UN Peace Operations Under Fire From State-Sponsored Hackers

The international body isn't doing enough to protect details on dissidents and activists gathered by peacekeeping operations, particularly across Central Africa.

Cloud Email Filtering Bypass Attack Works 80% of the Time

A majority of enterprises that employ cloud-based email spam filtering services are potentially at risk, thanks to a rampant tendency to misconfigure them.

TheMoon Malware Rises Again with Malicious Botnet for Hire

Outdated SOHO routers and IoT devices being hijacked by TheMoon to operate an anonymous hacker botnet service called Faceless.

Iran's Evolving Cyber-Enabled Influence Operations to Support Hamas

Understanding Iran's techniques, coupled with comprehensive threat intel, can give organizations an edge in identifying and defending against these attacks.

Pervasive LLM Hallucinations Expand Code Developer Attack Surface

The tendency of popular AI-based tools to recommend nonexistent code libraries offers a bigger opportunity than thought to distribute malicious packages.

Indian Government, Oil Companies Breached by 'HackBrowserData'

The malicious actor used Slack channels as an exfiltration point to upload the stolen data.

Threat Report: Examining the Use of AI in Attack Techniques

More than ever, it's critical for organizations to understand the nature of AI-based threats and how they can blunt the advantage that AI conveys to bad actors.

Vietnam Securities Broker Suffered Cyberattack That Suspended Trading

Attackers "encrypted" VNDirect's data in an attack that kept the broker offline for days.

'Tycoon' Malware Kit Bypasses Microsoft, Google MFA

Threat actors are widely adopting the fast-growing, low-cost phishing-as-a-service (PhaaS) platform, which is sold via Telegram.

'Darcula' Phishing-as-a-Service Operation Bleeds Victims Worldwide

Pervasive and inexpensive phishing kit encompasses hundreds of templates targeting Kuwait Post, Etisalat, Jordan Post, Saudi Post. Australia Post, Singapore Post, and postal services in South Africa, Nigeria, Morocco, and more.

Australian Government Doubles Down On Cybersecurity in Wake of Major Attacks

Government proposes more modern and comprehensive cybersecurity regulations for businesses, government, and critical infrastructures providers Down Under.

Worldwide Agenda Ransomware Wave Targets VMware ESXi Servers

A new, improved variant on the group's malware combines fileless infection, BYOVD, and more to cause havoc in virtual environments.

Apple Security Bug Opens iPhone, iPad to RCE

CVE-2024-1580 allows remote attackers to execute arbitrary code on affected devices.

UN Adopts Largely Symbolic Resolution for 'Secure, Trustworthy' AI

Countries around the world are signaling support of secure AI practices, but not necessarily committing to them.

A Database-Oriented Operating System Wants to Shake Up Cloud Security

The operating system, DBOS, natively uses a relational database to reduce cost, ease application development, and maintain cybersecurity and integrity.

CISA Seeks to Curtail 'Unforgivable' SQL Injection Defects

In a joint alert with the FBI, CISA seeks to tamp down the pervasiveness of a well-known class of bugs.

Mitigating Third-Party Risk Requires a Collaborative, Thorough Approach

The issue can seem daunting, but most organizations have more agency and flexibility to deal with third-party risk than they think.

Japan Runs Inaugural Cyber Defense Drills with Pacific Island Nations

Kiribati, the Marshall Islands, Micronesia, Nauru, and Palau participate in the cybersecurity exercise held in Guam.

GitHub Developers Hit in Complex Supply Chain Cyberattack

The attacker employed various techniques, including distributing malicious dependencies via a fake Python infrastructure linked to GitHub projects.

Russian APT Releases More Deadly Variant of AcidRain Wiper Malware

New AcidPour variant can attack a significantly broader range of targets including IoT devices, storage area networks, and handhelds.

AWS CISO: Pay Attention to How AI Uses Your Data

Amazon Web Services CISO Chris Betz explains why generative AI is both a time-saving tool as well as a double-edged sword.

Apple Stingy With Details About Latest iOS Update

The security update comes just weeks after the release of iOS 17.4, but Apple has not included CVEs or information about the fixes.

NIST's Vuln Database Downshifts, Prompting Questions About Its Future

NVD may be in peril, and while alternatives exist, enterprise security managers will need to plan accordingly to stay on top of new threats.

How Can We Reduce Threats From the Initial Access Brokers Market?

The ready-made access IABs offer has become an integral part of the ransomware ecosystem. Here's how to stop them before they can profit from your assets.

