Enemies are getting closer and using the same advanced technologies security professionals use to protect their networks. So maybe it’s time for a back to basics approach? Come up with…
Category: Cyber Security
OpenJS Foundation targeted in potential takeover attempt of JavaScript project
April 16, 2024PressroomSupply Chain/Software Security Security researchers have uncovered a “credible” takeover attempt against the OpenJS Foundation in a way that evokes similarities to the recently discovered incident targeting the…
3 Steps Executives and Boards Should Take to Ensure Cyber Readiness
COMMENT The new Securities and Exchange Commission (SEC) on cybersecurity risk management, strategy, governance and incident disclosure have recently come into force, and organizational approaches to responding to cybersecurity incidents…
TA558 hackers use images as weapons for large-scale malware attacks
April 16, 2024PressroomEndpoint security/threat intelligence The threat actor has been tracked down as TA558 It has been observed leveraging steganography as an obfuscation technique to deliver a wide range of…
The LockBit 3.0 variant generates customized, self-propagating malware
The LockBit ransomware-as-a-service (RaaS) group has struck another victim, this time using stolen credentials to launch a sophisticated attack against an unidentified organization in West Africa. The attackers used a…
The widely used PuTTY SSH client was found vulnerable to the key recovery attack
April 16, 2024PressroomEncryption/Network Security Maintainers of PuTTY Secure Shell (SSH) and Telnet client are alerting users of a critical vulnerability affecting versions 0.68 through 0.80 that could be exploited to…
The FTC fines mental health startup Cerebral $7 million for serious privacy violations
April 16, 2024PressroomPrivacy Violation/Regulatory Compliance The US Federal Trade Commission (FTC) has ordered the mental telemedicine company Cerebral to use or disclose personal data for advertising purposes. It was also…
Hive RAT creators and $3.5 million cryptojacking mastermind arrested in global crackdown
Two people have been arrested in Australia and the United States in connection with an alleged plan to develop and distribute a remote access Trojan called Hive RAT (formerly Firebird).…
Cyber operations in the Middle East intensify, with Israel as the main target
As tensions in the Middle East continue to rise, cyber attacks and operations have become a standard part of the fabric of geopolitical conflict. Last week, the head of Israel’s…
Palo Alto Network releases hotfixes for zero-day bugs in its firewall operating system
Palo Alto Networks (PAN) on April 14 released hotfixes to address a high-severity zero-day bug in multiple versions of its PAN-OS software that a threat actor is using to deploy…