Source: nakedsecurity.sophos.com – Author: Paul Ducklin We’ve written about PHP’s Packagist ecosystem before. Like PyPI for Pythonistas, Gems for Ruby fans, NPM for JavaScript programmers, or...
Day: May 6, 2023
Royal Ransomware Targets the City of Dallas in Ransomware Attack – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Cristian Neagu Officials from Dallas, Texas declared that Royal Ransomware gang is responsible for a cyberattack that shut down most of the...
Identity and Access Management Best Practices – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Antonia Din Identity and Access Management is a critical component of modern-day cybersecurity. Often abbreviated as IAM, it refers to a collection...
What Is Patch Management? Definition, Importance, Key Steps, and Best Practices – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Cristian Neagu What Is Patch Management? Patch management is the process of identifying and deploying software updates. It is an important process...
ReconShark – Kimsuky’s Newest Recon Tool – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Cristian Neagu Kimsuky, a North Korean hacking group, has been observed employing a new version of its reconnaissance malware called “ReconShark” in...
What Is IPAM in Networking and Cybersecurity? – Source: heimdalsecurity.com
Source: heimdalsecurity.com – Author: Andra Andrioaie Managing thousands of IP-connected devices can become a great challenge for many organizations. But imagine trying to keep track of...
IOTW: Former Uber CSO charged with concealing data breach
Former Uber CSO, Joe Sullivan, has been sentenced to three years’ probation for his involvement in covering up a data breach in 2016 that affected 57...
Pro-Russian Hackers Claim Downing of French Senate Website – Source: www.securityweek.com
Source: www.securityweek.com – Author: AFP The French Senate’s website was offline on Friday after pro-Russian hackers claimed to have taken it down, in just the latest...
New Android Trojans Infected Many Devices in Asia via Google Play, Phishing – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Security researchers are warning that two new Android trojans have been observed targeting users in Southeast and East Asia. One...
Google Launches New Cybersecurity Analyst Training Program – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Google on Thursday announced a new cybersecurity training program. Those who sign up for the class will prepare for a...
Fortinet Patches High-Severity Vulnerabilities in FortiADC, FortiOS – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Fortinet this week announced its monthly set of security updates that address nine vulnerabilities in multiple products, including two high-severity...
Biden, Harris Meet With CEOs About AI Risks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Associated Press Vice President Kamala Harris met on Thursday with the heads of Google, Microsoft and two other companies developing artificial intelligence...
Azure API Management Vulnerabilities Allowed Unauthorized Access – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Three vulnerabilities in the Azure API Management service could be exploited to perform various types of malicious actions, cloud security...
Vulnerability Could Have Been Exploited for ‘Unlimited’ Free Credit on OpenAI Accounts – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A vulnerability in OpenAI’s account validation process allowed anyone to obtain virtually unlimited free credit for the company’s services by...
Critical Siemens RTU Vulnerability Could Allow Hackers to Destabilize Power Grid – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs A critical vulnerability affecting some of Siemens’ industrial control systems (ICS) designed for the energy sector could allow malicious hackers...
Ransomware gang hijacks university’s emergency alert system, threatens students – Source: www.cybertalk.org
Source: www.cybertalk.org – Author: slandau EXECUTIVE SUMMARY: On May 1st, a group of cyber criminals hacked into and gained control over a U.S. university’s emergency alert...
Will the EU’s new cyber security law change the game? – Source: www.cybertalk.org
Source: www.cybertalk.org – Author: slandau Peter Sandkuijl, a resident of The Netherlands, is a senior security specialist who has operated in the security market for over...
Android Security Update Patches Kernel Vulnerability Exploited by Spyware Vendor – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Google’s Android security updates for May 2023 patch more than 40 vulnerabilities, including a kernel flaw exploited as a zero-day...
Fortinet fixed two severe issues in FortiADC and FortiOS – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Fortinet has addressed a couple of high-severity vulnerabilities impacting FortiADC, FortiOS, and FortiProxy. Fortinet addressed nine security vulnerabilities affecting multiple...
Pro-Russia group NoName took down multiple France sites, including the French Senate one – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini The French Senate’s website was taken offline by a DDoS attack launched by the pro-Russian hacker group NoName. The pro-Russia...
North Korea-linked Kimsuky APT uses new recon tool ReconShark – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini North Korea-linked APT group Kimsuky has been observed using a new reconnaissance tool dubbed ReconShark in a recent campaign. SentinelOne researchers observed an...
Fleckpe Android malware totaled +620K downloads via Google Play Store – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Fleckpe is a new Android subscription Trojan that was discovered in the Google Play Store, totaling more than 620,000 downloads...