News
-
"Under the Promise of Early Success, CISA Expands its Beta Mobile App Vetting Service"Mobile devices are essential to day-to-day operations, and their increasing use in government provides more than convenience. However, this connectivity has also widened the threat landscape, leaving the government vulnerable to malicious apps that could…
-
"US Government Warns Organizations of LockBit 3.0 Ransomware Attacks"The Federal Bureau of Investigation (FBI), the Cybersecurity and Information Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) recently issued an alert on the LockBit 3.0 ransomware operation. Since…
-
"The Most Visited Websites in Spain Do Not Comply Correctly with Privacy Laws and Track Their Users"A small percentage of the 500 most visited websites in Spain comply with the General Data Protection Regulation (GDPR). This is one of the findings of a study conducted by researchers from the Universitat Oberta de Catalunya (UOC), the University of…
-
"DNS Data Shows One in 10 Organizations Have Malware Traffic on Their Networks"During every quarter last year, between 10% and 16% of organizations had DNS traffic originating on their networks towards command-and-control (C2) servers associated with known botnets and various other malware threats, according to a new report by…
-
"Smart City Tech Can Enhance Life with Data Privacy Protections"Smart city technologies offer to improve urban living by expanding residents' access to government services, while tackling various societal challenges, such as managing traffic congestion, lowering carbon emissions, improving public health outcomes, and…
-
"Russian Military Preparing New Destructive Attacks: Microsoft"According to Microsoft, Russia is readying another destructive cyber assault on Ukraine and could expand its targets to include organizations outside the country supplying Kyiv. Microsoft stated that Sandworm, a unit linked to the Russian military…
-
"Magniber Ransomware Group Exploiting Microsoft Zero-Day"A financially motivated hacking group exploited a now-patched zero-day Windows operating system vulnerability to distribute ransomware. The Google Threat Analysis Group linked the malicious campaign to the Magniber ransomware group, which began…
-
"Vishing Campaign Targets Social Security Administration"Security experts at Armorblox have warned of a new hybrid phishing campaign impersonating the Social Security Administration (SSA), which tries to trick recipients into calling a criminal call center. Armorblox claimed that it blocked the scam emails for…
-
"Samsung, Vivo, Google Phones Open to Remote Compromise without User Interaction"Vulnerabilities in Samsung's Exynos chipsets could allow attackers to remotely compromise some Samsung Galaxy, Vivo, and Google Pixel phones without user interaction. Google Project Zero researchers suspect that, with limited additional research and…
-
"Conti-Based Ransomware 'MeowCorp' Gets Free Decryptor"A free decryptor has been released for a modified variant of the Conti ransomware that could help hundreds of victims recover their files. The decryptor works on data encrypted with a strain of the ransomware that appeared after Conti's source code was…
-
"New GoLang-Based HinataBot Exploiting Router and Server Flaws for DDoS Attacks"HinataBot, a new GoLang-based botnet, has been found exploiting known vulnerabilities to compromise routers and servers and use them to launch Distributed Denial-of-Service (DDoS) attacks. Akamai stated that the malware binaries appear to have been named…
-
"BianLian Ransomware Pivots From Encryption to Pure Data-Theft Extortion"The BianLian ransomware group is expanding its operations and evolving as a business, compromising computers more quickly. According to researchers, in attacks that have claimed at least 116 victims, it is also abandoning encryption for pure data-theft…