June 2023

New Botnet Malware ‘Horabot’ Targets Spanish-Speaking Users in Latin America

Uncategorized /

New Botnet Malware ‘Horabot’ Targets Spanish-Speaking Users in Latin America 02/06/2023 at 16:53 By Spanish-speaking users in Latin America have been at the receiving end of a new botnet malware dubbed Horabot since at least November 2020. “Horabot enables the threat actor to control the victim’s Outlook mailbox, exfiltrate contacts’ email addresses, and send phishing emails with […]

React to this headline:

Loading spinner

New Botnet Malware ‘Horabot’ Targets Spanish-Speaking Users in Latin America Read More »

Google triples reward for Chrome full chain exploits

bug bounty, Chrome, Don't miss, exploit, Google, Hot stuff, News, sandbox /

Google triples reward for Chrome full chain exploits 02/06/2023 at 15:57 By Helga Labus Google has tripled the full reward amount for the first security bug report that includes a functional full chain exploit of its popular Chrome browser. Six months of higher rewards for a Chrome full chain exploit The Chrome Vulnerability Rewards Program,

React to this headline:

Loading spinner

Google triples reward for Chrome full chain exploits Read More »

OffSec expands Global Partner Program to empower and support partner organizations

Industry news, OffSec /

OffSec expands Global Partner Program to empower and support partner organizations 02/06/2023 at 15:20 By Industry News OffSec launched a newly expanded OffSec Global Partner Program. With cyber threats becoming increasingly sophisticated, organizations are seeking reliable partners to address the ever-growing demand for skilled cybersecurity professionals. In response to this market need, OffSec’s new program

React to this headline:

Loading spinner

OffSec expands Global Partner Program to empower and support partner organizations Read More »

Galvanick raises $10 million for its industrial cybersecurity platform

Galvanick, Industry news /

Galvanick raises $10 million for its industrial cybersecurity platform 02/06/2023 at 15:20 By Industry News Galvanick announced its $10 million seed round. Major investors included MaC Venture Capital, Founders Fund, Village Global, Countdown Capital, Hanover Technology Investment Management, Shrug Capital, 8090 Industries, and over 25 angel investors specializing in cybersecurity, manufacturing, finance, and defense. Galvanick

React to this headline:

Loading spinner

Galvanick raises $10 million for its industrial cybersecurity platform Read More »

The Importance of Managing Your Data Security Posture

Uncategorized /

The Importance of Managing Your Data Security Posture 02/06/2023 at 15:20 By Data security is reinventing itself. As new data security posture management solutions come to market, organizations are increasingly recognizing the opportunity to provide evidence-based security that proves how their data is being protected. But what exactly is data security posture, and how do

React to this headline:

Loading spinner

The Importance of Managing Your Data Security Posture Read More »

Enzo Biochem Ransomware Attack Exposes Information of 2.5M Individuals

data breach, Data Breaches, Ransomware /

Enzo Biochem Ransomware Attack Exposes Information of 2.5M Individuals 02/06/2023 at 13:40 By Ionut Arghire Enzo Biochem says the clinical test information of roughly 2.47 million individuals was exposed in a recent ransomware attack. The post Enzo Biochem Ransomware Attack Exposes Information of 2.5M Individuals appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Enzo Biochem Ransomware Attack Exposes Information of 2.5M Individuals Read More »

Apple Denies Helping US Government Hack Russian iPhones

apple, Government, Mobile & Wireless, Russia /

Apple Denies Helping US Government Hack Russian iPhones 02/06/2023 at 13:40 By Eduard Kovacs Apple has denied working with any government to add backdoors to its products after Russia accused the company of helping the NSA hack iPhones. The post Apple Denies Helping US Government Hack Russian iPhones appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Apple Denies Helping US Government Hack Russian iPhones Read More »

Camaro Dragon Strikes with New TinyNote Backdoor for Intelligence Gathering

Uncategorized /

Camaro Dragon Strikes with New TinyNote Backdoor for Intelligence Gathering 02/06/2023 at 13:18 By The Chinese nation-stage group known as Camaro Dragon has been linked to yet another backdoor that’s designed to meet its intelligence-gathering goals. Israeli cybersecurity firm Check Point, which dubbed the Go-based malware TinyNote, said it functions as a first-stage payload capable of “basic machine enumeration

React to this headline:

Loading spinner

Camaro Dragon Strikes with New TinyNote Backdoor for Intelligence Gathering Read More »

MOVEit Transfer zero-day attacks: The latest info

0-day, attack, data theft, Don't miss, enterprise, file-sharing, Hot stuff, Huntress, News, Progress, Rapid7, TrustedSec, vulnerability /

MOVEit Transfer zero-day attacks: The latest info 02/06/2023 at 12:41 By Zeljka Zorz There’s new information about the zero-day vulnerability in Progress Software’s MOVEit Transfer solution exploited by attackers and – more importantly – patches and helpful instructions for customers. The MOVEit Transfer zero-day and updated mitigation and remediation advice Progress Software has updated the

React to this headline:

Loading spinner

MOVEit Transfer zero-day attacks: The latest info Read More »

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations

Featured, MOVEit, Vulnerabilities, Zero-Day /

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations 02/06/2023 at 12:41 By Eduard Kovacs A zero-day vulnerability in Progress Software’s MOVEit Transfer product has been exploited to hack organizations and steal their data. The post Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations appeared first on SecurityWeek.

