Individuals, who are enrolled in the Identity Theft Protection program offered by LifeLock, are receiving notifications in error by LifeLock. These notifications are being sent by email or text stating "New Property Report Detected." It is an issue with LifeLock’s system.
A vulnerability has been discovered in Google Android that could allow for remote code execution. Android is an operating system developed by Google for mobile devices, including, but not limited to, smartphones, tablets, and watches. Successful exploitation of this vulnerability could be disastrous.
A new threat group identified as Hellcat claims to have stolen sensitive user data after breaching Schneider Electric's Jira system. The alleged attack compromised critical information, including over 400,000 rows of user data, totaling more than 40GB.
The NJCCIC invites NJ public sector organizations and agencies to join a webinar on Thursday, November 21 from 1:00PM-2:00PM to receive information regarding the federal fiscal year (FFY) 2024 State and Local Cybersecurity Grant Program. See Zoom link below to join the webinar.
Recent open-source reporting details the activity of Chinese advanced persistent threat (APT) Salt Typhoon amidst the 2024 presidential election. Salt Typhoon has compromised telecommunications infrastructure, including infrastructure associated with court-ordered wiretaps
Consistent with open-source reporting, the NJCCIC detected increased attempts to exploit DocuSign APIs to deliver fraudulent invoices. Unlike traditional phishing scams, which rely on misleading emails and links, these attacks use real DocuSign accounts and templates to mimic companies.
LastPass Password Manager warned customers about a new social engineering campaign in which threat actors are leaving five-star reviews, posing as support on the LastPass extension review page on Google Chrome. In these reviews, they provide customers with a fake number...
A vulnerability has been discovered in Cisco Unified Industrial Wireless Software for Ultra-Reliable Wireless Backhaul Access Point that could allow for remote code execution. Cisco Unified Industrial Wireless Software for Ultra-Reliable Wireless Backhaul Access Point is Cisco’s...
The CISA has received multiple reports of a large-scale spearphishing campaign targeting organizations in several sectors. The foreign threat actor, often posing as a trusted entity, is sending spearphishing emails containing malicious remote desktop protocol (RDP) files
The Federal Bureau of Investigation (FBI), US Department of Treasury, and Israel National Cyber Directorate released this Joint Cybersecurity Advisory to warn network defenders of new cyber tradecraft of the Iranian cyber group Emennet Pasargad, which has been operating under an alias...
