Oktacron logo
Cyber security aggregate rss news

Cyber security aggregator - feeds history
image for AustralianSuper, Res ...

 Cyber News

A series of cyberattack have impacted some of Australia’s largest superannuation funds, likely compromising over 20,000 member accounts. The authorities down under have sprung in action to limit the damages from this attack. Among the worst hit in this chained attack is AustralianSuper, the country’s largest   show more ...

superannuation fund, managing A$365 billion for 3.5 million members. The fund confirmed it had detected a surge in suspicious activity targeting a small number of members’ online accounts and mobile app over the past week. In response, AustralianSuper implemented immediate protective measures, including restricting members’ ability to change bank account details and certain contact information through online platforms. The organization emphasized that account viewing remains available and encouraged users to verify their contact details and adopt strong, unique passwords. “Keeping members’ money and data safe is our highest priority,” the fund stated. “We regret any inconvenience this may cause.” AustralianSuper also acknowledged higher-than-usual call volumes and has offered members the option to request a callback. Australia Superannuation Cyberattack: Major Funds Respond to Targeted Breaches Meanwhile, Australian Retirement Trust (ART), the second-largest fund with A$300 billion in assets under management and 2.4 million members reported detecting “unusual login activity” on several hundred accounts. ART reassured members that no unauthorized transactions or changes had been made. The fund advised that unless members were contacted directly, their accounts had not been affected. It also cautioned that its member online platform may experience slower performance as security measures are reinforced. Rest Super, another major player in the sector, also experienced a similar breach impacting its MemberAccess portal. Although no funds were moved, the incident may have exposed limited personal information for around 8,000 members. The accessed data reportedly included first names, email addresses, and member ID numbers. Rest acted swiftly by shutting down the affected portal, launching an internal investigation, and initiating its cybersecurity response procedures. Impacted members have been contacted and provided with guidance on protective steps. “We are very sorry this has happened and understand that this will be concerning for our members,” the fund said, highlighting its commitment to member security. Insignia Financial, which manages A$327 billion in assets, also reported attempted unauthorized access on its Expand platform. The attack appeared to involve a technique known as credential stuffing, where attackers use previously stolen login credentials from other data breaches to try to access accounts. So far, no financial losses have been reported by Insignia. CEO Liz McCarthy of MLC Expand confirmed that suspicious activity had been detected on about 100 customer accounts. As a precaution, the company restricted some activities on the platform and introduced password reset prompts for affected users. “We are actively applying additional monitoring and mitigations to protect customer accounts,” McCarthy said. “As is good practice, we urge customers not to reuse passwords across multiple platforms and to keep devices updated.” Hostplus, which oversees A$115 billion for 1.8 million members, was also targeted. While investigations are ongoing, the fund confirmed that there had been no losses to member accounts. It is working closely with cybersecurity experts and government agencies to assess the situation. “We understand that this may be concerning to some members,” a Hostplus spokesperson told The Cyber Express. “Our top priority is the security and privacy of our members.” National Authorities and Government Agencies Step In The National Cyber Security Coordinator acknowledged the Australia superannuation cyberattack, confirming that a coordinated response is underway. Agencies such as the Australian Prudential Regulation Authority (APRA) and the Australian Securities and Investments Commission (ASIC) are actively involved in the effort. “Cyber criminals are targeting individual account holders of a number of superannuation funds,” the Coordinator said. “We are working with industry stakeholders and regulators to ensure member protection and a whole-of-government response.” Members across all impacted funds have been urged to remain alert, monitor their accounts regularly, and report any suspicious activity immediately. Prime Minister Anthony Albanese also addressed the situation: “These kinds of cyber attacks are, unfortunately, a regular issue,” the Prime Minister said. “One occurs every six minutes in Australia.” What Next? The latest series of cyberattacks has once again spotlighted the growing vulnerability of the financial services sector to increasing cyber threats. With millions of Australians depending on their superannuation for future financial stability this incident cannot be given a hard pass. Affected organizations are moving quickly—tightening access controls, reviewing login protocols, and supporting impacted members through account recovery and taking fraud prevention steps. But as investigations continue, experts are calling for a deeper shift. Ashish Khanna, Chief Information Officer at a global consulting organization, aptly described the gravity of the situation: "The Australian pension fund breach isn't a glitch; it's a seismic tremor in our digital financial landscape." His warning is clear—we may be living in a world of seamless transactions, but beneath the surface lie "gaping vulnerabilities." He continues, "Now, the hard truth: our digital fortresses are under siege. Are we just patching cracks in a dam about to burst? We can't afford reactive security anymore." The path forward, according to Khanna, is not just about installing better tools—it’s about rethinking our entire approach: "It's time for a radical rethink—AI-driven threat hunting, security baked into every layer, from boardroom strategy to server configurations. Cybersecurity today is not just about protecting data; it’s about protecting livelihoods and restoring public trust. "We need a culture where resilience is the core, not an afterthought. The cost of inaction? It's not just financial; it's societal." This wake-up call must lead to meaningful change—because, as Khanna concludes, "Let’s architect a future where trust is built on impenetrable foundations, which only happen when we concentrate on Business Resilience driven by Cyber Resilience mindset and not just Technology driven fatigues." As the digital threat landscape continues to evolve, so too must our defenses—not with short-term patches, but with long-term strategies rooted in resilience, foresight, and collective responsibility.

