Biometric Update

Uninvention’s Nubus promises data sovereignty at fraught moment: Nextcloud

Nextcloud questions the wisdom of relying on major cloud platforms like Microsoft Entra ID to manage user accounts, access ...

Cloud file-sharing sites targeted for corporate data theft attacks

A threat actor known as Zestix has been offering to corporate data stolen from dozens of companies likely after breaching ...
Dark Reading

Lack of MFA Is Common Thread in Vast Cloud Credential Heist

A threat actor that goes by "Zestix" used several infostealers to obtain credentials and breach file-sharing instances of ...
GovInfoSecurity

Missing MFA Strikes Again: Hacker Hits Collaboration Tools

Dozens of organizations that use real-time content collaboration platforms appear to have lost not only credentials but also ...

One criminal, 50 hacked organizations, and all because MFA wasn't turned on

Brazil's Maida Health is yet another of the 50-ish alleged victims, and the 2.3 TB dataset accessed via a Nextcloud instance ...

Dozens of organizations fall victim to infostealers after failing to enforce MFA

How the devices ended up compromised is unclear, but what matters is that Zestix was able to use the credentials to access ...
SecurityWeek

Dozens of Major Data Breaches Linked to Single Threat Actor

A threat actor known as Zestix and Sentap has hacked dozens of global enterprises using credentials exfiltrated via ...