Source: www.schneier.com – Author: Bruce Schneier Good essay on software bloat and the insecurities it causes. The world ships too much code, most of it by...
Author: CISO2CISO Editor 2
Microsoft says it fixed a Windows Metadata server issue that’s still broken – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Lawrence Abrams Microsoft claims to have fixed Windows Metadata connection issues which continue to plague customers, causing problems for users trying to...
US offers up to $15 million for tips on ALPHV ransomware gang – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Sergiu Gatlan The U.S. State Department is offering rewards of up to $10 million for information that could lead to the identification...
RansomHouse gang automates VMware ESXi attacks with new MrAgent tool – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The RansomHouse ransomware operation has created a new tool named ‘MrAgent’ that automates the deployment of its data encrypter across multiple VMware...
FBI disrupts Moobot botnet used by Russian military hackers – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Sergiu Gatlan The FBI took down a botnet of small office/home office (SOHO) routers used by Russia’s Main Intelligence Directorate of the...
OpenAI blocks state-sponsored hackers from using ChatGPT – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas OpenAI has removed accounts used by state-sponsored threat groups from Iran, North Korea, China, and Russia, that were abusing its...
Over 13,000 Ivanti gateways vulnerable to actively exploited bugs – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Thousands of Ivanti Connect Secure and Policy Secure endpoints remain vulnerable to multiple security issues first disclosed more than a...
Three critical application security flaws scanners can’t detect – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Sponsored by Outpost24 In today’s interconnected world, web application security is crucial for business continuity. Yet, web application attacks are now involved...
Turla hackers backdoor NGOs with new TinyTurla-NG malware – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Ionut Ilascu Security researchers have identified and analyzed new malware they call TinyTurla-NG and TurlaPower-NG used by the Russian hacker group Turla...
New Qbot malware variant uses fake Adobe installer popup for evasion – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The developer of Qakbot malware, or someone with access to the source code, seems to be experimenting with new builds as fresh samples...
New ‘Gold Pickaxe’ Android, iOS malware steals your face for fraud – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A new iOS and Android trojan named ‘GoldPickaxe’ employs a social engineering scheme to trick victims into scanning their faces...
Cyber Security News Encryption Grahamcluley Guest blog Malware ransomware Rhysida rss-feed-post-generator-echo
Rhysida ransomware cracked! Free decryption tool released – Source: www.tripwire.com
Source: www.tripwire.com – Author: Graham Cluley Good news for organisations who have fallen victim to the notorious Rhysida ransomware. A group of South Korean security researchers...
Cyber Security News Data Breach Data loss Government Grahamcluley Guest blog North Korea Phishing rss-feed-post-generator-echo South Korea
North Korea successfully hacks email of South Korean President’s aide, gains access to sensitive information – Source: www.bitdefender.com
Source: www.bitdefender.com – Author: Graham Cluley The office of South Korean president Yoon Suk Yeol has confirmed that it believes North Korea hacked into the emails...
AI Cyber Security News Data Breach Data loss Facebook Grahamcluley Hospital Instagram Malware Meta Mobile Podcast ransomware rss-feed-post-generator-echo Smashing Security
Smashing Security podcast #359: Declaring war on ransomware gangs, mobile muddles, and AI religion – Source: grahamcluley.com
Source: grahamcluley.com – Author: Graham Cluley Holy mackerel! AI is jumping on the religion bandwagon, ransomware gangs target hospitals, and what’s happened to your old mobile...
Russian APT Turla Wields Novel Backdoor Malware Against Polish NGOs – Source: www.darkreading.com
Source: www.darkreading.com – Author: Elizabeth Montalbano, Contributing Writer Source: Science Photo Library via Alamy Stock Photo Russia-sponsored advanced persistent threat group (APT) Turla is now targeting...