image for How to guard against ...

 Threats

Payment card security is constantly improving, but attackers keep finding new ways to steal money. In days gone by, having tricked the victim into handing over card credentials on a fake online store or through another scam, cybercriminals would make a physical duplicate card by writing the stolen data onto a magnetic   show more ...

stripe. Such cards could then be used in stores and even at ATMs without a hitch. The advent of chip cards and one-time passwords (OTPs) made life much harder for scammers, but they adapted. The shift to mobile payments using smartphones increased resilience against some types of scams — but also opened up new avenues for it. Now, having phished a card number, they try to link it to their own Apple Pay or Google Wallet account. That done, they use this account from a smartphone to pay for goods using the victims card — either in a regular store or at a fake outlet with an NFC-enabled payment terminal. How card credentials are phished Such cyberattacks entail preparation on an industrial scale. Attackers create networks of fake websites designed to phish for payment data. These might imitate delivery services, large online stores, and even portals for paying utility bills or traffic fines. The cybercriminals also buy up dozens of smartphones, create Apple or Google accounts on them, and install contactless payment apps. Next comes the juicy bit. When a victim lands on a bait site, theyre asked to link their card or make a mandatory small payment. This requires entering their card details and confirming ownership of the card by entering an OTP. In fact, the card is not charged at this point. What actually happens? The victims data is almost instantly transferred to the cybercriminals, who attempt to link the card to a mobile wallet on their smartphone. The OTP code is needed to authorize this operation. To speed up and simplify the process, the attackers use special software that takes the data supplied by the victim and generates an image of the card that replicates it perfectly. After that, its enough just to take a photo of this image from Apple Pay or Google Wallet. The exact process of linking a card to a mobile wallet depends on the specific country and bank, but usually, no data is required other than the number, expiration date, cardholder name, CVV/CVC, and OTP. All this can be phished in a single session and put to use immediately. To make attacks even more effective, cybercriminals employ additional tricks. First, if the victim comes to their senses before tapping the Submit button, any data already entered into the forms is still passed to the criminals — even if its just a few characters or an incomplete entry. Second, the fake site may report that the payment failed and prompt the victim to try a different card. This way, the criminals might phish details for two or three cards in one go. The cards arent charged right away, and many people, seeing nothing suspicious on their bank statement, forget all about the incident. How money is stolen from cards Cybercriminals might link dozens of cards to one smartphone without immediately trying to spend money from them. This smartphone, stuffed with card numbers, is then resold on the dark web. Often, weeks or even months go by between the phishing and the spending. But when that unpleasant day eventually comes, the criminals might decide to splash out on luxury items in a physical store simply by making a contactless payment from a phone full of phished card numbers. Alternatively, they might set up their own fake store on a legitimate e-commerce platform and charge money for non-existent goods. Some countries even allow ATM withdrawals using an NFC-enabled smartphone. In all of the above cases, no confirmation of the transaction via PIN or OTP is required, so money can be siphoned off until the victim blocks the card. To speed up transferring mobile wallets to clandestine buyers, as well as to reduce the risk for those making payments in stores, attackers have begun to use an NFC relay technique dubbed Ghost Tap. They start by installing a legitimate app such as NFCGate on two smartphones — one with the mobile wallet and stolen cards, the other used directly for payments. This app transmits, in real time over the internet, the NFC data of the wallet from the first phone to the NFC antenna of the second, which the cybercriminals accomplice (known as a mule) taps on the payment terminal. Most terminals in offline stores and many