Latest News from THREAT POST
- Student Loan Breach Exposes 2.5M Records2.5 million people were affected, in a breach that could spell more trouble down the line.
- Watering Hole Attacks Push ScanBox KeyloggerResearchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool.
- Tentacles of ‘0ktapus’ Threat Group Victimize 130 FirmsOver 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.
Latest News from KREBSONSECURITY
- Microsoft: Two New 0-Day Flaws in Exchange ServerMicrosoft Corp. is investigating reports that attackers are exploiting two previously unknown vulnerabilities in Exchange Server, a technology many organizations rely on to send and receive email. Microsoft says it is expediting work on software patches to plug the security holes. In the meantime, it is urging a subset of Exchange customers to enable a […]
- Fake CISO Profiles on LinkedIn Target Fortune 500sSomeone has recently created a large number of fake LinkedIn profiles for Chief Information Security Officer (CISO) roles at some of the world’s largest corporations. It’s not clear who’s behind this network of fake CISOs or what their intentions may be. But the fabricated LinkedIn identities are confusing search engine results for CISO roles at […]
Latest News from DARK READING
- Ikea Smart Light System Flaw Lets Attackers Turn Bulbs on Full BlastWith just one malformed Zigbee frame, attackers could take over certain Ikea smart lightbulbs, leaving users unable to turn the lights down.
- CISA: Multiple APT Groups Infiltrate Defense OrganizationAdvanced attackers gained access to Microsoft Exchange services, conducted searches of email, and used an open source toolkit to collect data from the network for nearly a year.
- Secure Your Application Layer, Secure Your BusinessUsers and malicious actors interact with your business through the application layer. Build trust in your software by securing this first line of defense.
Latest News from SECURITY BOULEVARD
- BSidesLV 2022 Lucky13 GroundFloor – Uriel Kosayev’s ‘Malware Analysis – Red Team Edition’Our sincere thanks to BSidesLV for publishing their outstanding conference videos on the organization's YouTube channel. Permalink The post BSidesLV 2022 Lucky13 GroundFloor – Uriel Kosayev’s ‘Malware Analysis – Red Team Edition’ appeared first on Security Boulevard.
- Frontline Cyber Threat Monitoring™ DatasheetCommunity Healthcare Provider Gains Added PHI Security, Improved Vulnerability Management on a Limited Budget. The post Frontline Cyber Threat Monitoring™ Datasheet appeared first on Digital Defense. The post Frontline Cyber Threat Monitoring™ Datasheet appeared first on Security Boulevard.
- XKCD ‘Wing Lift’via the comic artistry and dry wit of Randall Munroe, resident at XKCD! Permalink The post XKCD ‘Wing Lift’ appeared first on Security Boulevard.
Latest News from NAKED SECURITY
- NetWalker ransomware affiliate sentenced to 20 years by Florida courtJudge tells the accused that if he hadn't pleaded guilty, "I would have given you life."
- Romance scammer and BEC fraudster sent to prison for 25 yearsTwo years of scamming + $10 million leeched = 25 years in prison. Just in time for #Cybermonth.
- Scammers and rogue callers – can anything ever stop them?Some thoughts for Cybersecurity Awareness Month: Is is worth reporting nuisance calls? Is it even worth reporting outright scams?
