Hackers strike LiteSpeed cache again.

Hackers are exploiting a critical bug in the LiteSpeed Cache WordPress plugin, according to Bleeping Computer. Oil industry giant Halliburton has confirmed a cyberattack issue, as reported by The Record. A China-nexus threat group called Velvet Ant is exploiting a zero-day vulnerability on Cisco Nexus switches, as reported by Sygnia. Qilin ransomware is now stealing credentials from Chrome browsers, according to Bleeping Computer. The ARRL has reported an IT security incident and has issued a report to its members. SolarWinds has leaked credentials in a hotfix for an exploited web help desk flaw, as reported by SecurityWeek. A telecom company has been hit with a $1 million penalty over AI-generated fake Biden robocalls, as reported by The Record. The Department of Justice is suing the Georgia Institute of Technology over allegedly failing to meet cybersecurity requirements for DOD contracts, as reported by CyberScoop. A university phishing test based on a fake Ebola scare has prompted an apology, as reported by The Register.