ATMs are unable to tell the relayed signal from an original one, allowing the mule to easily pay for goods (or gift cards, which make it easier to launder the stolen funds). And if the mule is detained in the store, there is nothing incriminating on the smartphone, only the legitimate NFCGate app. No stolen card numbers are there, for these are tucked away on the smartphone of the mastermind behind the operation, who can be anywhere, even in another country. This method allows scammers to quickly and safely cash out large sums because there can be multiple mules paying almost simultaneously with the same stolen card. How to lose money by tapping your card on your phone In late 2024, fraudsters came up with another NFC relay scheme and successfully tested it on users from Russia, and theres nothing to stop the operation from being scaled up worldwide. In this scheme, victims arent even asked for their card credentials. Instead, the attackers socially engineer them into installing a supposedly handy app on their smartphone under the guise of a government, banking, or other service. Since many such banking and government apps in Russia were removed from official stores due to sanctions, unsuspecting users readily agree to install them. The victim is then prompted to hold their card to their smartphone and enter their PIN for authorization or verification purposes. As you might have guessed, the installed app has nothing in common with its description. In the first wave of such attacks, what victims received was the same NFC relay, repackaged as a handy app. It read the card when held to the smartphone, and transmitted its data along with the PIN to the attackers, who used it to make purchases or withdraw cash from NFC-enabled ATMs. Anti-fraud systems of major Russian banks quickly learned to identify such payments due to mismatches in the victims and the payers geolocation, so in 2025 the scheme — but not the essence — changed. Now, the victim receives an app for creating a duplicate card, and the relay is installed on the attackers side. Next, under the bogus pretext of the risk of theft, the victim is persuaded to deposit money into a safe account through an ATM, using their smartphone to authorize the payment. When the victim holds their phone to the ATM, the scammer relays their own card details to it, and the money ends up in their account. Such operations are hard to track for automatic anti-fraud systems since the transaction looks perfectly legitimate — someone walked up to an ATM and deposited cash onto a card. The anti-fraud system doesnt know that the card belonged to someone else. How to protect your cards from scammers First of all, Google and Apple themselves, together with payment systems, should implement additional protective measures in the payment infrastructure. However, users can also take steps to protect themselves: Use virtual cards for online payments. Dont keep large amounts of money on them, and only top up just before making an online purchase. If your card issuer allows it, disable offline payments and cash withdrawals from such cards. Get a new virtual card and block your old one at least once a year. For offline payments, link a different card to Apple Pay, Google Wallet, or a similar service. Never use this card online, and if possible, use a mobile wallet on your smartphone when paying in stores. Be very wary of apps asking you to hold your payment card to your smartphone, never mind enter your PIN. If its a long-trusted banking app, then okay; but if its something dodgy you only just installed from an obscure link outside an official app store, then stay clear. Use plastic cards at ATMs, not an NFC-enabled smartphone. Install a comprehensive security solution on all computers and smartphones to minimize the risk of landing on phishing sites and installing malicious apps. Enable the Safe Money component, available in all our security solutions, to protect financial transactions and online purchases. Activate the fastest possible transaction notifications (text and push) for all payment cards, and contact your bank or issuer immediately if you notice anything suspicious. Want to learn more about how scammers can steal money from your cards? Read our posts: Web skimmers: why are they particularly sneaky and dangerous? How cybercriminals steal funds from bank cards — and how to protect yourself from such theft Rules for safe online shopping Five Kaspersky technologies to protect your finances

image for Cyber Forensic Exper ...

