NCSC Startup Program Seeking Candidates to Help Protect Critical Infrastructure
Successful applicants will work with experts from within the NCSC to develop, adapt or pilot technology Read More: https://www.infosecurity-magazine.com/news/ncsc-startup-candidates-critical/
Hackers Change Tactics for New Post-Macro Era
Microsoft announcement forced threat actors to adapt once againRead More: https://www.infosecurity-magazine.com/news/hackers-change-tactics-for-new/
Operational Threat Intelligence – A Crucial Tool For Cyber Resilience
Cyber Security is paramount in modern business as attacks are constantly evolving and finding new ways to exploit vulnerabilities. To help combat these cyber threats, organizations and security professionals must
Social Media Accounts Hijacked to Post Indecent Images
UK police urge users to switch on two-factor authenticationRead More: https://www.infosecurity-magazine.com/news/social-media-accounts-hijacked/
European Police Arrest 100 Suspects in BEC Crackdown
Invoice fraud ring targeted state-owned organizationsRead More: https://www.infosecurity-magazine.com/news/european-police-100-suspects-bec/
Google once again delays phasing out third-party cookies
Google is once again delaying the phaseout of third-party cookies in Chrome. The browser will now fully support the tracking technology until the second half of 2024, Google said on
With $11.5M In Funding, Naoris Protocol Will Use Blockchain & Decentralization To Plug Web3 Security Gaps
By creating a decentralized network of trusted devices that are incentivized to continuously validate each other to ensure no weak points, Naoris Protocol is on a mission to reinvent cybersecurity
House Intel Chairman vows to put 'greater emphasis' on fighting spyware
Written by Suzanne Smalley Jul 27, 2022 | CYBERSCOOP The powerful chairman of the House Intelligence Committee said Wednesday that he will fight foreign commercial surveillance with greater urgency, calling
Cyber-Criminal Offers 5.4m Twitter Users’ Data
The seller advertised the data on the Breached Forums site and demanded at least $30,000 for itRead More: https://www.infosecurity-magazine.com/news/criminal-twitter-users-data/
Messaging Apps Tapped as Platform for Cybercriminal Activity
Built-in Telegram and Discord services are fertile ground for storing stolen data, hosting malware and using bots for nefarious purposes. Cybercriminals are tapping the built-in services of popular messaging apps
Vulnerability Spotlight: How a code re-use issue led to vulnerabilities across multiple products
By Francesco Benvenuto. Recently, I was performing some research on a wireless router and noticed the following piece of code: This unescape function will revert the URL encoded bytes to
Senators Introduce Quantum Encryption Preparedness Law
Lawmakers introduced the bill because they’re worried about the potential for quantum computers to easily crack current cryptographic algorithmsRead More: https://www.infosecurity-magazine.com/news/senators-quantum-encryption-law/
Arts Organizations’ Email Lists Compromised by Ransomware Attack
The Smithsonian Institution in the US, the Toronto Symphony Orchestra in Canada, the Courtauld Institute of Art in London, and WordFly, a mailing list supplier for prominent arts organizations, all had
Criminals Use Malware as Messaging Bots to Steal Data
Cyber-criminals are using the Telegram and Discord messaging apps as command and control mechanismsRead More: https://www.infosecurity-magazine.com/news/criminals-malware-messaging-bots/
Heimdal™ Threat Hunting Journal July 2022 Edition
Heimdal™ returns with another incisive, mind-bending edition of our celebrated threat hunting journal. What does the month of July have in stock for us? As one would expect, even more
Nerbian RAT Using COVID-19 templates
A new remote access trojan (RAT) has been observed with notably sophisticated evasive capabilities. Nerbian RAT has been spreading in Italy, Spain, and the UK by taking advantage of Covid19
FIN7 Threat Actors Add Ransomware to Their Arsenal
Security Intelligence – FIN7 Threat Actors Add Ransomware to Their Arsenal Home / News FIN7 Threat Actors Add Ransomware to Their Arsenal Share FIN7, one of the most prolific cyber criminal
What Talos Incident Response learned from a recent Qakbot attack hijacking old email threads
By Nate Pors and Terryn Valikodath. Executive summary In a recent malspam campaign delivering the Qakbot banking trojan, Cisco Talos Incident Response (CTIR) observed the adversary using aggregated, old email threads
Race against time: Hackers start hunting for victims just 15 minutes after a bug is disclosed
Image: Sergey Nivens/Shutterstock Attackers are becoming faster at exploiting previously undisclosed zero-day flaws, according to Palo Alto Networks. The company warns in its 2022 report covering 600 incident response (IR)
These ransomware hackers gave up when they hit multi-factor authentication
Image: Getty A ransomware attack was prevented just because the intended victim was using multi-factor authentication (MFA) and the attackers decided it wasn’t worth the effort to attempt to bypass it. It’s
Microsoft warns of stealthy backdoors used to target Exchange Servers, email
Image: Getty/10’000 Hours There’s been an uptick in malware native to Microsoft’s Internet Information Services (IIS) web server that is being used to install backdoors or steal credentials and is
Fallout from massive Shanghai Police data breach reverberates on dark web
Written by AJ Vicens Jul 27, 2022 | CYBERSCOOP The availability of supposedly hacked Chinese data on the dark web appears to have surged in recent weeks on the heels
US Doubles Reward for Info on North Korean Hackers
State Department hopes financial inducement will unmask threat actors Read More: https://www.infosecurity-magazine.com/news/us-doubles-reward-info-north/
No More Ransom Has Helped Over 1.5m Victims
European initiative celebrates sixth birthday Read More: https://www.infosecurity-magazine.com/news/no-more-ransom-has-helped-over-15m/
Data breach costs record $4.3M with firms passing buck to customers
The average cost of a data security breach has hit another record-high of $4.35 million per incident, growing 12.7% over the past two years. And some businesses are passing the
Data Breach Costs Reach New Record High
Most impacted companies raise product prices following incidentRead More: https://www.infosecurity-magazine.com/news/data-breach-costs-reach-new-record/
Ways Hackers Can Steal Information from Your Device
The advent of the digital age is a source of blessing in a way that makes life easier yet, it comes with some challenges including malicious hackers and cyber attacks.
