News
-
"Google Unearths Internet Explorer Zero-Day Exploited by North Korean Hackers"Google's Threat Analysis Group (TAG) discovered a zero-day exploit for an Internet Explorer (IE) vulnerability that was used to target South Korean users. TAG made the discovery in October 2022 and found malware in documents emailed to targets. The…
-
"Apple to Roll Out New Set of Cybersecurity Features for Users"Apple has announced plans for new cybersecurity features aimed at helping users protect their data more effectively from hacking. The first feature Apple will include in the update is Advanced Data Protection, which will be made available through iCloud…
-
"Investment Fraud Gang May Have Made $500m"Security researchers at Group-IB have uncovered a prolific investment fraud group that may have made half a billion dollars in profits over the past four years. Named “CryptosLabs” after a scam website template it used, the group’s fake investment…
-
"Hacker Fails for the Win"Douglas McKee, director of vulnerability research at Trellix, struggled to extract passwords from a medical patient-monitor device that he was probing for vulnerabilities. The GPU password-cracking tool he had used to lift the layers of credentials…
-
"Cybercriminals Are Scamming Each Other, Tipping off Law Enforcement"Cybercriminals are scamming each other and using arbitration to settle disputes about the scams. Sophos experts investigated two Russian-language cybercrime forums with Access-as-a-Service (AaaS) listings, as well as an English-language cybercrime forum…
-
"COVID-bit: New Covert Channel to Exfiltrate Data from Air-Gapped Computers"An unusual data exfiltration method uses a previously unknown covert channel to leak sensitive data from air-gapped systems. According to Dr. Mordechai Guri, the head of R&D in the Cyber Security Research Center at Ben Gurion University of the Negev…
-
"Hackers Use New Fantasy Data Wiper in Coordinated Supply Chain Attack"In supply chain attacks affecting organizations in Israel, Hong Kong, and South Africa, the Iranian Agrius Advanced Persistent Threat (APT) hacking group is employing a new 'Fantasy' data wiper. The campaign began in February and reached its peak in…
-
"LiDAR Sensors Have Fixable Security Vulnerability"A large blindspot in front of an approaching autonomous vehicle's LiDAR system can be created by shining expertly timed lasers. This attack can hide moving pedestrians and other obstacles. A group of researchers from the University of Florida, the…
-
"Cyberspace in Space: The Out-Of-This-World Challenges Ahead"Satellites and the space-based services they provide are critical to modern society, as they support telecommunications, the Global Positioning System (GPS), and accessible Internet connections for millions of people worldwide. In space, security is a…
-
"Cyberattacks Threaten Global Security"The US is engaged in a quiet but potentially devastating intelligence, cyber, and information war, with China, Russia, Iran, and North Korea posing the greatest threats to national security. That was the topic of a webinar hosted by Arizona State…
-
"A Faster Way to Preserve Privacy Online"Searching the Internet can expose information that a user would prefer to keep private. For example, when someone searches for medical symptoms online, they may be disclosing their health conditions to Google, an online medical database such as WebMD,…
-
"Fortinet Patches High-Severity Authentication Bypass Vulnerability in FortiOS"Cybersecurity solutions provider Fortinet recently announced patches for multiple vulnerabilities across its products, including a high-severity authentication bypass impacting FortiOS and FortiProxy. Tracked as CVE-2022-35843 (CVSS score of 7.7),…