 A Little Sunshine

A Minnesota cybersecurity and computer forensics expert whose testimony has featured in thousands of courtroom trials over the past 30 years is facing questions about his credentials and an inquiry from the Federal Bureau of Investigation (FBI). Legal experts say the inquiry could be grounds to reopen a number of   show more ...

adjudicated cases in which the expert’s testimony may have been pivotal. One might conclude from reading Mr. Lanterman’s LinkedIn profile that has a degree from Harvard University. Mark Lanterman is a former investigator for the U.S. Secret Service Electronics Crimes Task Force who founded the Minneapolis consulting firm Computer Forensic Services (CFS). The CFS website says Lanterman’s 30-year career has seen him testify as an expert in more than 2,000 cases, with experience in cases involving sexual harassment and workplace claims, theft of intellectual property and trade secrets, white-collar crime, and class action lawsuits. Or at least it did until last month, when Lanterman’s profile and work history were quietly removed from the CFS website. The removal came after Hennepin County Attorney’s Office said it was notifying parties to ten pending cases that they were unable to verify Lanterman’s educational and employment background. The county attorney also said the FBI is now investigating the allegations. Those allegations were raised by Sean Harrington, an attorney and forensics examiner based in Prescott, Wisconsin. Harrington alleged that Lanterman lied under oath in court on multiple occasions when he testified that he has a Bachelor of Science and a Master’s degree in computer science from the now-defunct Upsala College, and that he completed his postgraduate work in cybersecurity at Harvard University. Harrington’s claims gained steam thanks to digging by the law firm Perkins Coie LLP, which is defending a case wherein a client’s laptop was forensically reviewed by Lanterman. On March 14, Perkins Coie attorneys asked the judge (PDF) to strike Lanterman’s testimony because neither he nor they could substantiate claims about his educational background. Upsala College, located in East Orange, N.J., operated for 102 years until it closed in 1995 after a period of declining enrollment and financial difficulties. Perkins Coie told the court that they’d visited Felician University, which holds the transcripts for Upsala College during the years Lanterman claimed to have earned undergraduate and graduate degrees. The law firm said Felician had no record of transcripts for Lanterman (PDF), and that his name was absent from all of the Upsala College student yearbooks and commencement programs during that period. Reached for comment, Lanterman acknowledged he had no way to prove he attended Upsala College, and that his “postgraduate work” at Harvard was in fact an eight-week online cybersecurity class called HarvardX, which cautions that its certificates should not be considered equivalent to a Harvard degree or a certificate earned through traditional, in-person programs at Harvard University. Lanterman has testified that his first job after college was serving as a police officer in Springfield Township, Pennsylvania, although the Perkins Coie attorneys noted that this role was omitted from his resume. The attorneys said when they tried to verify Lanterman’s work history, “the police department responded with a story that would be almost impossible to believe if it was not corroborated by Lanterman’s own email communications.” As recounted in the March 14 filing, Lanterman was deposed on Feb. 11, and the following day he emailed the Springfield Township Police Department to see if he could have a peek at his old personnel file. On Feb. 14, Lanterman visited the Springfield Township PD and asked to borrow his employment record. He told the officer he spoke with on the phone that he’d recently been instructed to “get his affairs in order” after being diagnosed with a grave heart condition, and that he wanted his old file to show his family about his early career. According to Perkins Coie, Lanterman left the Springfield Township PD with his personnel file, and has not returned it as promised. “It is shocking that an expert from Minnesota would travel to suburban Philadelphia and abscond with his decades-old personnel file to obscure his background,” the law firm wrote. “That appears to be the worst and most egregious form of spoliation, and the deception alone is reason enough to exclude Lanterman and consider sanctions.” Harrington initially contacted KrebsOnSecurity about his concerns in late 2023, fuming after sitting through a conference speech in which Lanterman shared documents from a ransomware victim and told attendees it was because they’d refused to hire his company to perform a forensic investigation on a recent breach. “He claims he was involved in the Martha Stewart investigation, the Bernie Madoff trial, Paul McCartney’s divorce, the Tom Petters investigation, the Denny Hecker investigation, and many others,” Harrington said. “He