale of 182 apartments called Thunderbird Village.
-
Northwest Association for Blind Athletes will double its Vancouver office footprint this fall
The group employs 40 workers who advocate on behalf of blind and visually impaired persons.
-
Oregon to receive $15M from Johnson & Johnson settlement over talc products
Rosenblum said Johnson & Johnson misled consumers about the potential harms of its talc powder products.