Russia’s Sandworm group suspected of destructive attack This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Five Data Wipers Attack Ukrainian News Agency
Software developers, how secure is your software?
New Research Uncovers Threat Actor Behind Infamous Golden Chickens Malware-as-a-Service
The identity of the individual behind the Golden Chickens malware-as-a-service has been uncovered by cybersecurity experts. The perpetrator, known online as “badbullzvenom,” has been identified in the real world. An extensive 16-month investigation by eSentire’s Threat Response Unit revealed that…
UNC2565 threat actors continue to improve the GOOTLOADER malware
The threat actors behind the GOOTLOADER malware continues to improve their code by adding new components and implementing new obfuscation techniques. Mandiant researchers reported that the UNC2565 group behind the GOOTLOADER malware (aka Gootkit) continues to improve their code by…
Arkose Labs unveils SMS Toll Fraud online ROI calculator
Arkose Labs has launched a new SMS Toll Fraud online ROI calculator that enables CISOs to estimate the cost savings associated with stopping SMS Toll Fraud, a serious operational and financial threat to enterprises. SMS Toll Fraud, also known as…
Insider attacks becoming more frequent, more difficult to detect
Insider threats are a top concern at organizations of all kinds; only 3% of respondents surveyed are not concerned with insider risk, according to Gurucul. With responses from more than 325 cybersecurity professionals, the report explores the latest trends and…
ICS vulnerabilities: Insights from advisories, how CVEs are reported
SynSaber recently released its second Industrial Control Systems (ICS) Vulnerabilities & CVEs Report. In this Help Net Security video, Ronnie Fabela, CTO at SynSaber, talks about the key findings: For the CVEs reported in the second half of 2022, 35%…
Mounting pressure is creating a ticking time bomb for railway cybersecurity
The expansion of potential cyber threats has increased due to the integration of connected devices, the Internet of Things (IoT), and the convergence of IT and OT in railway operations. In this Help Net Security interview, Dimitri van Zantvliet is…
How organizations can keep themselves secure whilst cutting IT spending
It is the immediate natural reaction of most organizations to cut costs during an economic downturn. But the economy will return and cutting back too far can be damaging in the long term. Complex situations such as a global recession…
Details about TikTok Project Texas of United States
We all know that some states in the United States of America have banned the use of TikTok for causing concerns among users related to data security. To support the ban and to build trust with the populace, the governor…
Versa Networks Hosting Versatility 2023 Annual User Conference Next Month
SANTA CLARA, Calif.–(BUSINESS WIRE)–Versa Networks, the recognized leader of single-vendor Unified Secure Access Service Edge (SASE), today announced that it is hosting its annual user conference “Versatility 2023” on Feb. 8 – 9. Versatility 2023 will host a global audience…
SecureAuth Closes 2022 with Exciting Momentum as Customer Adoption Soars for Passwordless Continuous Authentication
IRVINE, Calif.–(BUSINESS WIRE)–SecureAuth, a leader in access management and authentication, today announced it has completed a breakthrough year, setting the stage for accelerated growth in 2023. Over the last year, SecureAuth introduced game-changing authentication technology, appointed Paul Trulove as CEO,…
Government Issues High-risk Warning for iPhone Users
Apple iPhones are known for their strength and security features. The Cupertino-based tech behemoth releases security updates for its devices on a regular basis. Although Apple recommends that people install the most recent builds of iOS on their iPhones…
Gee, tanks: Russian hackers DDoS Germany for aiding Ukraine
Also: a week of leaks; Riot Games says ‘LoL’ to source code ransom demands; and Yandex source also appears online in brief Russian hackers have proved yet again how quickly cyber attacks can be used to respond to global events…
IT Security News Weekly Summary – Week 04
IT Security News Daily Summary 2023-01-29 Doctor Paid $60k in Bitcoin to Hire Dark Web Hitmen Facebook Scams, Account Takeovers Are On The Rise Alleged member of ShinyHunters group extradited to the US, could face 116 years in jail Pro-Russia…
IT Security News Daily Summary 2023-01-29
Doctor Paid $60k in Bitcoin to Hire Dark Web Hitmen Facebook Scams, Account Takeovers Are On The Rise Alleged member of ShinyHunters group extradited to the US, could face 116 years in jail Pro-Russia group Killnet targets Germany due to…
Doctor Paid $60k in Bitcoin to Hire Dark Web Hitmen
By Habiba Rashid Ronald Craig Ilg, 56 of Spokane, Washington wanted dark web hitmen to assault his wife and a former colleague. This is a post from HackRead.com Read the original post: Doctor Paid $60k in Bitcoin to Hire Dark…
Facebook Scams, Account Takeovers Are On The Rise
The post Facebook Scams, Account Takeovers Are On The Rise appeared first on Facecrooks. By this point, almost everyone knows that scams and fake accounts are an unfortunately common occurrence on Facebook. However, recent reports and studies have indicated that…
Alleged member of ShinyHunters group extradited to the US, could face 116 years in jail
An alleged member of the ShinyHunters cybercrime gang has been extradited from Morocco to the United States. Sebastien Raoult, a French national who is suspected of being a member of ShinyHunters cybercrime gang known as “Seyzo Kaizen,” has been extradited…
Pro-Russia group Killnet targets Germany due to its support to Ukraine
Pro-Russia group Killnet launched last week DDoS attacks against the websites of German airports, administration bodies, and banks. The Pro-Russia group Killnet is behind the DDoS attacks that last week hit the websites of German airports, administration bodies, and banks. The attacks…
Riot Games Hit by Data Breach
Riot Games reported last week that a social engineering attempt had infiltrated the systems in their software platform. Motherboard got the ransom note that was sent to Riot Games and reported that hackers demanded $10 million in exchange for keeping…
Netflix To Clamp Down On Password Sharing By Q1 Of 2023
Netflix wants to stop people from sharing their passwords, which will be pretty upsetting for its customer who shares passwords, especially those who don’t live with you. However, the streaming service meant business this time. The company lost 200,000 customers…
ISG to Publish Reports on Power and Utilities Industry
STAMFORD, Conn.–(BUSINESS WIRE)–Information Services Group (ISG) (Nasdaq: III), a leading global technology research and advisory firm, has launched research studies examining providers of services and software platforms to the global power and utilities industry, which is adopting new technologies in…
Julie Cullivan Joins Astra Board of Directors
ALAMEDA, Calif.–(BUSINESS WIRE)–Astra Space, Inc. (“Astra”) (NASDAQ: ASTR), a provider of products and services to the global space industry, is proud to announce the appointment of Julie Cullivan to the Astra Board of Directors effective February 1, 2023. Ms. Cullivan…
Latest Cyberthreats and Advisories – January 20, 2023
TikTok is fined for a privacy violation, major corporations suffer breaches and Vice Society attacks another school. Here are the latest threats and advisories for the week of January 20, 2023. Threat Advisories and Alerts U.K. School Survey Reveals Surprising…
How to Secure Your CI/CD Pipeline
Recently, we learned of a breach of CircleCI. They strongly suggest that all their customers: Immediately rotate any and all secrets stored in CircleCI. Review internal logs for their systems for unauthorized access from December 21, 2022, through January 4,…
Watch out! Experts plans to release VMware vRealize Log RCE exploit next week
Horizon3’s Attack Team made the headlines again announcing the releasse of a PoC exploit code for remote code execution in VMware vRealize Log. Researchers from the Horizon3’s Attack Team announced the release of PoC exploit code for remote code execution…