claims to have been invited to speak to the Supreme Court, claims to train the ‘entire federal judiciary’ on cybersecurity annually, and is a faculty member of the United States Judicial Conference and the Judicial College — positions which he obtained, in part, on a house of fraudulent cards.” In an interview this week, Harrington said court documents reveal that at least two of Lanterman’s previous clients complained CFS had held their data for ransom over billing disputes. In a declaration (PDF) dated August 2022, the co-founder of the law firm MoreLaw Minneapolis LLC said she hired Lanterman in 2014 to examine several electronic devices after learning that one of their paralegals had a criminal fraud history. But the law firm said when it pushed back on a consulting bill that was far higher than expected, Lanterman told them CFS would “escalate” its collection efforts if they didn’t pay, including “a claim and lien against the data which will result in a public auction of your data.” “All of us were flabbergasted by Mr. Lanterman’s email,” wrote MoreLaw co-founder Kimberly Hanlon. “I had never heard of any legitimate forensic company threatening to ‘auction’ off an attorney’s data, particularly knowing that the data is comprised of confidential client data, much of which is sensitive in nature.” In 2009, a Wisconsin-based manufacturing company that had hired Lanterman for computer forensics balked at paying an $86,000 invoice from CFS, calling it “excessive and unsubstantiated.” The company told a Hennepin County court that on April 15, 2009, CFS conducted an auction of its trade secret information in violation of their confidentiality agreement. “CFS noticed and conducted a Public Sale of electronic information that was entrusted to them pursuant to the terms of the engagement agreement,” the company wrote. “CFS submitted the highest bid at the Public Sale in the amount of $10,000.” Lanterman briefly responded to a list of questions about his background (and recent heart diagnosis) on March 24, saying he would send detailed replies the following day. Those replies never materialized. Instead, Lanterman forwarded a recent memo he wrote to the court that attacked Harrington and said his accuser was only trying to take out a competitor. He has not responded to further requests for comment. “When I attended Upsala, I was a commuter student who lived with my grandparents in Morristown, New Jersey approximately 30 minutes away from Upsala College,” Lanterman explained to the judge (PDF) overseeing a separate ongoing case (PDF) in which he has testified. “With limited resources, I did not participate in campus social events, nor did I attend graduation ceremonies. In 2023, I confirmed with Felician University — which maintains Upsala College’s records — that they could not locate my transcripts or diploma, a situation that they indicated was possibly due to unresolved money-related issues.” Lanterman was ordered to appear in court on April 3 in the case defended by Perkins Coie, but he did not show up. Instead, he sent a message to the judge withdrawing from the case. “I am 60 years old,” Lanterman told the judge. “I created my business from nothing. I am done dealing with the likes of individuals like Sean Harrington. And quite frankly, I have been planning at turning over my business to my children for years. That time has arrived.” Lanterman’s letter leaves the impression that it was his decision to retire. But according to an affidavit (PDF) filed in a Florida case on March 28, Mark Lanterman’s son Sean said he’d made the difficult decision to ask his dad to step down given all the negative media attention. Mark Rasch, a former federal cybercrime prosecutor who now serves as counsel to the New York cybersecurity intelligence firm Unit 221B, said that if an expert witness is discredited, any defendants who lost cases that were strongly influenced by that expert’s conclusions at trial could have grounds for appeal. Rasch said law firms who propose an expert witness have a duty in good faith to vet that expert’s qualifications, knowing that those credentials will be subject to cross-examination. “Federal rules of civil procedure and evidence both require experts to list every case they have testified in as an expert for the past few years,” Rasch said. “Part of that due diligence is pulling up the results of those cases and seeing what the nature of their testimony has been.” Perhaps the most well-publicized case involving significant forensic findings from Lanterman was the 2018 conviction of Stephen Allwine, who was found guilty of killing his wife two years earlier after attempts at hiring a hitman on the dark net fell through. Allwine is serving a sentence of life in prison, and continues to maintain that he was framed, casting doubt on computer forensic evidence found on 64 electronic devices taken from his home. On March 24, Allwine petitioned a Minnesota court (PDF) to revisit his case, citing the accusations against Lanterman and his role as a key witness for the prosecution.

