News
-
"FBI & FCC Warn on 'Juice Jacking' at Public Chargers, but What's the Risk?"Government agencies warn that malware planted in public charging stations for phones and other electronic devices can infiltrate devices. The FBI Denver office advised the public on April 6 to avoid using free charging stations in airports, hotels, and…
-
"Security Analytics: Using SiLK and Mothra to Identify Data Exfiltration via the Domain Name Service"Various modern network threats involve the exfiltration of data through the misuse of network services. In order to detect such threats, analysts monitor data transfers out of the organization's network, specifically data transfers that occur via network…
-
"Russians Hijack Cameras in Ukraine Coffee Shops to Monitor Western Aid, Says Official"Rob Joyce, the Director of Cybersecurity at the National Security Agency (NSA), stated that Russian hackers had accessed private security cameras in Ukrainian coffee shops in order to gather information on passing aid convoys. The cybersecurity official…
-
"Vulnerable Cloud Attack Surface Grows Almost 600 Percent"JupiterOne, a company specializing in cyber asset visibility and management, has released a new report showing that the number of enterprise cyber assets has increased by 133 percent, from an average of 165,000 in 2022 to 393,419 in 2023. The report…
-
"DDoS Attacks Shifting to VPS Infrastructure for Increased Power"In the first quarter of 2023, hyper-volumetric Distributed Denial-of-Service (DDoS) attacks shifted from relying on compromised Internet of Things (IoT) devices to exploiting compromised Virtual Private Servers (VPS). Cloudflare, an Internet…
-
"HashiCorp Vault Vulnerability Could Lead To RCE, Patch Today!"Oxeye found a new security flaw, tracked as CVE-2023-0620, in the HashiCorp Vault Project, an identity-based secrets and encryption management system used to control access to Application Programming Interfaced (API) encryption keys, passwords, and…
-
"German Drug Development Company Says Cyberattack Causing Production Delays"Evotec is still recovering from a cyberattack that forced it to shut down its Information Technology (IT) systems. The cyberattack prompted the disconnection of their systems from the Internet to prevent data corruption or breaches. In a recent update,…
-
"Microsoft: NSO Group-Like 'QuaDream' Actor Selling Mobile Spyware to Governments"Microsoft has identified another Israel-based threat group that is similar to NSO Group. The newly identified group sells cyber espionage tools and services to international governments for monitoring and eavesdropping on individuals. Microsoft Threat…
-
"Hyundai Data Breach Exposes Owner Details in France and Italy"Hyundai has recently disclosed a data breach impacting Italian and French car owners and those who booked a test drive, warning that hackers gained access to personal data. HaveIBeenPwned said the incident has exposed: e-mail addresses, physical…
-
"Kodi Forum Breach: User Data, Encrypted Passwords Grabbed"The developers of Kodi, the widely used open-source media player app, have recently revealed a data breach of its user forum. The breach did not happen due to a vulnerability. Instead, an unknown attacker used the account of a legitimate but…
-
"Fortinet Patches Critical Vulnerability in Data Analytics Solution"Cybersecurity solutions provider Fortinet recently announced the release of security updates across multiple products, including patches for a critical vulnerability in FortiPresence. Offering analytics, heat maps, and reporting, FortiPresence is a…
-
"ACM Prize in Computing Recognizes Yael Tauman Kalai for Fundamental Contributions to Cryptography"Yael Tauman Kalai has been named the recipient of the 2022 ACM Prize in Computing by the Association for Computing Machinery (ACM) for advancements in verifiable delegation of computation and fundamental contributions to cryptography. Kalai's…