LulzSec Muslims have declared their intent to resume their cyber offensive, launching a cyberattack on United Arab Emirates and Bahrain. The group, known for its previous cyber exploits against nations like Israel and India, recently made the announcement via their X (previously Twitter) account. In a video message show more ...
Binance, a well-known cryptocurrency exchange, has become embroiled in controversy amid claims of a possible KYC data breach emerging from a threat actor’s post on dark web. Speculation within the cryptocurrency sphere indicates that confidential user data, such as full names, countries, and phone numbers, has show more ...
A new category of malicious tools has been gaining popularity with crypto scammers lately: crypto wallet drainers. This post will explain what crypto drainers are, how they work, what makes them dangerous — even for experienced users — and how to defend against them. What a crypto (wallet) drainer is A crypto show more ...
A recent Maxis Berhad cyberattack has been attributed to the R00TK1T ISC Cyber Team, stirring concerns about data security and network integrity for the Malaysian communications firm. The cyberattack on Maxis Berhad, which unfolded on February 5, 2024, was posted by the threat actor in a series of dark web posts, show more ...
A threat actor known as ‘IC3’ has released sensitive databases from well-known global entities—United Colors of Benetton (India), Watchmax (UK), and Tennessee Farmers Insurance (US)—onto the dark web. The leaked data includes a vast array of personal information such as names, dates of birth, contact show more ...
Cyble, a trailblazer in the cybersecurity domain, has taken a significant leap forward with its ODIN platform. Aiming to streamline the workflow of cybersecurity researchers and information security professionals, ODIN has introduced an innovative feature that simplifies the analysis of IP addresses and Common show more ...
GhostSec, the hacktivist group known for its support of cyber threat actors and activists, continues to expand its activities in 2024. GhostSec 2024 plans and initiatives involve raising funds to help anonymize the identities of activists and hacktivists involved in various causes. The group launched a new project show more ...
Many people with ADHD, autism, dyslexia, and other neurodiverse conditions bring new perspectives that can help organizations solve cybersecurity challenges.
Security holes in a big data tool could lead to big data compromise.
Tens of thousands of workers are effected by a fellow employee dipping into files that include everything from SSNs and names to union status and compensation data.
Gil Shwed will assume the position of executive chairman once a new CEO is appointed.
France, the UK, the US, and others will work on a framework for the responsible use of tools like NSO Group's Pegasus, and Shadowserver Foundation gains £1 million investment.
Private spyware vendors were behind nearly half of all zero-day exploits in Google products since 2014.
Airbus-owned NAVBLUE fixed the issue after a penetration testing firm disclosed the problem to the company.
Nigerian University of Technology and Management plans to compete on the global cyber-education stage.
Full 10s on the CVSS vulnerability severity scale have been assigned to two flaws discovered in Fortinet's FortiSIEM cybersecurity operations platform.
The cyberattackers used SQL injection and XSS to target 65 retail companies and job recruiters, stealing databases with unique emails and other sensitive records.
A grouping of serious printer bugs, unveiled at last summer's Pwn2Own, were patchless for months, but are finally fixed now.
More than six million VPNs are now deployed on devices in the United Arab Emirates.
GenAI has the potential to revolutionize how organizations approach enterprise security, compliance, identity, and management processes.
The flaw allows attackers to bypass authentication and access restricted resources on vulnerable devices. The exploitation volume is high, with over 170 distinct IP addresses attempting to exploit the vulnerability.
The leak compromised highly confidential documents exchanged between the Ministry of Foreign Affairs and its international diplomatic missions, prompting discussions between Tokyo and Washington on countermeasures.
The court ruling allows the FTC to continue its enforcement action against data broker Kochava for selling non-anonymized, granular location data, setting the stage for potential limitations on data brokers' activities.
The security research team at Escape scanned 189.5 million URLs and discovered over 18,000 exposed API secrets, with 41% of them being highly critical and posing financial risks.
Collaboration between organizations and ethical hackers is essential as cyberattacks become more sophisticated, and bug bounty programs play a significant role in promoting online security.
The Philippines repelled a cyberattack from hackers suspected to be based in China, targeting multiple government departments. The attackers used IP addresses located in China, prompting lawmakers to demand an urgent briefing on national security
The cyberattacks targeted water systems in Pennsylvania and were carried out by an Iranian-backed militia group, exposing vulnerabilities in America's water infrastructure.
The cyberattack led to disruption in Clorox's business operations, requiring expenses for IT recovery, forensic experts, and professional services to investigate and remediate the attack.
The EUCC scheme is voluntary and aims to provide a common assessment process for ICT suppliers to certify products, based on the SOG-IS Common Criteria evaluation framework.
The stolen data, including over two million unique email addresses, was put up for sale in Chinese-speaking hacking-themed Telegram groups, with the majority of the focus on India, Taiwan, Thailand, and Vietnam.
Latio Application Security Tester simplifies code scanning with OpenAI, offering easy code change submission and GitHub Actions templates. The tool's future plans include support for non-OpenAI models, improved handling of large files, and more.
Hewlett Packard Enterprise (HPE) is investigating a potential breach after a threat actor claimed to have stolen HPE credentials and sensitive data and put it up for sale on a hacking forum.
A cyberattack over the weekend targeted the computer servers of Northern Light Health, a major Maine healthcare provider. As a precaution, it temporarily took all patient records offline, although the records were not on the affected servers.
The Commerce Department has sanctioned several European, Israeli, Russian, and Singaporean companies involved in the trafficking and development of spyware tools used for repression and human rights abuses.
Airbus Navblue Flysmart+ Manager had a vulnerability that allowed attackers to tamper with engine performance calculations and intercept data, posing a serious risk to flight safety.
