News
-
"Russian Hackers Use PowerShell USB Malware to Drop Backdoors"The Russian state-sponsored hacking group Gamaredon, also known as Armageddon or Shuckworm, continues to target critical organizations in Ukraine's military and security intelligence sectors using updated tools and novel infection techniques. Previously…
-
"Cybercriminals Return to Business as Usual in a Post-pandemic World"According to Proofpoint, cybercriminals resumed normal operations in 2022 following two years of pandemic-induced disruption. As COVID-19 medical and economic programs began to slow down, attackers were forced to find new ways to make a living by…
-
"'Shampoo' ChromeLoader Variant Difficult to Wash Out"Fake websites promoting pirated video games, movies, and more are spreading a new variant of the ChromeLoader malware called "Shampoo." It steals sensitive information, redirects searches, and injects advertisements into browser sessions. Researchers…
-
"Detecting Deviators From the Norm - 'An Accurate Identification Method of Abnormal Users in Social Network Based on Multivariate Characteristics'"Research published in the International Journal of Web Based Communities introduces a new method for identifying abnormal users in social networks, which involves analyzing multiple user behavior characteristics. Using the APIs of different social…
-
"MSSQL Makes up 93% Of All Activity on Honeypots Tracking 10 Databases"Honeypots focused on tracking the activity on database servers in Russia, Ukraine, Poland, the UK, China, and the US revealed that Microsoft SQL (MSSQL) composed 93 percent of all attack activity. SpiderLabs of Trustwave noted in a blog post that its…
-
"Popular Email Provider Leaves Systems Wide Open"The popular disposable email provider Temp Mail left its systems publicly accessible for over three months, thus risking potential security breaches and widespread malware distribution. The Cybernews research team recently discovered a configuration…
-
"Spotify Fined $5 Million for Breaching EU Data Rules"Music streaming giant Spotify, was recently fined 58 million kronor ($5.4 million) for not properly informing users on how data it collected on them was being used, Swedish authorities said. Spotify said it planned to appeal the decision. The…
-
"SAP Patches High-Severity Vulnerabilities With June 2023 Security Updates"SAP on Tuesday announced the release of eight new security notes as part of its June 2023 Security Patch Day, including two notes that address high-severity vulnerabilities. Five other notes were updated. The most important of SAP’s new…
-
"Cyber Win: NSA Selects LSU to Build Cybersecurity Clinic to Support Small Businesses in Louisiana"The National Security Agency (NSA) has selected Louisiana State University (LSU) as the first university in the US to develop and pilot a cyber clinic to help protect small businesses, which are becoming increasingly frequent targets of cyberattacks. The…
-
"Hundreds of Thousands of eCommerce Sites Impacted by Critical Plugin Vulnerability"Security researchers at Patchstack discovered that hundreds of thousands of ecommerce websites could be exposed to attacks due to a critical vulnerability in the WooCommerce Stripe Payment Gateway plugin. Tracked as CVE-2023-34000, the issue is…
-
"US and International Partners Release Comprehensive Cyber Advisory on LockBit Ransomware""Understanding Ransomware Threat Actors: LockBit" is the title of a joint Cybersecurity Advisory (CSA) issued by the US Cybersecurity and Infrastructure Security Agency (CISA), FBI, Multi-State Information Sharing and Analysis Center (MS-ISAC), and the…
-
"DDoS Threats and Defense: How Certain Assumptions Can Lead to an Attack"There is a common misconception that a website with low traffic or that does not offer transaction-intensive online commerce does not need to prepare for Distributed Denial-of-Service (DDoS) attacks because it is not an attractive target. According to…