Cybersecurity News
- APIs: Unveiling the Silent Killer of Cyber Security Risk Across Industries
- LUCR-3: Scattered Spider Getting SaaS-y in the Cloud
- Silent Skimmer: A Year-Long Web Skimming Campaign Targeting Online Payment Businesses
- OpenRefine's Zip Slip Vulnerability Could Let Attackers Execute Malicious Code
- BunnyLoader: New Malware-as-a-Service Threat Emerges in the Cybercrime Underground
- Zanubis Android Banking Trojan Poses as Peruvian Government App to Target Users
- FBI Warns of Rising Trend of Dual Ransomware Attacks Targeting U.S. Companies
- Iranian APT Group OilRig Using New Menorah Malware for Covert Operations
- New Critical Security Flaws Expose Exim Mail Servers to Remote Attacks
- Cybercriminals Using New ASMCrypt Malware Loader to Fly Under the Radar
- Lazarus Group Impersonates Recruiter from Meta to Target Spanish Aerospace Firm
- Post-Quantum Cryptography: Finally Real in Consumer Apps?
- Microsoft's AI-Powered Bing Chat Ads May Lead Users to Malware-Distributing Sites
- Progress Software Releases Urgent Hotfixes for Multiple Security Flaws in WS_FTP Server
- Cisco Warns of Vulnerability in IOS and IOS XE Software After Exploitation Attempts
- GitHub Repositories Hit by Password-Stealing Commits Disguised as Dependabot Contributions
- China's BlackTech Hacking Group Exploited Routers to Target U.S. and Japanese Companies
- The Dark Side of Browser Isolation – and the Next Generation Browser Security Technologies
- China-Linked Budworm Targeting Middle Eastern Telco and Asian Government Agencies
- Update Chrome Now: Google Releases Patch for Actively Exploited Zero-Day Vulnerability
- National Logistics Portal (NLP) data leak: seaports in India were left vulnerable to takeover by hackers
- North Korea-linked Lazarus targeted a Spanish aerospace company
- Ransomware attack on Johnson Controls may have exposed sensitive DHS data
- BlackCat gang claims they stole data of 2.5 million patients of McLaren Health Care
- Security Affairs newsletter Round 439 by Pierluigi Paganini – International edition
- ALPHV/BlackCat ransomware gang hacked the hotel chain Motel One
- FBI warns of dual ransomware attacks
- Progress Software fixed two critical severity flaws in WS_FTP Server
- Child abuse site taken down, organized child exploitation crime suspected – exclusive
- A still unpatched zero-day RCE impacts more than 3.5M Exim servers
- Exploit available for critical WS_FTP bug exploited in attacks
- Arm warns of Mali GPU flaws likely exploited in targeted attacks
- Motel One discloses data breach following ransomware attack
- FBI warns of surge in 'phantom hacker' scams impacting elderly
- Amazon sends Mastercard, Google Play gift card order emails by mistake
- Meet LostTrust ransomware — A likely rebrand of the MetaEncryptor gang
- New Marvin attack revives 25-year-old decryption flaw in RSA
- Cloudflare DDoS protections ironically bypassed using Cloudflare
- Microsoft fixes Outlook prompts to reopen closed windows
- The Week in Ransomware - September 29th 2023 - Dark Angels
- Millions of Exim mail servers exposed to zero-day RCE attacks
- Exploit released for Microsoft SharePoint Server auth bypass flaw
- ShinyHunters member pleads guilty to $6 million in data theft damages
- Security researchers believe mass exploitation attempts against WS_FTP have begun
- AWS stirs the MadPot – busting bot baddies and eastern espionage since 2010
- Yes, Singapore immigration plans to scan your face instead of your passport
- Now MOVEit maker Progress patches holes in WS_FTP
- Microsoft Bing Chat pushes malware via bad ads
- PhD student guilty of 3D-printing 'kamikaze' drone for Islamic State terrorists
- Norway wants Facebook behavioral advertising banned across Europe
- Chinese snoops stole 60K State Department emails in that Microsoft email heist
- Feds' privacy panel backs renewing Feds' S. 702 spying powers — but with limits
- DARPA takes its long-duration Manta undersea drone for a test-dip
- After failing at privacy, again, Google is working to keep Bard chats out of Search
- China's national security minister rates fake news among most pressing cyber threats
- NYC rights groups say no to grocery store spycams and snooping landlords
- ROBOT crypto attack on RSA is back as Marvin arrives
- MOVEit breach delivers bundle of 3.4 million baby records
- Ukraine accuses Russian spies of hunting for war-crime info on its servers
- Mixin suspends deposits and withdrawals after $200m cryptocurrency heist
- T-Mobile US exposes some customer data – but don't call it a breach
- Apple squashes security bugs after iPhone flaws exploited by Predator spyware
- ESA gets the job of building Europe's secure satcomms network
- Multibillion-dollar cybersecurity training market fails to fix the supply-demand imbalance
- 10 things you should know about navigating the dark web
- ShadowSyndicate Cybercrime gang has used 7 ransomware families over the past year
- UK data regulator orders end to spreadsheet FOI requests after serious data breaches
- Cybersecurity startups to watch for in 2023
- Companies are already feeling the pressure from upcoming US SEC cyber rules
- UK data regulator warns that data breaches put abuse victims’ lives at risk
- EchoMark releases watermarking solution to secure private communications, detect insider threats
- SpecterOps to use in-house approximation to test for global attack variations
- New Trojan ZenRAT masquerades as Bitwarden password manager
- NSA AI Security Center
- Friday Squid Blogging: Protecting Cephalopods in Medical Research
- Critical Vulnerability in libwebp Library
- Signal Will Leave the UK Rather Than Add a Backdoor
- Friday Squid Blogging: New Squid Species
- New Revelations from the Snowden Documents
- On the Cybersecurity Jobs Shortage
- Detecting AI-Generated Text
- Using Hacked LastPass Keys to Steal Cryptocurrency
- Friday Squid Blogging: Cleaning Squid
- Promoting Safety Across Your Digital Supply Chain – Source: www.cyberdefensemagazine.com
- Amazon sends Mastercard, Google Play gift card order emails by mistake – Source: www.bleepingcomputer.com
- Bugs Found in Another Progress Software File Transfer App – Source: www.govinfosecurity.com
- OpenRefine’s Zip Slip Vulnerability Could Let Attackers Execute Malicious Code – Source:thehackernews.com
- BunnyLoader: New Malware-as-a-Service Threat Emerges in the Cybercrime Underground – Source:thehackernews.com
- Zanubis Android Banking Trojan Poses as Peruvian Government App to Target Users – Source:thehackernews.com
- Silverfort Open Sources Lateral Movement Detection Tool – Source: www.securityweek.com
- Data Theft Overtakes Ransomware as Top Concern for IT Decision Makers – Source: www.infosecurity-magazine.com
- DEF CON 31 – Andrew Brandt’s ‘War Stories – You’re Not George Clooney, And This Isn’t Oceans 11’ – Source: securityboulevard.com
- Choosing the Right Cybersecurity Awareness Training Solution: Your Ultimate Checklist – Source: securityboulevard.com