Tag Archives: it security

Hackers Exploiting Unpatched RCE Flaw in Zimbra Collaboration Suite

A severe remote code execution vulnerability in Zimbra’s enterprise collaboration software and email platform is...

08
Oct
Microsoft Issues Improved Mitigations for Unpatched Exchange Server Vulnerabilities

Microsoft on Friday disclosed it has made more improvements to the mitigation method offered as a means to prevent...

08
Oct
Fortinet Warns of New Auth Bypass Flaw Affecting FortiGate and FortiProxy

Fortinet has privately warned its customers of a security flaw affecting FortiGate firewalls and FortiProxy...

07
Oct
Facebook Detects 400 Android and iOS Apps Stealing Users Log-in Credentials

Meta Platforms on Friday disclosed that it had identified over 400 malicious apps on Android...

07
Oct
The essentials of GRC and cybersecurity — How they empower each other

Understanding the connection between GRC and cybersecurity When talking about cybersecurity, Governance, Risk, and Compliance...

07
Oct
LofyGang Distributed ~200 Malicious NPM Packages to Steal Credit Card Data

Multiple campaigns that distributed trojanized and typosquatted packages on the NPM open source repository have...

07
Oct
Hackers Can Use ‘App Mode’ in Chromium Browsers’ for Stealth Phishing Attacks

In what’s a new phishing technique, it has been demonstrated that the Application Mode feature...

07
Oct
Former CSO of Uber found guilty of covering up data breach
October 7, 2022

Joe Sullivan now awaits sentencing after being found guilty of obstruction of justice...

BlackByte Ransomware Abuses Vulnerable Windows Driver to Disable Security Solutions

In yet another case of bring your own vulnerable driver (BYOVD) attack, the operators of...

07
Oct
Ferrari denies breach following 7GB of data posted online
October 7, 2022

The car manufacturer was allegedly targeted by ransomware group RansomEXX...

What’s been happening with CISP then?
October 6, 2022

The CISP team provides some background on where things have got to on the project...

Eternity Group Hackers Offering New LilithBot Malware as a Service to Cybercriminals

The threat actor behind the malware-as-a-service (MaaS) called Eternity has been linked to new piece...

06
Oct
Details Released for Recently Patched new macOS Archive Utility Vulnerability

Security researchers have shared details about a now-addressed security flaw in Apple’s macOS operating system...

06
Oct
The Ultimate SaaS Security Posture Management Checklist, 2023 Edition

It’s been a year since the release of The Ultimate SaaS Security Posture Management (SSPM)...

06
Oct
IOTW: Capital One hacker given probation following cyber attack
October 6, 2022

The Department of Justice said it was “very disappointed” in the sentencing...

19-Year-Old Teen Arrested for Using Leaked Optus Breach Data in SMS Scam

The Australian Federal Police (AFP) has arrested a 19-year-old teen from Sydney for allegedly attempting...

06
Oct
Former Uber Security Chief Found Guilty of Data Breach Coverup

A U.S. federal court jury has found former Uber Chief Security Officer Joseph Sullivan guilty...

06
Oct
Experts Warn of New RatMilad Android Spyware Targeting Enterprise Devices

A novel Android malware called RatMilad has been observed targeting a Middle Eastern enterprise mobile...

05
Oct
Telstra Telecom Suffers Data Breach Potentially Exposing Employee Information

Australia’s largest telecommunications company Telstra disclosed that it was the victim of a data breach...

05
Oct
See Yourself in Cyber

When you read this title maybe you think of yourself “I know nothing about computers.”...

05
Oct
NIST releases draft NIST IR 8408: Understanding Stablecoin Technology and Related Security Considerations
October 5, 2022

The initial public draft of NIST IR 8408, Understanding Stablecoin Technology and Related Security Considerations,...

FBI, CISA, and NSA Reveal How Hackers Targeted a Defense Industrial Base Organization

U.S. cybersecurity and intelligence agencies on Tuesday disclosed that multiple nation-state hacking groups potentially targeted...

05
Oct
Want More Secure Software? Start Recognizing Security-Skilled Developers

Professional developers want to do the right thing, but in terms of security, they are...

05
Oct
Canadian Netwalker Ransomware Affiliate Sentenced to 20 Years in U.S. Prison

A former affiliate of the Netwalker ransomware has been sentenced to 20 years in prison...

05
Oct
Mitigation for Exchange Zero-Days Bypassed! Microsoft Issues New Workarounds

Microsoft has revised its mitigation measures for the newly disclosed and actively exploited zero-day flaws...

05
Oct
Cyber Essentials Plus is for charities too!
October 4, 2022

Sara Ward, the CEO of Black Country Women’s Aid, discusses her organisation’s experience of gaining...

Russian Hacker Arrested in India for Reportedly Helping Students Cheat in JEE-Main Exam

India’s Central Bureau of Investigation (CBI) on Monday disclosed that it has detained a Russian...

04
Oct
Popular YouTube Channel Caught Distributing Malicious Tor Browser Installer

A popular Chinese-language YouTube channel has emerged as a means to distribute a trojanized version...

04
Oct
Researchers Report Supply Chain Vulnerability in Packagist PHP Repository

Researchers have disclosed details about a now-patched high-severity security flaw in Packagist, a PHP software...

04
Oct
Back to Basics: Cybersecurity’s Weakest Link

A big promise with a big appeal. You hear that a lot in the world...

04
Oct