Shortly after reports emerged regarding a significant security flaw in the ConnectWise ScreenConnect remote desktop management service, researchers are sounding the alarm about a potential large-scale supply chain attack. Kyle Hanslovan, CEO of Huntress, expressed concerns about the exploitation…
Category: EN
New IDAT Loader Attacks Using Steganography to Deploy Remcos RAT
Ukrainian entities based in Finland have been targeted as part of a malicious campaign distributing a commercial remote access trojan known as Remcos RAT using a malware loader called IDAT Loader. The attack has been attributed to a threat actor…
FTC slaps Avast with $16.5m penalty for selling browser data
It’s indeed concerning when cybersecurity solutions meant to protect users’ privacy end up compromising it instead. The case of AVAST highlights the importance of transparency and accountability in the handling of user data. Users trust these companies to safeguard their…
Beware That Anonymous Sudan Is Promoting A New DDoS Botnet
It has come to light that a group known as Anonymous Sudan is actively promoting a new Distributed Denial of Service (DDoS) botnet service named “Skynet-GodzillaBotnet.” An advertisement circulating online showcases a red dragon logo with the word “SKYNET.” The…
LoanDepot Ransomware Attack Exposed 16.9 Million Individuals
Lending firm LoanDepot said the personal information of 16.9 million people was stolen in a ransomware attack in early January. The post LoanDepot Ransomware Attack Exposed 16.9 Million Individuals appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
State-Sponsored Group Blamed for Change Healthcare Breach
UnitedHealth Group is blaming a state-sponsored threat actor for a disruptive cyberattack on its subsidiary Change Healthcare. The post State-Sponsored Group Blamed for Change Healthcare Breach appeared first on SecurityWeek. This article has been indexed from SecurityWeek RSS Feed Read…
Critical Flaw in Popular ‘Ultimate Member’ WordPress Plugin
The vulnerability carries a CVSS severity score of 9.8/10 and affects web sites running the Ultimate Member WordPress membership plugin. The post Critical Flaw in Popular ‘Ultimate Member’ WordPress Plugin appeared first on SecurityWeek. This article has been indexed from…
The xSPM Trend: Security Posture Management for Everything
The xSPM trend represents a holistic approach to managing and enhancing the security posture of diverse IT assets. The post The xSPM Trend: Security Posture Management for Everything appeared first on Security Boulevard. This article has been indexed from Security…
LockBit Ransomware Group Returns After Law Enforcement Operation
The LockBit ransomware group is swinging back days after U.S. and UK law enforcement agencies announced they had disrupted the operations of the prolific cybercrime gang, including seizing infrastructure and public-facing websites, grabbing decryption keys, and indicting two alleged members.…
Bitdefender Cryptomining Protection detects malicious cryptojacking attempts
Bitdefender announced Cryptomining Protection, a cryptomining management feature that allows users to both protect against malicious cryptojacking and manage their own legitimate cyptomining initiatives on their Windows PCs. According to a 2023 report, cryptojacking attacks have increased nearly 400% year…
University Of Warwick To Launch Fintech Research Group
University of Warwick receives £1.25m donation for new research group focused on fintech innovation in property sector This article has been indexed from Silicon UK Read the original article: University Of Warwick To Launch Fintech Research Group
Hacking firm I-Soon data leak revealed Chinese gov hacking capabilities
Recently the leak of a collection of files apparently stolen from the Chinese government hacking contractor, I-Soon, exposed Chinese hacking capabilities. Recently someone has leaked on GitHub [1,2] a collection of files apparently stolen from the Chinese hacking firm, I-Soon.…
Serco Leisure Faces Legal Action for Unlawful Employee Face Scanning
Serco Leisure, a prominent leisure firm based in the UK, finds itself at the centre of a regulatory storm as the Information Commissioner’s Office (ICO) intensifies its scrutiny. The ICO has raised serious concerns over the alleged illegal processing of…
Amazon Issues ‘Warning’ For Employees Using AI At Work
A leaked email to employees revealed Amazon’s guidelines for using third-party GenAI tools at work. Business Insider claims that the email mandates employees to refrain from using third-party software due to data security concerns. “While we may find ourselves…
LockBit Takedown: What You Need to Know about Operation Cronos
What businesses should know about Operation Cronos and LockBit, one of the largest ransomware takedowns in history This article has been indexed from www.infosecurity-magazine.com Read the original article: LockBit Takedown: What You Need to Know about Operation Cronos
MWC 2024: Huawei Cloud Seeks Overseas Expansion Despite Sanctions
Huawei Cloud opens new availability zones, grows European business, focuses on AI as it adapts to US sanctions This article has been indexed from Silicon UK Read the original article: MWC 2024: Huawei Cloud Seeks Overseas Expansion Despite Sanctions
Everything you need to know about NIS2
Get prepared for the EU’s upgraded cybersecurity directive Webinar The original European Union Network and Information Security (NIS) Directive certainly led to an improvement in member states’ cybersecurity defences, but it struggled to do everything required as cyberattacks and threats…
Lost to the Highest Bidder: The Economics of Cybersecurity Staffing
When it comes to cybersecurity talent, supply and demand economics are amplified far beyond what is experienced in other fields. The post Lost to the Highest Bidder: The Economics of Cybersecurity Staffing appeared first on Security Boulevard. This article has…
LockBit Ransomware: Covertly Evolving Towards Next-Gen Threats Amid Takedown Efforts
In a significant development, law enforcement dismantled the infrastructure of LockBit ransomware earlier this week, uncovering the clandestine work on a next-generation file encryption malware. Referred to as LockBit-NG-Dev, this emerging threat, likely the precursor to LockBit 4.0, was…
DataVisor introduces fraud and risk solution for financial institutions
DataVisor launched a solution designed to both detect fraud and financial crimes more effectively and to uphold sponsor bank compliance in the face of evolving regulations for Banking-as-a-Service (BaaS) offerings. As the fintech industry continues to rapidly evolve amidst a…