Google Gmail client-side encryption is available globallyGmail client-side encryption (CSE) is now available for Workspace Enterprise Plus, Education Plus, and Education Standard customers. Google announced that...
Day: March 3, 2023
Parallax RAT used in attacks aimed at cryptocurrency entities
Parallax RAT used in attacks aimed at cryptocurrency entitiesExperts warn of a new wave of attacks against cryptocurrency entities, threat actors are using a RAT dubbed...
Satellite TV giant Dish admitted that the recent outage was caused by a ransomware attack
Satellite TV giant Dish admitted that the recent outage was caused by a ransomware attackSatellite TV giant Dish Network has confirmed that the recent outage was...
Canada is going to ban TikTok on government mobile devices
Canada is going to ban TikTok on government mobile devicesThe Canadian government announced it will ban the video app TikTok from all government-issued devices over security...
BlackLotus is the first bootkit bypassing UEFI Secure Boot on Windows 11
BlackLotus is the first bootkit bypassing UEFI Secure Boot on Windows 11ESET discovered a stealthy Unified Extensible Firmware Interface (UEFI) bootkit dubbed BlackLotus that is able...
Threat actors target law firms with GootLoader and SocGholish malware
Threat actors target law firms with GootLoader and SocGholish malwareCyber criminals are targeting law firms with GootLoader and FakeUpdates (aka SocGholish) malware families. Researchers from eSentire have foiled 10...
Cisco fixed a critical command injection bug in IP Phone Series
Cisco fixed a critical command injection bug in IP Phone SeriesCisco addressed a critical vulnerability, tracked as CVE-2023-20078, impacting its IP Phone 6800, 7800, 7900, and...
Cryptojacking campaign targets insecure deployments of Redis servers
Cryptojacking campaign targets insecure deployments of Redis serversResearchers from Cado Security discovered a cryptojacking campaign targeting misconfigured Redis database servers. Cado Labs researchers recently discovered a...
GunAuction site was hacked and data of 565k accounts were exposed
GunAuction site was hacked and data of 565k accounts were exposedHackers compromised the website GunAuction.com, a website that allows people to buy and sell guns, and stole...
Highlights from the New U.S. Cybersecurity Strategy
Highlights from the New U.S. Cybersecurity StrategyThe Biden administration today issued its vision for beefing up the nation’s collective cybersecurity posture, including calls for legislation establishing...
S4x23 Review Part 1: What’s New in OT Security
S4x23 Review Part 1: What's New in OT SecurityThis blog introduces discussions from S4x23, the ICS security conference in Miami over several posts. The first installment...
1Password is looking to a password-free future. Here’s why
1Password is looking to a password-free future. Here’s whyWith phishing-based credentials theft on the rise, 1Password CPO Steve Won explains why the endgame is to 'eliminate’...
Google Workspace admins can now use client-side encryption on Gmail and Calendar
Google Workspace admins can now use client-side encryption on Gmail and CalendarOrganizations subject to government regulations can gain more control over their own security. The post...
Australian woman arrested for email bombing a government office
Australian woman arrested for email bombing a government officeThe Australian Federal Police arrested a woman in Werrington, Sydney, for allegedly email bombing the office of a...
Hatch Bank discloses data breach after GoAnywhere MFT hack
Hatch Bank discloses data breach after GoAnywhere MFT hackFintech banking platform Hatch Bank has reported a data breach after hackers stole the personal information of almost...
Chinese hackers use new custom backdoor to evade detection
Chinese hackers use new custom backdoor to evade detectionThe Chinese cyber espionage hacking group Mustang Panda was seen deploying a new custom backdoor named 'MQsTTang' in...
Chick-fil-A confirms accounts hacked in months-long “automated” attack
Chick-fil-A confirms accounts hacked in months-long "automated" attackAmerican fast food chain Chick-fil-A has confirmed that customers' accounts were breached in a months-long credential stuffing attack, allowing...
BlackLotus bootkit bypasses UEFI Secure Boot on patched Windows 11
BlackLotus bootkit bypasses UEFI Secure Boot on patched Windows 11The developers of the BlackLotus UEFI bootkit have improved the malware with Secure Boot bypass capabilities that...
Microsoft releases Windows security updates for Intel CPU flaws
Microsoft releases Windows security updates for Intel CPU flawsMicrosoft has released out-of-band security updates for 'Memory Mapped I/O Stale Data (MMIO)' information disclosure vulnerabilities in Intel...
7 likely scenarios: How cyber security will change in 2023
7 likely scenarios: How cyber security will change in 2023 By Isla Sibanda, an ethical hacker and cyber security specialist based out of Pretoria. For over twelve...
Phishing is what type of attack? Definition, trends and best practices
Phishing is what type of attack? Definition, trends and best practicesBy George Mack, Content Marketing Manager, Check Point. Phishing threats have been making waves in the...
Former US CISO on New US Cybersecurity Strategy: ‘It’s Bold’
Former US CISO on New US Cybersecurity Strategy: 'It's Bold'Gen. Gregory Touhill Weighs in on Merits of Product Security by Design and DefaultRetired Air Force Gen....
US Cybersecurity Strategy Shifts Liability Issues to Vendors
US Cybersecurity Strategy Shifts Liability Issues to VendorsHolding Vendors Liable for Insecure Apps Fuels Safe Harbor, Transparency QuestionsA new federal strategy to make commercial manufacturers liable...
Security Firm COO Loses Bid to Dismiss Cyberattack Case
Security Firm COO Loses Bid to Dismiss Cyberattack CaseJudge Rejects Recommendations to Drop Case in Medical Center IncidentA Georgia man who is the chief operating officer...
HPE Buys SSE Firm Axis Security to Obtain Single-Vendor SASE
HPE Buys SSE Firm Axis Security to Obtain Single-Vendor SASEDeal Comes As Pressure Increases on Pure-Play Vendors to Deliver Native SASE StackHewlett Packard Enterprise will soon...