300K Internet Hosts at Risk for 'Devastating' Loop DoS Attack

Attackers can create a self-perpetuating, infinite scenario in such a way that volumes of traffic overwhelm network resources indefinitely.

1-Click Takeover Bug in AWS Apache Airflow Reveals Larger Risk

A bug exposed users of an AWS workflow management service to cookie tossing, but behind the scenes lies an even deeper issue that runs across all of the top cloud services.

Kaspersky Identifies Three New Android Malware Threats

India's Android Users Hit by Malware-as-a-Service Campaign

Hackers are seeking sensitive personal information on user devices, including banking data and SMS messages.

5 Ways CISOs Can Navigate Their New Business Role

CISOs can successfully make their business operations more secure and play a larger role in the organization's overall strategy, but there are pitfalls to avoid, Forrester analysts warn.

Name That Toon: Bridge the Gap

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

New Regulations Make D&O Insurance a Must for CISOs

CISOs currently hold all of the responsibility to stop cyberattacks yet have none of the authority to fund the technological defenses that regulations require.

Chinese APT 'Earth Krahang' Compromises 48 Gov't Orgs on 5 Continents

The group uses pretty standard open source tooling and social engineering to burrow into high-level government agencies across the globe.

Fujitsu: Malware on Company Computers Exposed Customer Data

It remains unclear how long the IT services giant's systems were infiltrated and just how the cyberattack unfolded.

Tracking Everything on the Dark Web Is Mission Critical

On the Dark Web, stolen secrets are your enemy, and context is your friend.

South African Government Pension Data Leak Fears Spark Probe

LockBit ransomware gang claims 668GB of data it dumped online was stolen from South Africa's pension agency.

3 Ways Businesses Can Overcome the Cybersecurity Skills Shortage

With budget constraints and a limited supply of skilled talent, businesses need to get creative to defend against rampant cybersecurity threats.

'GhostRace' Speculative Execution Attack Impacts All CPU, OS Vendors

Like Spectre, the new GhostRace exploit could give attackers a way to access sensitive information from system memory and take other malicious actions.

NHS Breach, HSE Bug Expose Healthcare Data in the British Isles

Whoopsies in Ireland and Scotland speak to a tenuousness of cyber protections for sensitive private healthcare data.

FCC Approves Voluntary Cyber Trust Labels for Consumer IoT Products

Here's what IoT device manufacturers need to know to earn a cybersecurity stamp of approval from the government.

Fortinet Warns of Yet Another Critical RCE Flaw

CVE-2024-48788, like many other recent Fortinet flaws, will likely be an attractive target, especially for nation-state backed actors.

Alabama Under DDoS Cyberattack by Russian-Backed Hacktivists

The hacktivist group Anonymous Sudan claims credit for a cyberattack that disrupted Alabama state government earlier this week.

TikTok Ban Raises Data Security, Control Questions

Approved by the House and moving on to the Senate, the potential ban points up the porousness of governmental control in the digital age.

Nissan Oceania Breached; 100K People Affected Down Under

A possible ransomware attack has exposed government and personal data of Australians and New Zealanders, encompassing the carmaker's customers, dealers, and employees.

How to Identify a Cyber Adversary: What to Look For

There are many factors involved in attributing a cyber incident to a specific threat actor.

Patch Now: Kubernetes RCE Flaw Allows Full Takeover of Windows Nodes

Attackers can remotely execute code with system privileges by exploiting a vulnerability in the source code of the open source container management system.

Google's Post-Quantum Upgrade Doesn't Mean We're All Protected Yet

Just because Google has put in the work to quantum-proof Chrome doesn't mean post-quantum security is all set.

Microsoft Discloses Critical Hyper-V Flaws in Low-Volume Patch Update

Microsoft has disclosed fewer flaws and zero-days in the first three months of 2024 compared with the first quarter of the prior four years.

'Magnet Goblin' Exploits Ivanti 1-Day Bug in Mere Hours

A prolific but previously hidden threat actor turns public vulnerabilities into working exploits before companies have time to patch.

Typosquatting Wave Shows No Signs of Abating

A spate of recent typosquatting attacks show the scourge of this type of attack is still very much with us, even after decades of cyberdefender experience with it.

4 Security Tips From PCI DSS 4.0 Anyone Can Use

With the final switchover to the latest version of the credit card standard, here's what all security professionals can draw from the changes.

Anti-Fraud Project Boosts Security of African, Asian Financial Systems

Working with countries and organizations in Africa, Asia, and the Middle East, the Tazama project aims to add affordable security and trust to the financial infrastructure.