Cybersecurity’s Transformative Shift – Source: www.darkreading.com
Source: www.darkreading.com – Author: Katie McCullough Source: Denis Putilov via Alamy Stock Photo COMMENTARY Cybersecurity, once a fortress built on rigid protocols and reactive measures, is...
AWS SNS Hijackings Fuel Cloud Smishing Campaign – Source: www.darkreading.com
Source: www.darkreading.com – Author: Kristina Beek, Associate Editor, Dark Reading Source: Francis Vachon via Alamy Stock Photo Showcasing a previously unseen cyberattack technique, threat actors are...
10 Security Metrics Categories CISOs Should Present to the Board – Source: www.darkreading.com
Source: www.darkreading.com – Author: Ericka Chickowski, Contributing Writer Source: ConceptCafe via Alamy Stock Photo With the US Securities and Exchange Commission requiring CISOs and boards of...
CISO and CIO Convergence: Ready or Not, Here It Comes – Source: www.darkreading.com
Source: www.darkreading.com – Author: Arthur Lozinski Source: vska via Alamy Stock Photo COMMENTARY As IT-related business requirements change, the roles and responsibilities of IT leaders change...
CSC Partners With NetDiligence to Help Mitigate Cyber Risks – Source: www.darkreading.com
Source: www.darkreading.com – Author: PRESS RELEASE WILMINGTON, Del.–(BUSINESS WIRE)– CSC, an enterprise-class domain registrar and world leader in mitigating domain security, domain name system (DNS), and...
United Nations Digging Into DPRK Crypto Cyberattacks Totaling $3B – Source: www.darkreading.com
Source: www.darkreading.com – Author: Dark Reading Staff Source: Stuart Miles via Alamy Stock Photo The United Nations is poised to announce an investigation into North Korean...
US Govt. Offers Millions in Bounties to Find Hive Ransomware Actors – Source: www.darkreading.com
Source: www.darkreading.com – Author: Dark Reading Staff Source: imageBROKER via Alamy Stock Photo The US Department of State is offering $10 million for information that can...
Bugcrowd Secures $102M in Strategic Growth Funding to Scale AI-Powered Crowdsourced Security Platform – Source: www.darkreading.com
Source: www.darkreading.com – Author: PRESS RELEASE SAN FRANCISCO, February 12, 2024 – Bugcrowd has secured $102 million in strategic growth financing to scale its AI-powered crowdsourced security...
33M French Citizens Impacted in Country’s Largest-Ever Breach – Source: www.darkreading.com
Source: www.darkreading.com – Author: Tara Seals, Managing Editor, News, Dark Reading Source: John Kellerman via Alamy Stock Photo The French data protection agency, the CNIL, has...
Prudential Financial Faces Cybersecurity Breach – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 Prudential Financial has disclosed a cybersecurity breach. Detected on February 5 2024, the breach involved unauthorized access to certain company systems. In...
Crypto-Money Laundering Records 30% Annual Decline – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 Just over $22bn worth of cryptocurrency was laundered in 2023, a 30% drop from the previous year, with nefarious actors switching...
Microsoft, OpenAI Confirm Nation-States are Weaponizing Generative AI in Cyber-Attacks – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 Nation-state threat actors are making use of generative AI tools, including large language models (LLMs) like ChatGPT, in their cyber operations,...
GoldPickaxe Trojan Blends Biometrics Theft and Deepfakes to Scam Banks – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 Security researchers have warned of a sophisticated new Trojan designed to steal facial biometric data and use it to produce deepfakes of...
Water Hydra’s Zero-Day Attack Chain Targets Financial Traders – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 The Trend Micro Zero Day Initiative (ZDI) has recently unearthed a critical vulnerability, identified as CVE-2024-21412, which they’ve dubbed ZDI-CAN-23100. The...
PII Input Sparks Cybersecurity Alarm in 55% of DLP Events – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 A substantial 55% of recent Data Loss Prevention (DLP) events have involved attempts to input personally identifiable information (PII), while 40%...