 Government

The president dismissed Air Force Gen. Timothy Haugh as leader of U.S. Cyber Command and the National Security Agency, and reassigned another NSA senior leader to a post within the Pentagon.

 Feed

Ivanti has disclosed details of a now-patched critical security vulnerability impacting its Connect Secure that has come under active exploitation in the wild. The vulnerability, tracked as CVE-2025-22457 (CVSS score: 9.0), concerns a case of a stack-based buffer overflow that could be exploited to execute arbitrary code on affected systems. "A stack-based buffer overflow in Ivanti Connect

 Feed

The Computer Emergency Response Team of Ukraine (CERT-UA) has revealed that no less than three cyber attacks were recorded against state administration bodies and critical infrastructure facilities in the country with an aim to steal sensitive data. The campaign, the agency said, involved the use of compromised email accounts to send phishing messages containing links pointing to legitimate

 Feed

A maximum severity security vulnerability has been disclosed in Apache Parquet's Java Library that, if successfully exploited, could allow a remote attacker to execute arbitrary code on susceptible instances. Apache Parquet is a free and open-source columnar data file format that's designed for efficient data processing and retrieval, providing support for complex data, high-performance

 Feed

The cascading supply chain attack that initially targeted Coinbase before becoming more widespread to single out users of the "tj-actions/changed-files" GitHub Action has been traced further back to the theft of a personal access token (PAT) related to SpotBugs. "The attackers obtained initial access by taking advantage of the GitHub Actions workflow of SpotBugs, a popular open-source tool for

 Feed

There’s a virtuous cycle in technology that pushes the boundaries of what’s being built and how it’s being used. A new technology development emerges and captures the world's attention. People start experimenting and discover novel applications, use cases, and approaches to maximize the innovation's potential. These use cases generate significant value, fueling demand for the next iteration of

 Feed

A novice cybercrime actor has been observed leveraging the services of a Russian bulletproof hosting (BPH) provider called Proton66 to facilitate their operations. The findings come from DomainTools, which detected the activity after it discovered a phony website named cybersecureprotect[.]com hosted on Proton66 that masqueraded as an antivirus service. The threat intelligence firm said it

 Threat Lab

Imagine waking up one day to find that someone has stolen your identity, opened credit cards in your name, or even withdrawn money from your bank accounts. It’s something that can easily happen if your personal data falls into the hands of cybercriminals. In our interconnected world, data breaches and identity   show more ...

theft are a constant threat, making it more important than ever to guard your sensitive personal information. That’s why April 8th is Identity Management Day, a reminder to take steps to protect your digital identity from online threats. So, what is your digital identity? It’s all the private data that’s gathered about you on the internet – from details like your email address, physical address, and date of birth, to bank account information and even purchasing habits. The more information you share online, the more vulnerable you become to cyber threats. For example, when you let a company save your address and credit card information, it may make your next online purchase easier, but it also increases the risk to your data if that company gets hacked. During the third quarter of 2024, data breaches exposed more than 422 million records worldwide. Tips for protecting your data Cyber thieves are getting smarter and smarter using methods like phishing and malware to gain access to a piece of your personal information.  Once they have that they can use it to gain access to your digital life, commit fraud impersonating you, or sell it to others.  That’s why staying diligent and protecting your online identity is critical.  The best ways to do that are: Strong passwords: The number one way to protect your personal information is the simplest one. Make your passwords long, complex, and unique. Never recycle them! That way if one of your passwords is leaked, hackers won’t be able to use it to access any of your other accounts. Password managers: Of course, we all need many unique passwords and it’s tricky to keep track of them all, especially when they’re complicated and one-of-a-kind. That’s where a password manager comes in. All Webroot solutions such as Webroot Essentials include a password manager to keep your online safety simple. You only need to remember one password and Webroot manages the rest – keeping all your logins, passwords, and payment details organized and protected. Multi-factor authentication (MFA): By adding an extra security step, like a code sent to your phone, multi-factor authentication (MFA) makes it much harder for cybercriminals to break into your accounts. Identity protection services: Antivirus programs protect against a wide range of malicious software designed to steal your personal information. For unmatched security and support, Webroot Premium and Webroot Total Protection offer all-in-one protection and include real-time monitoring to safeguard you from identity theft, as well as bank and credit fraud. Credit card fraud alerts: For extra security, set up fraud alerts by contacting your credit card company or any of the three major credit bureaus – Equifax, Experian, or TransUnion. Fraud alerts require creditors to take extra steps to verify your identity before opening accounts and lines of credit in your name. Bank account alerts: Set up bank account alerts to help monitor for any unusual banking activity. You can choose to get alerts via phone, email or text. Credit card freeze: Consider putting a credit card freeze on any credit cards you’re not using. This puts a temporary hold on your card and prevents all purchases until you decide to unfreeze it. Check bank statements: Review your bank statements monthly. Checking on your statements can help you spot suspicious activity and catch fraudulent transactions quickly. Keeping  your digital identity safe is not just a one-day event, it’s an ongoing commitment to protect your personal information. Identity Management Day serves as a valuable reminder to be proactive. From using MFA and strong passwords to setting up alerts on your credit cards and bank account, you can help safeguard your sensitive information. Don’t wait until you become a victim of identity theft – start strengthening your identity security today. Looking for more information and solutions? How a Data Breach Could Affect You Protecting your identity: Stay one step ahead of cybercriminals Protect Yourself from Hackers and Scammers Protect Your Whole Digital Life How to Manage Your Digital Footprint The post Identity Management Day: Safeguarding your digital identity appeared first on Webroot Blog.

