Ransomware affiliates are forming alliances to recoup losses from unreliable partners. A prominent example involves ALPHV extorting $22 million from Change Healthcare but withholding funds from its data exfiltration affiliate. To remedy this, the affiliate has reportedly partnered with RansomHub…
Tag: EN
Hackers Exploit iOS Settings to Trigger Fake iOS Updates on Hijacked Devices
A sophisticated mobile attack vector involves a deceptive iOS update that masquerades as the legitimate iOS 18, tricking users into installing malicious code. The persistence mechanism allows threat actors to maintain covert control over the compromised device, facilitating data exfiltration…
DOJ Charges Nashville Man for Helping North Koreans Get U.S. Tech Jobs
The U.S. Department of Justice (DoJ) on Thursday charged a 38-year-old individual from Nashville, Tennessee, for allegedly running a “laptop farm” to help get North Koreans remote jobs with American and British companies. Matthew Isaac Knoot is charged with conspiracy…
MongoDB Vulnerabilities Let Attackers Escalate Privileges
MongoDB has disclosed a critical vulnerability that could allow attackers to escalate privileges on systems running certain versions of MongoDB. This vulnerability, CVE-2024-7553, affects multiple versions of MongoDB Server, C Driver, and PHP Driver. The flaw stems from incorrect validation…
Russian cyber spies stole data and emails from UK government systems
Earlier this year, Russian cyber spies breached UK government systems and stole sensitive data and emails, reported The Record media. Earlier this year, Russia’s foreign intelligence service stole internal emails and data on individuals from the UK government. The news…
CISA adds Apache OFBiz and Android kernel bugs to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apache OFBiz and Android kernel bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added an Android Kernel Remote Code Execution flaw (CVE-2024-36971) and an Apache OFBiz Path…
Next-Gen Vehicle Technologies Present New Challenges for Cybersecurity Professionals
Modern technology has led to the rise of self-driving cars. While advantageous in some aspects, the autonomous vehicle concept introduces cybersecurity challenges. There is also innovation and concern with aviation cybersecurity and autonomous aircraft. Here’s what you need to know…
One of the largest data breaches in history? Cyber Security Today for Friday, August 9th, 2024
Massive Data Breach, Outlook’s Phishing Risk, and Windows Downgrade Attack Vulnerabilities In this episode of Cybersecurity Today, host Jim Love delves into one of the largest data breaches in history involving 2.9 billion records leaked without user consent by National…
Security vulnerability in IT infrastructure of Ransomware gang saves six victimized companies
Recent news has frequently highlighted how vulnerabilities in a company’s IT infrastructure can lead to devastating cyber-attacks. However, an intriguing twist has emerged: a flaw in the infrastructure managed by a ransomware group has led to a dramatic near-miss where…
Key Cloud Security Tools for 2024: A Comprehensive Overview
As cloud computing continues to evolve and integrate deeply into business operations, the need for robust cloud security tools becomes increasingly critical. With new threats emerging and cloud environments growing more complex, it’s essential for organizations to stay ahead of…
Authorities Dismantled North Korean Remote IT Worker Laptop Farm
Authorities have dismantled a “laptop farm” in Nashville, Tennessee, allegedly used to support the Democratic People’s Republic of Korea’s (DPRK) weapons program. Matthew Isaac Knoot, 38, has been charged with multiple offenses, including conspiracy to cause damage to protected computers…
CISA Warns of Hackers Exploiting Legacy Cisco Smart Install Feature
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has disclosed that threat actors are abusing the legacy Cisco Smart Install (SMI) feature with the aim of accessing sensitive data. The agency said it has seen adversaries “acquire system configuration files…
Proxmox Backup by NAKIVO: Powerful VM Data Protection
Proxmox VE is mainly suitable for small and medium-sized organizations that require advanced virtualization capabilities but have limited budgets. Proxmox VE is an open-source solution with particular advantages and disadvantages. On one side, it offers flexibility and adaptability that allow…
The Olympic Games have been protected from cyber-attacks so far
The expectation of cyberattacks targeting the Olympic Games was widespread. Earlier this year, Mandiant released a report identifying likely attackers as nation-state-affiliated groups from Russia, China, North Korea, and Iran. Cisco anticipated an eightfold increase from the 450 million cyberattacks…
It’s 2024 and we’re just getting round to stopping browsers insecurely accessing 0.0.0.0
Can’t reach someone’s private server on localhost from outside? No problem A years-old security oversight has been addressed in basically all web browsers – Chromium-based browsers, including Microsoft Edge and Google Chrome, WebKit browsers like Apple’s Safari, and Mozilla’s Firefox.……
Passwordless Prescription: The Cure for Healthcare Cybersecurity
The healthcare industry is poised for a cybersecurity transformation, with passwordless authentication at the forefront. Utilizing passkeys and biometrics improves user experience and significantly strengthens data security against contemporary threats such as credential stuffing and MFA fatigue. So says Phil…
Vectra AI Expands XDR Platform
Vectra AI, a provider of AI-driven Extended Detection and Response (XDR) solutions, has expanded its Vectra AI Platform, enhancing its ability to provide Security Operations Center (SOC) teams with a real-time view of their active posture. This expansion leverages the…
Overcoming the 5 Biggest Challenges to Implementing Just-in-Time, Just Enough Privilege
Embracing a just-in-time and just-enough privilege approach that harnesses context and automation can remove the tension between security and productivity, enabling teams to run faster without compromising on security standards. The post Overcoming the 5 Biggest Challenges to Implementing Just-in-Time,…
NIS2: A catalyst for cybersecurity innovation or just another box-ticking exercise?
The Network and Information Security (NIS) 2 Directive is possibly one of the most significant pieces of cybersecurity regulation to ever hit Europe. The 27 EU Member States have until 17 October 2024 to adopt and publish the standards necessary…
How Situational Awareness Enhances the Security of Your Facility
Situational awareness means what is happening around you, making educated judgments, and responding appropriately to any given scenario. It can be helpful on an individual level and also to organizations for making better decisions. The post How Situational Awareness Enhances…