Publications & Analyses
Argus Flow releases, platform announcements, press updates, and cybersecurity analyses.
How Ransomware Groups Pressure Victims with Naming and Shaming Tactics
When corporate data is exposed on dedicated leak sites, the consequences of cyberattacks linger long after the news cycle fades. Ransomware groups employ data publication tactics to coerce victims into paying ransoms.
Account Recovery Guide: Swift Actions After a Cyber Attack
The steps taken, and how quickly, after an account is compromised significantly matter in securing your digital identity. This guide details swift and effective methods for recovering hacked accounts.
CISO Liability Increases Following Data Breaches
Regulators are increasingly pursuing accountability after major data breaches, leading to rising personal liability for CISOs. This shift is altering how security leaders report risk and potentially weakening security culture.
Health Information Breaches Report: 7.9 Million Americans Affected
A report from the US Department of Health and Human Services indicates nearly 30,800 health information breaches occurred between September 2009 and 2010. These incidents compromised the protected health information of approximately 7.9 million Americans. The report was mandated by the HITECH Act.
Navia Data Breach Exposes HackerOne Employee Information
Cybersecurity platform HackerOne has announced that a significant amount of employee data was exposed due to a large-scale data breach affecting its vendor, Navia. The breach includes sensitive information such as employee names, addresses, and salary details.
Weekly Cybersecurity Recap: Chrome 0-Days, Router Botnets, and AWS Breach
This week's cybersecurity developments highlight critical 0-day vulnerabilities discovered in Chrome, a surge in router botnets, and a data breach affecting AWS. The misuse of AI agents is also emerging as a concerning trend.
GlassWorm Attack: Malware Injected into Python Repositories Using Stolen GitHub Tokens
The advanced threat group GlassWorm has leveraged stolen GitHub access tokens to inject malware into the code repositories of Python projects. The attack is expected to have a widespread impact. The full scope of affected projects and data is still being determined.
CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a critical vulnerability in Wing FTP servers that is being actively exploited. This flaw allows attackers to obtain server path information, potentially leading to deeper system compromises.
LeakNet Ransomware Spreads via ClickFix Through Hacked Websites
Cybersecurity researchers have uncovered that LeakNet ransomware is utilizing hacked websites and a tool called ClickFix for its propagation. This novel method allows the ransomware to deploy in memory, making it harder to detect.
Speagle Malware Hijacks Cobra DocGuard to Steal Data
A new malware strain named Speagle has been observed exploiting Cobra DocGuard, a document management and collaboration platform, to steal data via compromised servers. The extent of the data breach and the specific types of stolen information are still under investigation.
Trivy Security Scanner GitHub Actions Compromised, 75 Tags Hijacked
The Trivy Security Scanner's GitHub Actions integration experienced a security breach. Attackers hijacked 75 Git tags to potentially steal CI/CD secrets from affected users. This incident highlights supply chain attack risks in automated development workflows.
Citrix NetScaler Critical Flaw: Unauthenticated Data Leaks Possible
Citrix has issued an urgent call to patch a critical vulnerability in its NetScaler products. This flaw allows for unauthenticated data leaks, potentially exposing corporate information. The specific number of affected records and types of data compromised have not yet been disclosed.