 0CISO2CISO

Source: www.techrepublic.com – Author: Anna Lynn Dizon Key takeaways: With AI technology, payment fraud and fraud prevention have become more complex and sophisticated. Both financial data owners and businesses that accept illegal payments are directly affected by payment fraud. The best payment fraud   show more ...

prevention strategy requires careful risk assessment, planning, implementation, incident response preparation, and […] La entrada Payment Fraud Detection and Prevention: Here’s All To Know – Source: www.techrepublic.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cloud Security

Source: www.techrepublic.com – Author: Franklin Okeke We may earn from vendors via affiliate links or sponsorships. This might affect product placement on our site, but not the content of our reviews. See our Terms of Use for details. Explore the best enterprise password managers that provide security and   show more ...

centralized control for managing and protecting passwords […] La entrada 8 Best Enterprise Password Managers – Source: www.techrepublic.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: One of the largest online platforms for child sexual exploitation has been dismantled in a major international law enforcement operation. Kidflix, which had 1.8 million registered users, was shut down on March 11 2025 after a lengthy investigation led by Bavarian   show more ...

authorities and supported by Europol.  The platform, which allowed users […] La entrada Major Online Platform for Child Exploitation Dismantled – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 CrushFTP

Source: www.infosecurity-magazine.com – Author: Written by A critical authentication bypass vulnerability in CrushFTP, identified as CVE-2025-31161, has been actively exploited by remote attackers following a mishandled disclosure process. The flaw, which allows unauthenticated access to devices running   show more ...

unpatched versions of CrushFTP v10 or v11, has a CVSSv3.1 severity score of 9.8. Security analysts at Outpost24 […] La entrada CrushFTP Vulnerability Exploited Following Disclosure Issues – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 China-Linked

Source: www.darkreading.com – Author: Jai Vijayan, Contributing Writer Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed triggered the   show more ...

security solution. There are several actions that could […] La entrada China-Linked Threat Group Exploits Ivanti Bug – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Rob Wright Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution.   show more ...

There are several actions that could trigger this […] La entrada Disclosure Drama Clouds CrushFTP Vulnerability Exploitation – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Counterfeit

Source: www.darkreading.com – Author: Kristina Beek, Associate Editor, Dark Reading Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed   show more ...

triggered the security solution. There are several actions […] La entrada Counterfeit Phones Carrying Hidden Revamped Triada Malware – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Fahmida Y. Rashid Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed triggered the security   show more ...

solution. There are several actions that could trigger […] La entrada Runtime Ventures Launches New Fund for Seed, Pre-Seed Startups – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Steve Stasiukonis Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed triggered the security   show more ...

solution. There are several actions that could trigger this […] La entrada Social Engineering Just Got Smarter – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Arielle Waldman Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed triggered the security   show more ...

solution. There are several actions that could trigger this […] La entrada Emerging Risks Require IT/OT Collaboration to Secure Physical Systems – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini Experts warn of a critical vulnerability impacting Apache Parquet’s Java Library that could allow remote code execution. Apache Parquet’s Java Library is a software library for reading and writing Parquet files in the Java programming language.   show more ...

