April 15, 2024PressroomFirewall security/vulnerabilities Palo Alto Networks has released hotfixes to address a major security flaw affecting PAN-OS software that has been actively exploited in the wild. Classified as CVE-2024-3400…
Category: Cyber Security
China-Linked LightSpy iOS Spyware Targets South Asian iPhone Users
April 15, 2024PressroomSpyware/Mobile Security Cybersecurity researchers have uncovered a “revamped” cyber espionage campaign targeting South Asian users with the aim of delivering an Apple iOS spyware implant called LightSpy. “The…
US Treasury Hamas Spokesperson for Cyber Influence Operations
April 13, 2024PressroomCyber Influence/War The US Treasury Department’s Office of Foreign Assets Control (OFAC) on Friday announced sanctions against an official associated with Hamas for his involvement in cyber influence…
Former security engineer sentenced to 3 years for $12.3 million cryptocurrency exchange thefts
April 13, 2024PressroomCryptocurrency/Regulatory Compliance A former security engineer has been sentenced to three years in prison in the United States on charges related to the hacking of two decentralized cryptocurrency…
Hackers implement Python backdoor in Palo Alto zero-day attack
April 13, 2024Pressroom Threat actors exploited the recently discovered zero-day flaw in Palo Alto Networks’ PAN-OS software dating back to March 26, 2024, nearly three weeks before it came to…
CISA Issues Emergency Directive After Successful Microsoft Midnight Storm
On April 11, the Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive in response Midnight stormaka Cozy Bear, a Russian state-sponsored criminal group that has targeted Microsoft email…
New tool protects organizations from NXDOMAIN attacks
Attacks against the Domain Name System (DNS) are numerous and varied, so organizations must rely on multiple layers protective measures, such as traffic monitoring, threat intelligence and advanced network firewalls,…
CISA’s malware analysis platform could drive better Intel threat management
The US Cybersecurity and Infrastructure Security Agency (CISA) has provided organizations with a new resource to analyze suspicious and potentially malicious files, URLs and IP addresses by making its Malware…
AI supply chain; AI security platforms; Computer awareness
Welcome to CISO Corner, the weekly collection of Dark Reading articles designed specifically for readers and security leaders involved in security operations. Each week we offer articles collected from our…
The race for AI-powered security platforms heats up
When a major vulnerability rocks the cybersecurity world, like the recent XZ backdoor or the Log4J2 flaws of 2021, the first question most companies ask is, “Are we affected?” In…