News
-
"Cyber Criminals Using Quantum Builder Sold on Dark Web to Deliver Agent Tesla Malware"The Agent Tesla Remote Access Trojan (RAT) is being delivered using a recently discovered malware builder called Quantum Builder. When compared to previous campaigns, this one has more enhancements and a shift toward LNK (Windows shortcut) files,…
-
SoS Musings #65 - Open-Source Security: Repository TroublesSoS Musings #65 - Open-Source Security: Repository Troubles
-
Spotlight on Lablet Research #34 - Foundations of CPS ResilienceSpotlight on Lablet Research #34 - Foundations of CPS Resilience
-
Cybersecurity Snapshots #34 - Hive Ransomware GroupCybersecurity Snapshots #34 - Hive Ransomware Group
-
"Watchdog Identifies Multiple Security Deficiencies at VA Medical Center in Louisiana"An audit performed by the Department of Veterans Affairs' Office of Inspector General (OIG) discovered several flaws in the IT systems used by the Alexandria VA Medical Center in Pineville, Louisiana, including uninstalled security patches and outdated…
-
"DeFi Exchange dYdX npm User Account Gets Hacked"Several npm packages used by the popular Decentralized Finance (DeFi) exchange dYdX appear to have been hacked, as they were discovered containing illegal code that would launch information stealers when installed on a system. Maciej Mensfeld, the…
-
"Two Remote Code Execution Vulnerabilities Patched in WhatsApp"WhatsApp has recently patched two serious vulnerabilities that could be exploited for remote code execution. One of the flaws, tracked as CVE-2022-36934 and rated "critical," is an integer overflow issue that affects WhatsApp for Android prior to 2…
-
"Why Paying The Ransom Is Still The Most Common Response To A Ransomware Attack?"According to researchers at Databarracks, this year, 44% of the organizations who experienced a ransomware assault paid the demanded ransom. Almost a quarter (22%) used ransomware decryption software, while 34% restored data from backups. The…
-
"EU Cyber Resilience Act Primarily Aimed At Beefing Defenses of 'Smart' Connected Devices"Smart devices and other connected devices, which have long been the weakest link in networks, may soon be forced to strengthen their defenses by the EU Cyber Resilience Act. The proposed legislation would apply to all products with "digital elements" in…
-
"Researchers Disrupt Fraudulent Apps in Apple App Store and Google Play"Human Security Inc. researchers recently announced that they thwarted a sophisticated advertising fraud operation that distributed apps on both the Google Play Store and Apple App Store. The "Scylla" campaign involves using mobile applications that…
-
"Ukraine Predicts "Massive" Russian Cyber Assault"According to the Ukrainian Ministry of Defense’s Main Directorate of Intelligence, the Russian government is planning a major new cyberattack campaign on the critical infrastructure of Ukraine and its allies as winter approaches. It was noted that…