The Pennsylvania Courts system has been hit by a cyberattack, taking down parts of its website. The Administrative Office of Pennsylvania Courts revealed via social media that the service had suffered a denial of service (DoS) attack.
Verizon Communications has reported an insider data breach affecting nearly half of its workforce, exposing sensitive employee information such as names, addresses, Social Security numbers, and compensation details.
Chinese state-sponsored hackers breached the internal computer network of the Dutch Ministry of Defence using a vulnerability in FortiGate devices. The breach was for espionage purposes and the malware was found in a compartmentalized network.
The FortiSIEM product from Fortinet has been found to have two new critical vulnerabilities, CVE-2024-23108 and CVE-2024-23109, which allow for remote code execution by unauthenticated attackers.
While it is unclear whether a ransom was paid, the company stated that client transaction data was not accessed during the attack. The attack occurred amidst a major business deal, but experts predicted minimal disruption to EquiLend's operations
The threat actors behind the campaign utilized multiple stages and techniques, including obfuscation and leveraging open platforms, to carry out the attack and steal sensitive information.
The malware is distributed through a multi-stage infection chain involving weaponized PDF files, internet shortcuts, and PowerShell loaders, with similarities to the previously disclosed Phemedrone Stealer.
Debian Linux Security Advisory 5616-1 - It was discovered that ruby-sanitize, a whitelist-based HTML sanitizer, insufficiently sanitized style elements, which may result in cross-site scripting.
Red Hat Security Advisory 2024-0670-03 - An update for runc is now available for Red Hat Enterprise Linux 9.
By Christopher Budd, Director, Threat Research, X-Ops The Internet has become a ubiquitous part of everyday life and while its advantages are numerous and far-reaching, we need to ensure we are protecting ourselves and our precious personal information while online. Just as you wouldn’t drive your car down the show more ...
In the past year, 18% of Qatari organizations experienced a cybersecurity incident, with 5% facing more than five incidents. The average cost per occurrence was estimated to be approximately US$4.94 million. Recognizing the critical importance of cybersecurity in addressing cybercrime effectively, it must be regarded show more ...
The U.S. State Department said it's implementing a new policy that imposes visa restrictions on individuals who are linked to the illegal use of commercial spyware to surveil civil society members. "The misuse of commercial spyware threatens privacy and freedoms of expression, peaceful assembly, and association," Secretary of State Antony Blinken said. "Such targeting has been
Employment agencies and retail companies chiefly located in the Asia-Pacific (APAC) region have been targeted by a previously undocumented threat actor known as ResumeLooters since early 2023 with the goal of stealing sensitive data. Singapore-headquartered Group-IB said the hacking crew's activities are geared towards job search platforms and the theft of resumes, with as many as 65
A recently disclosed server-side request forgery (SSRF) vulnerability impacting Ivanti Connect Secure and Policy Secure products has come under mass exploitation. The Shadowserver Foundation said it observed exploitation attempts originating from more than 170 unique IP addresses that aim to establish a reverse shell, among others. The attacks exploit CVE-2024-21893 (CVSS
Threat actors are leveraging bogus Facebook job advertisements as a lure to trick prospective targets into installing a new Windows-based stealer malware codenamed Ov3r_Stealer. "This malware is designed to steal credentials and crypto wallets and send those to a Telegram channel that the threat actor monitors," Trustwave SpiderLabs said in a report shared with The Hacker News. Ov3r_Stealer
Three new security vulnerabilities have been discovered in Azure HDInsight's Apache Hadoop, Kafka, and Spark services that could be exploited to achieve privilege escalation and a regular expression denial-of-service (ReDoS) condition. "The new vulnerabilities affect any authenticated user of Azure HDInsight services such as Apache Ambari and Apache Oozie," Orca security
SaaS applications are the darlings of the software world. They enable work from anywhere, facilitate collaboration, and offer a cost-effective alternative to owning the software outright. At the same time, the very features that make SaaS apps so embraced – access from anywhere and collaboration – can also be exploited by threat actors. Recently, Adaptive Shield commissioned a Total Economic
As personal devices within corporate networks make for a potentially combustible mix, a cavalier approach to BYOD security won’t cut it
Source: www.schneier.com – Author: Bruce Schneier HomeBlog Comments B.J. Herbison • February 5, 2024 11:36 AM Was the call recorded? On the call we have a bunch of scammers and one person who says “The deepfakes were great, I was fooled.” and sends the money. The “worried about a phishing email” might show more ...
Source: www.infosecurity-magazine.com – Author: 1 The Pennsylvania Courts system has been hit by a cyber-attack, taking down parts of its website. The Administrative Office of Pennsylvania Courts revealed via social media that the service had suffered a denial of service (DoS) attack. The statement noted that show more ...
Source: www.cybertalk.org – Author: slandau EXECUTIVE SUMMARY: Every organization needs a cyber security executive who can lead well. Getting cyber security governance right matters more than ever before. The cyber threats are growing and becoming increasingly costly. The average expenses associated with a show more ...
Source: www.lastwatchdog.com – Author: bacohido By Bharat Bhushan Even in the cloud era, Microsoft Exchange Server remains a staple business communications tool across the globe. Related: The need for robust data recovery policies. One critical issue faced by organizations that rely on Exchange Server is the show more ...
Source: www.techrepublic.com – Author: Luis Millares Enpass fast facts Our rating: 4.0 stars out of 5 Pricing: Starts at $1.99 Key features Offline password manager. Can store user data on cloud service of choice. Fully free desktop version. Enpass is an offline password manager that lets you store your data show more ...