Gootkit Loader’s Updated Tactics and Fileless Delivery of Cobalt Strike
Trend Micro – Gootkit Loader’s Updated Tactics and Fileless Delivery of Cobalt Strike Cyber Threats Gootkit has been known to use fileless techniques to drop Cobalt Strike and other malicious
Ducktail Malware Exploits LinkedIn to Hack Facebook Business Accounts
Ducktail malware targets users and organizations on Facebook Business and Ads platform in this financially motivated malicious new campaign. WithSecure (previously F-Secure) researchers have revealed details of a new spear
Critical Vulnerabilities Exposed Nuki Smart Locks to a Plethora of Attack Options
Researchers have identified as many as eleven critical vulnerabilities in different versions of Nuki Smart Locks. The IT security researchers at Manchester, England-based NCC Group have released a technical advisory
Novel Malware Hijacks Facebook Business Accounts
Newly discovered malware linked to Vietnamese threat actors targets users through a LinkedIn phishing campaign to steal data and admin privileges for financial gain. A new malware is hijacking high-profile
Phishers Targeted Financial Services Most During H1 2022
The report found Microsoft was the most impersonated brand overallRead More: https://www.infosecurity-magazine.com/news/phishers-financial-services-h1-2022/
Poor Training and Communications Hindering Cybersecurity Efforts
Over a third (36%) of employees consider security training boringRead More: https://www.infosecurity-magazine.com/news/training-comms-cybersecurity/
No More Ransom – Six Years of Innovating to Fight Ransomware Together
When talking about cybercrime, you can’t avoid the topic of ransomware. It is one of the few cybersecurity challenges discussed not only in the cybersecurity and tech communities, but also
DHS plans to overhaul disinformation efforts to 'increase trust with the public'
Written by Suzanne Smalley Jul 26, 2022 | CYBERSCOOP When the Department of Homeland Security’s Advisory Council announces it plan next week for overhauling how the agency combats the spread
Uber Settles 2016 Hacking Case With DoJ
The ride-sharing giant has agreed to help the DoJ prosecute its former chief security officer in exchange for escaping prosecution itselfRead More: https://www.infosecurity-magazine.com/news/uber-hacking-case-doj/
Quarterly Report: Incident Response Trends in Q2 2022
Commodity malware usage surpasses ransomware by narrow margin By Caitlin Huey.For the first time in more than a year, ransomware was not the top threat Cisco Talos Incident Response (CTIR)
Is it Possible to Grow a Business and Raise a Family? Yes, Say Women-Led MSPs
Balancing the demands of a growing business and a growing family have become a common challenge for tech business owners and their employees over the last couple of years. Sacrificing
I need a new iPhone. Is last year's model good enough? [Ask ZDNet]
For iPhone owners, this is always a tricky question. It’s always worth checking the incentives offered by your carrier, which might end up making the cost of one model significantly
Popular evasion techniques in the malware landscape
Cybercriminals are constantly developing new ways to make themselves invisible to threat detection. Using some evasion techniques, criminals can hide malicious indicators during the malware analysis and software monitoring, both
Phishing Attacks Skyrocket with Microsoft and Facebook as Most Abused Brands
Instances of phishing attacks leveraging the Microsoft brand increased 266 percent in Q1 compared to the year prior. The bloom is back on phishing attacks with criminals doubling down on
FileWave MDM Vulnerabilities Leave 1000+ Organizations Exposed to Remote Cyberattacks
Claroty cyber-researchers have recently published their findings in the case of the FileWave MDM product. According to the outline of their research, the mobile device management (MDM) service developed and
IoT Botnets Fuels DDoS Attacks – Are You Prepared?
The increased proliferation of IoT devices paved the way for the rise of IoT botnets that amplifies DDoS attacks today. This is a dangerous warning that the possibility of a
Tech media giants pledge to maintain online safety in NZ pact
Five technology giants including Twitter and Facebook have pledged to self-regulate and adhere to a new voluntary code of practice in New Zealand that aims to curb harmful online content.
Ransomware: 1.5 million people have got their files back without paying the gangs. Here's how
Image: Getty The battle against ransomware is challenging because not only are ransomware attacks extremely disruptive, but in many cases, victims opt to pay the ransom demand for a decryption
Global Malware Volumes Increase for First Time in Three Years
Ransomware dips worldwide but surges in EuropeRead More: https://www.infosecurity-magazine.com/news/global-malware-increase-first-time/
Lockbit Ramps Up Attacks on Public Sector
Ransomware gang hits Canadian town and Italian governmentRead More: https://www.infosecurity-magazine.com/news/lockbit-ramps-up-attacks-on-public/
T-Mobile to Pay $350m Settlement in Breach Case
Tens of millions were impacted by 2021 incidentRead More: https://www.infosecurity-magazine.com/news/tmobile-pay-350m-settlement-breach/