Microsoft warns of a Paragon Partition Manager BioNTdrv.sys driver zero-day flaw actively exploited by ransomware gangs in attacks. Microsoft discovered five vulnerabilities in the Paragon Partition Manager BioNTdrv.sys driver. The IT giant reported that one of these flaws is exploited by…
Tag: EN
Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service
Microsoft exposed four individuals behind an Azure Abuse scheme using unauthorized GenAI access to create harmful content. Microsoft shared the names of four developers of malicious tools designed to bypass the guardrails of generative AI services, including Microsoft’s Azure OpenAI…
Independent Audit for Your Secrets Management?
Why Should Organizations Focus on Independent Audit for Secrets Management? Are you overlooking an essential aspect of your organization’s cybersecurity strategy? This aspect is the management of Non-Human Identities (NHIs) and their secrets, which are often overlooked but vital components…
Certain About Your Data Privacy Measures?
Are You Confident in Your Data Privacy Measures? Professionals in financial services in healthcare, travel, DevOps, and SOC teams that managing securitization processes in the cloud; do you feel confident about your data privacy measures? Where marked by increasing cybersecurity…
How Stable is Your Cloud Infrastructure Security?
Are Your Machine Identities Protected Within Your Cloud Infrastructure? Let’s delve into a thought-provoking question: Within your seemingly secure systems, how comprehensively are your Non-Human Identities (NHIs) and their secrets protected? NHIs, as machine identities, play a crucial role in…
LightSpy Malware Attacks Users, Launches Over 100 Commands to Steal Data
Cybersecurity researchers at Hunt.io have found an updated version of LightSpy implant, a modular surveillance framework for data collection and extraction. Famous for attacking mobile devices initially, further enquiry revealed it can attack macOS, Windows, Linux, and routers. LightSpy has…
Bybit Suffers Historic $1.5 Billion Crypto Hack, Lazarus Group Implicated
Dubai-based cryptocurrency exchange Bybit Technology Ltd. has fallen victim to a massive cyberattack, with approximately $1.5 billion in cryptocurrency stolen. The breach is believed to be the largest single theft in cryptocurrency history. Bybit, a well-established exchange with over…
Metrics That Matter for CISOs
With security budgets tightening and business leaders taking a more watchful eye toward cybersecurity, security operations leaders are increasingly looking to justify their work with key performance indicators. But the question remains: Which metrics matter most? Earning a seat at…
DM Clinical Research Database Exposed Online, Leaking 1.6M Patient Records
A clinical research database containing over 1.6 million patient records was discovered publicly accessible online without encryption or password protection. Security researcher Jeremiah Fowler found the dataset, linked to DM Clinical Research, exposing sensitive information such as names, medical…
Beware of Fake Viral Video Links Spreading Malware
McAfee Labs has uncovered a rise in cyber scams where fraudsters use fake viral video links to trick people into downloading malware. These attacks rely on social engineering, enticing users with promises of exclusive or leaked content. Once a…
Open Access to Critical Data With Bank Staff Leading to Financial Scam
A concerning trend has sent shockwaves across cybersecurity authorities, with central cyber and intelligence organisations tracking and documenting large-scale data leaks perpetrated by bank staff and third party contractors. According to a senior Indian government official, the issue has…
Call Merging Scams and Financial Security Risks with Prevention Strategies
It is not uncommon for fraudsters to develop innovative tactics to deceive their targets, with one of the latest scams being the called merging scam in which the scammers attempt to gain unauthorized access to the victim’s accounts to…
Business Continuity Planning: Scenarios vs. impact
The core aim of Business Continuity Planning is to ensure that an organisation can continue to deliver its products and services, minimise downtime and recover swiftly when faced with disruption. There is a fundamental question, often posed when organisations begin:…
The New Face of Executive Protection: Why Digital and Physical Security Can No Longer Stand Alone
The security landscape for corporate leaders has reached a critical inflection point. Physical threats against executives have surged by 88%, but what’s even more alarming is how these threats have evolved. Today’s attackers aren’t just gathering intelligence online – they’re…
AI’s High-Stakes Gamble: Balancing Breakthroughs with Unseen Risks
AI is reshaping all industries in some capacity. At Swimlane, we’ve observed how generative AI and LLMs are driving real results, with 89% of organizations in our recent study reporting notable efficiency gains. However, this rapid AI adoption comes with…
Why Cyber Resilience Legislation is Vital to Safeguarding Our Networks
Mary Ward was a pioneer. She was considered to have a talent for drawing, researching insects and writing several books on microscopy, which made her one of the most prominent scientists in the British Isles – a novelty for a…
The Trump Administration Is Deprioritizing Russia as a Cyber Threat
Plus: The FBI pins that ByBit theft on North Korea, a malicious app download breaches Disney, spyware targets a priest close to the pope, and more. This article has been indexed from Security Latest Read the original article: The Trump…
Mozilla Updates Firefox Terms Again After Backlash Over Broad Data License Language
Firefox browser maker Mozilla on Friday updated its Terms of Use a second time within a week following criticism overbroad language that appeared to give the company the rights to all information uploaded by users. The revised Terms of Use…
Tarlogic Discovers Security Flaw Allowing Eavesdropping on Private Conversations Via Bluetooth Headset Microphone
The popularity of Bluetooth devices has surged over the years thanks to their convenience and wireless connectivity. The Bluetooth protocol allows and streamlines the setup and discovery of services between a wide range of devices. Bluetooth technology allows users to…
Almost All Organisations Experienced API Security Issues in Past Year
The latest State of API Security Report by Salt Security has highlighted the ongoing challenges faced by organisations in securing their application programming interfaces (APIs). The Salt Labs State of API Security Report Q1 2025 draws on survey responses from…