News
-
"Computer Scientists Discover Vulnerabilities in a Popular Security Protocol"The Remote Authentication Dial-In User Service (RADIUS) protocol, a widely used security protocol dating back to the days of dial-up Internet, has been found to contain vulnerabilities that leave many networked devices exposed to an attack and en -
"Cybercriminals Exploit File Sharing Services to Advance Phishing Attacks"According to Abnormal Security, threat actors are using popular file-hosting or e-signature solutions to trick victims into revealing private information or downloading malware. -
"Complicated App Settings Are a Threat to User Privacy"Joseph K. Nwankpa, Miami University Associate Professor of Information Systems and Analytics, points out that default privacy settings are a potential risk to user privacy. -
"Novel Phishing Method Used in Android/iOS Financial Fraud Campaigns"Czech Republic, Hungary, and Georgia are facing financial fraud campaigns involving a recently discovered sophisticated mobile phishing technique. -
"Major Backdoor in Millions of RFID Cards Allows Instant Cloning"The French security company Quarkslab found a major backdoor in millions of contactless cards made by Shanghai Fudan Microelectronics Group, a leading Chinese chip manufacturer. -
"CISA Warns of Jenkins RCE Bug Exploited in Ransomware Attacks"The US Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Jenkins vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. The exploitation of this flaw enables Remote Code Execution (RCE). -
"Iranian Group TA453 Launches Phishing Attacks with BlackSmith"The Iranian-linked threat actor "TA453," also known as "Charming Kitten," has been using a PowerShell-based malware toolkit named "BlackSmith" in a sophisticated phishing attack. -
"US Intelligence Officials Say Iran is to Blame for Hacks Targeting Trump, Biden-Harris Campaigns"US intelligence officials are confident that Iran was behind hacks against the Trump and Biden-Harris presidential campaigns. Tehran is believed to be using the hacks to influence American politics and the election. -
"Ransomware Resilience Drives Down Cyber Insurance Claims"According to a new report by the UK backup solutions provider Databarracks, more organizations than ever before have subscribed to cyber insurance, but the number of claims is declining. -
"Critical Flaw in Donation Plugin Exposed 100,000 WordPress Sites to Takeover"According to the WordPress security company Defiant, the GiveWP WordPress plugin contains a critical vulnerability that enables Remote Code Execution (RCE) and arbitrary file deletion on over 100,000 websites. -
"Ransomware Victims Paid $460 Million in First Half of 2024"According to security researchers at Chainalysis, ransomware payments and stolen cryptocurrency have increased in the first half of 2024. -
"Cybercriminals Exploit Popular Software Searches to Spread FakeBat Malware"The Mandiant Managed Defense team has discovered an increase in malware infections caused by malvertising campaigns that distribute a loader named "FakeBat," also known as "EugenLoader" and "PaykLoader." The researchers consider these attacks "op