Industry News
-
Hackers Deploy Bumblebee Loader to Breach Target NetworksMost Bumblebee infections started by end-users executing LNK files... Read More
-
ATMZOW JS Sniffer Campaign Linked to Hancitor MalwareATMZOW infected at least 483 websites across four continents since the beginning of 2019... Read More
-
Quarter of All Gambling Sites Hit by DDoS Attacks in JuneThe attacks reportedly increased in conjunction with the start of the Wimbledon tennis tournament... Read More
-
Threat Group Ramps-Up Attacks on Travel Sector in 2022Corporate and customer data at risk, warns Proofpoint... Read More
-
Researchers Find 35 Adware Apps on Google PlayApps have millions of downloads, says Bitdefender... Read More
-
Suspected Russian Money Launderer Extradited to USMan allegedly handled over $400,000 in Ryuk proceeds... Read More
-
CISA Warns of Hackers Exploiting Multiple Vulnerabilities in the Zimbra Collaboration SuiteThe advisory was compiled by CISA with the Multi-State Information Sharing & Analysis Center... Read More
-
RubyGems Mandates MFA for Top-100 Package MaintainersThe package manager started enforcing MFA on owners of gems with over 180 million total downloads... Read More
-
Organizations Struggle to Fend Off Cloud and Web AttacksThe study queries more than 950 IT and security professionals across the Americas, EMEA and APAC... Read More
-
Identity Scams Soar to Make 2021 a Record YearNon-profit says Google Voice scams were the most reported threat... Read More
-
USBs Still a Major OT Infection VectorManufacturing was most exposed to OT threats in 2021... Read More
-
Bug Bounty Giant Slams Quality of Vendor PatchingZero Day Initiative says incomplete or faulty patches now commonplace... Read More
-
Two Additional Malicious Python Libraries Found on PyPI RepositoryThe new packages were masquerading as one of the most popular open-source packages on PyPI... Read More
-
Healthcare Provider Issues Warning After Tracking Pixels Leak Patient DataThe leak was caused by incorrect configurations of an online tracking tool from Meta... Read More
-
New Attack Weaponizes PLCs to Hack Enterprise and OT NetworksThe research resulted in proof-of-concept exploits against seven market-leading automation firms... Read More
-
#DEFCON: Electrovolt Exploits Against Electron Desktop Apps ExposedElectron-based desktop application including Discord, Microsoft Teams and VScode were at risk from a series of vulnerabilities... Read More
-
#DEFCON: How US Teen RickRolled His High School DistrictAmerican teenager explains how he was able to hack his local high school district... Read More
-
Hybrid Vishing Attacks Soar 625% in Q2Agari warns of multi-stage phishing threat... Read More
-
Microsoft Disrupts Russian Cyber-Espionage Group SeaborgiumAPT group focused on classic data theft via email accounts... Read More
-
Water Company Says Supply Safe After Ransom Group ClaimsSouth Staffordshire Water admits it was compromised... Read More
-
Software Patches Flaw on macOS Could Let Hackers Bypass All Security LevelsAfter deploying the initial attack, the researcher was able to escape the macOS sandbox... Read More
-
Luckymouse Uses Compromised MiMi Chat App to Target Windows and Linux SystemsThe news comes from two different security reports published by SEKOIA and Trend Micro... Read More
-
Dutch Authorities Arrest Tornado Cash Developer Following US Sanctions on Crypto Mixer FirmThe Financial Advanced Cyber Team of the FIOD started the criminal investigation in June... Read More
-
#DEFCON: How Sanctions Impact Internet OperatorsFollowing government sanctions against Russia, Internet providers have had to learn how to implement actions... Read More
-
Encrypted Messaging Service Hack Exposes Phone NumbersMany people opt for encrypted messaging services because they like the additional layers of privacy they offer. They allow users... The post Encrypted Messaging Service... Read More -
Business Email Compromise Attack TacticsIs BEC more damaging than ransomware? What tactics are BEC actors using? How can organizations bolster their defenses? Jon Clay, VP of threat intelligence, tackles... Read More
-
A Parent’s Guide To The Metaverse – Part OneWe’ve all heard about the Metaverse. And there’s no doubt it has certainly captured the attention of the world’s biggest... The post A Parent’s Guide... Read More -
Protecting S3 from Malware: The Cold Hard TruthCloud object storage is a core component of any modern application, but most cloud file storage security is insufficient.... Read More
-
Analyzing the Hidden Danger of Environment Variables for Keeping SecretsWhile DevOps practitioners use environment variables to regularly keep secrets in applications, these could be conveniently abused by cybercriminals for their malicious activities, as our... Read More
-
Top Five Patch Management & Process Best PracticesExplore the top patch management best practices to mitigate the growing threat of vulnerability exploits in your organization.... Read More
-
What Exposed OPA Servers Can Tell You About Your ApplicationsThis blog entry discusses what an OPA is and what it’s for, what we’ve discovered after identifying 389 exposed OPA servers via Shodan, and how... Read More
-
Oil and Gas Cybersecurity: Recommendations Part 3In the final part of our series, we look at the APT33 case study and several recommendations from our expert team.... Read More
-
Back to School: Tech Savvy vs. Cyber SavvyThe first day of school is right around the corner. The whole family is gearing up for a return to... The post Back to School:... Read More -
Iron Tiger Compromises Chat Application Mimi, Targets Windows, Mac, and Linux UsersWe found APT group Iron Tiger's malware compromising chat application Mimi’s servers in a supply chain attack.... Read More
-
Event-Driven Architectures & the Security ImplicationsThis article explores event-driven architecture (EDA) with a detailed definition and explains how EDA offers many essential benefits to developers. It concludes with an outline... Read More
-
CopperStealer Distributes Malicious Chromium-based Browser Extension to Steal CryptocurrenciesWe tracked the latest deployment of the group behind CopperStealer, this time stealing cryptocurrencies and users’ wallet account information via a malicious Chromium-based browser extension.... Read More
-
Oil and Gas Cybersecurity: Threats Part 2In part two of our oil and gas series, we look at more threats that can expose the industry to cyberattacks.... Read More
-
More Dangers of Cyberbullying Emerge—Our Latest Connected Family ReportEarlier this year, our global Connected Family Study revealed the online habits of parents and their children. What we found... The post More Dangers of... Read More -
How To Get Your Head Around Your Kids’ Online Gaming LifeLet’s be honest – many of us parents aren’t big fans of gaming. In fact, some of us have probably... The post How To Get... Read More
-
5 Steps to Removing Your Personal Information From the InternetA recent report by Javelin Strategy and Research found that identity theft cost Americans $56 billion in 2020, with imposter... The post 5 Steps to... Read More -
How to Stay One Step Ahead of HackersWhether using the internet for play or work, you want to spend your time online enjoying the peace of mind... The post How to Stay... Read More -
How to Delete Old Accounts Containing Personal InformationYour digital footprint grows with every internet account you make. While your old Tumblr account may be fun for reminiscing,... The post How to Delete... Read More -
What Personal Data Do Companies Track?Private tech companies gather tremendous amounts of user data. These companies can afford to let you use social media platforms... The post What Personal Data... Read More -
Technical Support Scams – What to look out forAuthored by Oliver Devane Technical Support Scams have been targeting computer users for many years. Their goal is to make... The post Technical Support Scams... Read More