How Not to Become the Target of the Next Microsoft Hack

The alarming number of cyber threats targeting Microsoft cloud applications shows cybersecurity needs an overhaul.

Japan Blames North Korea for PyPI Supply Chain Cyberattack

Open-source software ecosystem compromise leaves developers in Asia and around the globe at risk.

Broke Cyber Pros Flock to Cybercrime Side Hustles

Burned-out cybersecurity professionals dealing with layoffs and stressful working conditions are increasingly finding a better way to earn a buck: cybercrime.

South Korean Police Deploy Deepfake Detection Tool in Run-up to Elections

The nation's battle with political deepfakes may be a harbinger for what's to come in elections around the world this year.

Stealth Bomber: Atlassian Confluence Exploits Drop Web Shells In-Memory

The proof-of-concept exploits for Atlassian Confluence would enable arbitrary code execution without requiring file system access.

Silence Laboratories Raises $4.1M Funding to Enable Privacy Preserving Collaborative Computing

Bipartisan Members of Congress Introduce Enhanced Cybersecurity for SNAP Act to Secure Food Benefits Against Hackers and Thieves

'The Weirdest Trend in Cybersecurity': Nation-States Returning to USBs

USBs are fetch again, as major APTs from Russia, China, and beyond are turning to them for BYOD cyberattacks.

How CISA Fights Cyber Threats During Election Primary Season

Election cyber threats come from various places, including compromised voting machines, AI deepfakes, and potential physical harm to workers. But CISA has been working diligently with various public and private partners to stymie the risk.

Veeam Launches Veeam Data Cloud

Patch Now: Apple Zero-Day Exploits Bypass Kernel Security

A pair of critical bugs could open the door to complete system compromise, including access to location information, iPhone camera and mic, and messages. Rootkitted attackers could theoretically perform lateral movement to corporate networks, too.

Spoofed Zoom, Google & Skype Meetings Spread Corporate RATs

A Russian-language campaign aims to compromise corporate users on both Windows and Android devices by mimicking popular online collaboration applications.

Army Vet Spills National Secrets to Fake Ukrainian Girlfriend

The retired US Army lieutenant colonel faces up to 10 years in prison if convicted of sharing secret information about the Russia-Ukraine war with a scammer posing as romantic connection.

North Korea Hits ScreenConnect Bugs to Drop 'ToddleShark' Malware

North Korea's latest espionage tool is tough to pin down, with random generators that throw detection mechanisms off its scent. The DPRK is using the recent critical bugs in ConnectWise ScreenConnect, a remote desktop tool, to deliver the bug.

Improved, Stuxnet-Like PLC Malware Aims to Disrupt Critical Infrastructure

A newly developed PLC malware does not require physical access to target an ICS environment, is mostly platform neutral, and is more resilient than traditional malware aimed at critical infrastructure.

Fast-Growing RA Ransomware Group Goes Global

The rapidly evolving threat group uses high-impact tactics that include manipulating group policy to deploy payloads across environments.

Zero-Click GenAI Worm Spreads Malware, Poisoning Models

35 years after the Morris worm, we're still dealing with a version of the same issue: data overlapping with control.

Amex Customer Data Exposed in Third-Party Breach

The breach occurred through a third-party service provider frequently used by the company's travel services division.

Middle East Leads in Deployment of DMARC Email Security

Yet challenges remain as many nation's policies for the email authentication protocol remain lax and could run afoul of Google's and Yahoo's restrictions.

'Illusive' Iranian Hacking Group Ensnares Israeli, UAE Aerospace and Defense Firms

UNC1549, aka Smoke Sandstorm and Tortoiseshell, appears to be the culprit behind a cyberattack campaign customized for each targeted organization.

Taiwan's Biggest Telco Breached by Suspected Chinese Hackers

Stolen data from Chunghwa Telecom — including government-related details — are up for sale on the Dark Web, the Taiwanese defense ministry confirms.

NIST Cybersecurity Framework 2.0: 4 Steps To Get Started

The National Institute of Standards and Technology (NIST) has revised the book on creating a comprehensive cybersecurity program that aims to help organizations of every size be more secure. Here's where to start putting the changes into action.

CryptoChameleon Attackers Target Apple, Okta Users With Tech Support Gambit

A sophisticated threat actor using an MO similar to Scattered Spider is camouflaging itself with convincing impersonation techniques in targeted attacks.

Biometrics Regulation Heats Up, Portending Compliance Headaches

A growing thicket of privacy laws regulating biometrics is aimed at protecting consumers amid increasing cloud breaches and AI-created deepfakes. But for businesses that handle biometric data, staying compliant is easier said than done.