Source: www.proofpoint.com – Author: Proofpoint research reveals 40% of the leading retailers are not actively blocking bogus emails that spoof their brand SUNNYVALE, Calif. – November...
Day: November 21, 2024
Fickle Stealer Malware Detection: New Rust-Based Stealer Disguises as Legitimate Software to Steal Data from Compromised Devices – Source: socprime.com
Source: socprime.com – Author: Veronika Telychko A new Rust-based stealer malware dubbed Fickle Stealer has come to the scene, capable of extracting sensitive data from compromised...
Feds Charge Five Men in ‘Scattered Spider’ Roundup – Source: krebsonsecurity.com
Source: krebsonsecurity.com – Author: BrianKrebs Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group...
Secret Service Tracking People’s Locations without Warrant – Source: www.schneier.com
Source: www.schneier.com – Author: Bruce Schneier HomeBlog Comments Who? • November 21, 2024 7:29 AM Because users agreed to an opaque terms of service page… This...
Steve Bellovin’s Retirement Talk – Source: www.schneier.com
Source: www.schneier.com – Author: Bruce Schneier HomeBlog Steve Bellovin’s Retirement Talk Steve Bellovin is retiring. Here’s his retirement talk, reflecting on his career and what the...
Linux Malware WolfsBane and FireWood Linked to Gelsemium APT – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: Recent discoveries have unveiled two new malware strains, WolfsBane and FireWood, targeting Linux systems. These advanced tools have been attributed by ESET...
Vietnam’s Infostealer Crackdown Reveals VietCredCare and DuckTail – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: Researchers from Group-IB have revealed new findings highlighting significant differences in the methods and structures of two prominent infostealer malware families, VietCredCare and...
Google OSS-Fuzz Harnesses AI to Expose 26 Hidden Security Vulnerabilities – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: Written by Researchers from Google’s OSS-Fuzz team have successfully used AI to identify 26 vulnerabilities in open-source projects maintainers. These included a...
BianLian Ransomware Group Adopts New Tactics, Posing Significant Risk – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: US and Australian government agencies have urged critical infrastructure organizations to protect against new tactics employed by the BianLian ransomware group. These...
Lumma Stealer Proliferation Fueled by Telegram Activity – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: Written by Read more about Lumma Stealer: Infostealer Lumma Evolves With New Anti-Sandbox Method Famous YouTube Channels Hacked to Distribute Infostealers LummaC2...
A Fifth of UK Enterprises “Not Sure” If NIS2 Applies – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: A large number of UK enterprises could face major regulatory penalties after admitting they are “not sure” if the new EU NIS2...
Five Charged in Scattered Spider Case – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: Four US citizens and one Brit have been charged in connection with a series of sophisticated corporate data breaches and SIM swap-enabled...
750,000 patients’ medical records exposed after data breach at French hospital – Source: www.tripwire.com
Source: www.tripwire.com – Author: Graham Cluley When we think about our data being leaked onto the internet, we often picture it as our financial records, our...
Smashing Security podcast #394: Digital arrest scams and stream-jacking – Source: grahamcluley.com
Source: grahamcluley.com – Author: Graham Cluley Skip to content In our latest episode we discuss how a woman hid under the bed after scammers told her...
After CrowdStrike Outage, Microsoft Debuts ‘Quick Machine Recovery’ Tool – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ryan Naraine Microsoft used the spotlight of its Ignite conference this week to introduce a new Quick Machine Recovery tool to help...
RSA’s Innovation Sandbox: Cybersecurity Startups Must Accept $5 Million Investment – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ryan Naraine The owner of the RSA Conference wants to buy a slice of every cybersecurity startup that makes it to the...
MITRE Updates List of 25 Most Dangerous Software Vulnerabilities – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The MITRE Corporation has updated its Common Weakness Enumeration (CWE) Top 25 Most Dangerous Software Weaknesses list, which reflects the...
ICS Security: 145,000 Systems Exposed to Web, Many Industrial Firms Hit by Attacks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Worldwide there are more than 145,000 internet-exposed industrial control systems (ICS), according to internet intelligence platform provider Censys. The company’s...
Mexico’s President Says Government Is Investigating Reported Ransomware Hack of Legal Affairs Office – Source: www.securityweek.com
Source: www.securityweek.com – Author: Associated Press Mexico’s president said Wednesday that the government is investigating an alleged ransomware hack of her administration’s legal affairs office after...
Financial Software Firm Finastra Investigating Data Breach – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire UK fintech giant Finastra is investigating a data breach after a hacker offered for sale on an underground forum data...
US Charges Five Alleged Scattered Spider Members – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The US Department of Justice on Wednesday announced charges against five individuals for their alleged roles in phishing attacks resulting...
How Can PR Protect Companies During a Cyberattack? – Source: www.darkreading.com
Source: www.darkreading.com – Author: Edge Editors Source: Panther Media GmbH via Alamy Stock Photo Question: What value do public relations experts bring to a company during...
It’s Near-Unanimous: AI, ML Make the SOC Better – Source: www.darkreading.com
Source: www.darkreading.com – Author: Dark Reading Staff Only 9% of cybersecurity professionals said that new artificial intelligence (AI) and machine learning (ML) tools have not improved...
Job termination scam warns staff of phony Employment Tribunal decision – Source: www.csoonline.com
Source: www.csoonline.com – Author: Phishing campaign preys on the worries of employees, says expert Creators of phishing messages usually want to create anxiety in their targets...
Finastra investigates breach potentially affecting top global banks – Source: www.csoonline.com
Source: www.csoonline.com – Author: Alleged theft involved 400 GB of customer and internal data presumably containing sensitive financial details. Popular financial software and services provider, Finastra,...
North Korean fake IT workers up the ante in targeting tech firms – Source: www.csoonline.com
Source: www.csoonline.com – Author: North Korean groups are now leveraging deepfake technologies when trying to scam companies into hiring fake IT workers, while adding exfiltration and...
What CISOs need to know about the SEC’s breach disclosure rules – Source: www.csoonline.com
Source: www.csoonline.com – Author: Feature 21 Nov 20247 mins ComplianceCSO and CISOGovernment Security leaders can face personal liability peril for security fails or misleading disclosures to...
Act fast to snuff out employee curiosity over ‘free’ AI apps – Source: www.csoonline.com
Source: www.csoonline.com – Author: Criminals are taking advantage of interest in AI to persuade users to download malware in the guise of useful apps. The word...
CSO30 ASEAN 2024: The top 30 cybersecurity leaders in Southeast Asia and Hong Kong – Source: www.csoonline.com
Source: www.csoonline.com – Author: The fourth CSO30 ASEAN Awards programme recognises the top 30 cybersecurity leaders driving business value, demonstrating leadership, and influencing rapid change across...
Feds Indict 5 Suspects Tied to Scattered Spider Cybercrime – Source: www.databreachtoday.com
Source: www.databreachtoday.com – Author: Cybercrime , Fraud Management & Cybercrime , Social Engineering FBI Ties Men to at Least 45 Attacks and Theft of Cryptocurrency Worth...