Misconfigured Kafdrop Instances Lead to Sensitive Data Exposure for Many Companies

A new report shows how cloud misconfiguration could lead to critical data exposure of an organization. Researchers revealed that misconfigured Kafdrop instances, Kafdrop being the Apache Kafkas’s management interface, led…

Ramping Up Malware Hunting with Heimdal™

In one of my previous articles, I discussed AI and its critical role in today’s – and tomorrow’s – world, particularly in terms of cybersecurity. I’m certain that AI (and…

New Ceeloader Malware Used By Russian-backed Advanced Persistent Threat (APT) Organization Nobelium

Nobelium is a Russian-backed advanced persistent threat (APT) organization that achieved attention towards the end of 2020 after breaching SolarWinds’ software development supply chain to obtain access to espionage targets,…

Just 3% of UK Firms Escaped a Supply Chain Breach in 2021

Just 3% of UK Firms Escaped a Supply Chain Breach in 2021 Some 97% of UK organizations suffered a supply chain breach over the past year, up from 82% in…

Ransomware Victims Pay $700K in Extra Extortion Fees

Ransomware Victims Pay $700K in Extra Extortion Fees A staggering 96% of ransomware victims that agree to their extorters’ demands are subsequently forced to pay additional fees amounting to hundreds…

Cuba Ransomware Obtained $44 Million in Ransom Payments

In a new flash alert, the FBI has warned about Cuba ransomware, a threat actor that as of early November 2021 impacted roughly 50 organizations in five critical infrastructure sectors…

UK’s Poor Cyber Risk Planning Could “Wreak Havoc”

UK’s Poor Cyber Risk Planning Could “Wreak Havoc” The UK’s long-term risk planning is under-powered and could expose the nation if it is struck by a serious cyber-threat, a new…

Hackers pretending to be Iranian govt use SMS messages to steal credit card info, create botnet

Security company Check Point Research has uncovered a hacking campaign that involves cyberattackers impersonating Iranian government bodies to infect the mobile devices of Iranian citizens through SMS messages.  The SMS…

Virtual Patching 101

Trend Micro – Trend Micro – Virtual Patching 101 Network Security Get the lowdown on virtual patching: a simplified, automated solution to shielding vulnerabilities from exploits. By: Trend Micro December…

Microsoft seizes domains used to attack 29 governments across Latin America, Caribbean, Europe

Microsoft has announced the seizure of dozens of domains used in attacks by the China-based APT group Nickel on governments and NGOs across Europe, the Americas and the Caribbean.  In…