News
-
"NSA Highlights Mitigations against North Korean Actor Email Policy Exploitation"The National Security Agency (NSA), together with the Federal Bureau of Investigation (FBI) and the US Department of State, released a Cybersecurity Advisory (CSA) titled "North Korean Actors Exploit Weak DMARC Security Policies to Mask Spearphis
-
"Android Flaw Affected Apps With 4 Billion Installs"Microsoft researchers found a vulnerability pattern dubbed "Dirty Stream" in popular Android apps, putting billions of users at risk.
-
"New 'Goldoon' Botnet Targets D-Link Routers With Decade-Old Flaw"A new botnet called "Goldoon" targets D-Link routers by exploiting a nearly decade-old critical security flaw to launch more attacks.
-
"Microsoft Graph API Emerges as a Top Attacker Tool to Plot Data Theft"There has been a rise in the use of native Microsoft services by nation-state espionage actors for their Command-and-Control (C2) needs.
-
"Continuum Reveals Hack Exposed 377K Consensus Medical Group Patients"Continuum, a health management and patient care coordination company, said attackers stole personal and medical data. According to Continuum's report to the Maine Attorney General, over 377,000 people were exposed in the attack.
-
"LockBit Publishes Confidential Data Stolen From Cannes Hospital in France"The LockBit Ransomware-as-a-Service (RaaS) gang released confidential data it claims to be from a hospital in Cannes, France.
-
"1,400 GitLab Servers Impacted by Exploited Vulnerability"The US Cybersecurity and Infrastructure Security Agency (CISA) warns that a critical vulnerability in GitLab's email verification process is being exploited for password hijacking.
-
"REvil Hacker Behind Kaseya Ransomware Attack Gets 13 Years in Prison"Ukrainian national Yaroslav Vasinskyi was sentenced to 13 years and seven months in prison and ordered to pay $16 million in restitution for his REvil ransomware involvement.
-
"AI-Driven Phishing Attacks Deceive Even the Most Aware Users"Zscaler reports a rise in deepfake phishing and vishing attacks as generative Artificial Intelligence (AI) enhances social engineering. AI-driven phishing attacks use AI tools to improve campaign sophistication and effectiveness.
-
"Hackers Target New NATO Member Sweden with Surge of DDoS Attacks"According to network performance management provider Netscout, Sweden has faced a wave of distributed denial of service (DDoS) attacks since it started the process of joining NATO.
-
"LockBit, Black Basta, Play Dominate Ransomware in Q1 2024"According to security researchers at ReliaQuest, LockBit, Black Basta, and Play have been the most active ransomware groups in Q1 2024, with Black Basta experiencing a notable 41% increase in activity.
-
"Security Breach Exposes Dropbox Sign Users"Dropbox has recently disclosed a significant breach in its systems, exposing customers’ data to unauthorized entities.