Parquet is a columnar storage file format that is optimized for use with […] La entrada Critical flaw in Apache Parquet’s Java Library allows remote code execution – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini CERT-UA reported three cyberattacks targeting Ukraine’s state agencies and critical infrastructure to steal sensitive data. The Computer Emergency Response Team of Ukraine (CERT-UA) reported three cyberattacks in March 2025 targeting Ukrainian agencies   show more ...

and infrastructure to steal sensitive data. This activity is tracked under the identifier UAC-0219. “The Ukrainian government’s […] La entrada CERT-UA reports attacks in March 2025 targeting Ukrainian agencies with WRECKSTEEL Malware – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini 39 Million Secrets Leaked on GitHub in 2024 GitHub found 39M secrets leaked in 2024 and launched new tools to help developers and organizations secure sensitive data in code. Microsoft-owned code hosting platform GitHub announced the discovery of 39   show more ...

million secrets leaked in 2024. The exposure of this sensitive […] La entrada 39M secrets exposed: GitHub rolls out new security tools – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 APT

Source: securityaffairs.com – Author: Pierluigi Paganini Ivanti addressed a critical remote code execution flaw in Connect Secure, which has been exploited since at least mid-March 2025. Ivanti released security updates to address a critical Connect Secure remote code execution vulnerability tracked   show more ...

as CVE-2025-22457. The vulnerability has been exploited by a China-linked threat actor since at least […] La entrada China-linked group UNC5221 exploited Ivanti Connect Secure zero-day since mid-March – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini An international law enforcement operation shuts down Kidflix, a child sexual abuse material (CSAM) streaming platform with 1.8M users. An international operation, codenamed Operation Stream, against child sexual exploitation shuts down one of the largest   show more ...

streaming platforms that offered child sexual abuse material (CSAM) in the world, Kidflix. The […] La entrada Europol-led operation shuts down CSAM platform Kidflix, leading to 79 arrests – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 0CISO2CISO

Noor Aftab outlines the importance of women in AI, the key women who have moved the industry forward, and the consequences when development teams lack diverse voices. Source Views: 0 La entrada Code Like a Woman: Engineering in the Age of AI se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 0CISO2CISO

Women in Manufacturing and the Society of Women Engineers collaborate to support women in STEM, providing enhanced membership benefits. Source Views: 0 La entrada WiM and SWE Announce New Partnership to Support Women in Industry se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . The cascading supply chain attack that initially targeted Coinbase before becoming more widespread to single out users of the “tj-actions/changed-files” GitHub Action has been traced further back to the theft of a personal access token (PAT) related to SpotBugs.   show more ...

“The attackers obtained initial access by taking advantage of the GitHub […] La entrada SpotBugs Access Token Theft Identified as Root Cause of GitHub Supply Chain Attack – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . There’s a virtuous cycle in technology that pushes the boundaries of what’s being built and how it’s being used. A new technology development emerges and captures the world’s attention. People start experimenting and discover novel applications, use cases, and   show more ...

approaches to maximize the innovation’s potential. These use cases generate significant […] La entrada Have We Reached a Distroless Tipping Point? – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . A novice cybercrime actor has been observed leveraging the services of a Russian bulletproof hosting (BPH) provider called Proton66 to facilitate their operations. The findings come from DomainTools, which detected the activity after it discovered a phony website named   show more ...

cybersecureprotect[.]com hosted on Proton66 that masqueraded as an antivirus service. The […] La entrada OPSEC Failure Exposes Coquettte’s Malware Campaigns on Bulletproof Hosting Servers – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Deeba Ahmed. A collaborative effort by international cybersecurity agencies, including the National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), Australian Signals Directorate’s Australian Cyber Security   show more ...

Centre (ASD’s ACSC), Canadian Centre for Cyber Security (CCCS), and New Zealand National Cyber Security Centre (NCSC-NZ), has highlighted […] La entrada NSA and Global Allies Declare Fast Flux a National Security Threat – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: securelist.com – Author: Haidar Kabibo In the first part of our research, I demonstrated how we revived the concept of no authentication (null session) after many years. This involved enumerating domain information, such as users, without authentication. I walked you through the entire process, starting   show more ...

with the difference between no-auth in the MS-RPC interfaces […] La entrada A journey into forgotten Null Session and MS-RPC interfaces, part 2 – Source: securelist.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

2025-04
Aggregator history
Friday, April 04
TUE
WED
THU
FRI
SAT
SUN
MON
AprilMayJune