Posted inNews
From Dark Reading – Unsolved Cyber Mysteries: Signal Hacking
Episode 1 of Bugcrowd’’s docuseries, Unsolved Cyber Mysteries, describes signal hacking attacks in the 1980s and the potential motivations behind them. Read More
Posted inBreaches
From Dark Reading – SEC Charges Against SolarWinds CISO Send Shockwaves Through Security Ranks
The legal actions may have a chilling effect on hiring CISOs, who are already in short supply, but may also expose just how budget-constrained most security executives are. Read More
Posted inNews
From Dark Reading – Malware ‘Meal Kits’ Serve Up No-Fuss RAT Attacks
The wider availability of turnkey cyberattack kits in the criminal underground is leading to a glut of campaigns using remote access Trojans (RATs). Read More
Posted inToolkit
From Dark Reading – US Leads 40-Country Alliance to Cut Off Ransomware Payments
The parties within the International Counter Ransomware Initiative intend to use information-sharing tools and AI to achieve their goals of cutting off the financial resources of threat actors. Read More
Posted inNews
From Security Week – Cybersecurity Leaders Spooked by SEC Lawsuit Against SolarWinds CISO
The SEC's lawsuit against the CISO of SolarWinds is leaving CISOs across the industry spooked and reevaluating their roles. The post Cybersecurity Leaders Spooked by SEC Lawsuit Against SolarWinds CISO…
Posted inBreaches
From Graham Cluley – India’s biggest data breach? Hacking gang claims to have stolen 815 million people’s personal information
The personal information of more than 815 million people in India has reportedly been leaked online. According to local media reports, hackers have offered for sale the personally identifiable information…
Posted inNews
From Security Week – Palo Alto Networks to Acquire Cloud Security Start-Up Dig Security
Palo Alto Networks has entered into a definitive agreement to acquire Dig Security, a provider of Data Security Posture Management (DSPM) technology. The post Palo Alto Networks to Acquire Cloud…
Posted inNews
From Dark Reading – ‘Prolific Puma’ Hacker Gives Cybercriminals Access to .us Domains
Cybercriminals are upping their phishing with shortened links and showing that coveted, regulated top-level domains aren't as exclusive as you'd think. Read More
Posted inNews
From Dark Reading – Arid Viper Camouflages Malware in Knockoff Dating App
The APT group uses updates from the app to get the user to download the malware. Read More
Posted inNews
From Security Week – Atlassian CISO Urges Quick Action to Protect Confluence Instances From Critical Vulnerability
Atlassian warns that a critical vulnerability in Confluence Data Center and Server could lead to significant data loss if exploited. The post Atlassian CISO Urges Quick Action to Protect Confluence…
Posted inResearch
From Dark Reading – Survey: AppSec Maturity Hindered by Staffing, Budgets, Vulnerabilities
Report highlights the challenges impeding the applications industry from achieving AppSec maturity. Read More
Posted inResearch
From Cyber Security News – Exploit Released for Cisco IOS XE Zero-day Vulnerability
Cisco was reported with a critical vulnerability last week, which has been actively exploited by threat actors in the wild. The vulnerability was assigned with the CVE-2023-20198 and was given…
Posted inResearch
From Security Week – IAM Credentials in Public GitHub Repositories Harvested in Minutes
A threat actor is reportedly harvesting IAM credentials from public GitHub repositories within five minutes of exposure. The post IAM Credentials in Public GitHub Repositories Harvested in Minutes appeared first…
Posted inVulnerabilities
From Cybersecurity Help – Pro-Hamas hackers target Israeli orgs with new BiBi-Linux wiper malware
The malware is an x64 ELF executable that has no obfuscation or protective measures. Read More
Posted inNews
From Security Week – Attackers Exploiting Critical F5 BIG-IP Vulnerability
Exploitation of a critical vulnerability (CVE-2023-46747) in F5’s BIG-IP product started less than five days after public disclosure and PoC exploit code was published. The post Attackers Exploiting Critical F5…