React to this headline:

Loading spinner

Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations Read More »

Qakbot: The trojan that just won’t go away

Don't miss, Hot stuff, Lumen, Malware, Microsoft, News, phishing, Ransomware, trojan, Windows /

Qakbot: The trojan that just won’t go away 02/06/2023 at 11:33 By Helga Labus Qakbot (aka Qbot) – banking malware-turned-malware/ransomware distribution network – has been first observed in 2007 and is active to this day. The neverending adaptability of this threat is key to its long-term survival and success. “Qakbot operators tend to reduce or

React to this headline:

Loading spinner

Qakbot: The trojan that just won’t go away Read More »

North Korea’s Kimsuky Group Mimics Key Figures in Targeted Cyber Attacks

Uncategorized /

North Korea’s Kimsuky Group Mimics Key Figures in Targeted Cyber Attacks 02/06/2023 at 09:45 By U.S. and South Korean intelligence agencies have issued a new alert warning of North Korean cyber actors’ use of social engineering tactics to strike think tanks, academia, and news media sectors. The “sustained information gathering efforts” have been attributed to

React to this headline:

Loading spinner

North Korea’s Kimsuky Group Mimics Key Figures in Targeted Cyber Attacks Read More »

New infosec products of the week: June 2, 2023

Bitdefender, ConnectSecure, Cytracom, News, Permit.io, PingSafe /

New infosec products of the week: June 2, 2023 02/06/2023 at 08:05 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from Bitdefender, ConnectSecure, CYTRACOM, Permit.io, and PingSafe. Permit.io launches FoAz to give frontend developers the keys to security Short for frontend-only authorization, FoAz is a

React to this headline:

Loading spinner

New infosec products of the week: June 2, 2023 Read More »

How defense contractors can move from cybersecurity to cyber resilience

attacks, Compliance, Conquest Cyber, cybercrime, cybersecurity, Don't miss, Expert analysis, Expert corner, Government, News, opinion, strategy /

How defense contractors can move from cybersecurity to cyber resilience 02/06/2023 at 07:42 By Help Net Security As the world’s most powerful military and economic power, the United States also holds another, less impressive distinction: Cyber threat actors target the US more than any other country in the world. In 2022 alone, the FBI received

React to this headline:

Loading spinner

How defense contractors can move from cybersecurity to cyber resilience Read More »

Introducing the book: Cybersecurity First Principles

books, cybersecurity, Don't miss, Hot stuff, how-to, strategy, tips, Video /

Introducing the book: Cybersecurity First Principles 02/06/2023 at 07:42 By Mirko Zorz In this Help Net Security video interview, Rick Howard, CSO of N2K, Chief Analyst, and Senior Fellow at the Cyberwire, discusses his book – Cybersecurity First Principles: A Reboot of Strategy and Tactics. In the book, Howard challenges the conventional wisdom of current

React to this headline:

Loading spinner

Introducing the book: Cybersecurity First Principles Read More »

Google Temporarily Offering $180,000 for Full Chain Chrome Exploit

Vulnerabilities /

Google Temporarily Offering $180,000 for Full Chain Chrome Exploit 02/06/2023 at 07:42 By Ionut Arghire Google is offering a bug bounty reward of up to $180,000 for a full chain exploit leading to a sandbox escape in the Chrome browser. The post Google Temporarily Offering $180,000 for Full Chain Chrome Exploit appeared first on SecurityWeek.

React to this headline:

Loading spinner

Google Temporarily Offering $180,000 for Full Chain Chrome Exploit Read More »

MOVEit Transfer Under Attack: Zero-Day Vulnerability Actively Being Exploited

Uncategorized /

MOVEit Transfer Under Attack: Zero-Day Vulnerability Actively Being Exploited 02/06/2023 at 06:51 By A critical flaw in Progress Software’s in MOVEit Transfer managed file transfer application has come under widespread exploitation in the wild to take over vulnerable systems. The shortcoming, which is yet to be assigned a CVE identifier, relates to a severe SQL

React to this headline:

Loading spinner

MOVEit Transfer Under Attack: Zero-Day Vulnerability Actively Being Exploited Read More »

Cybercriminals use legitimate websites to obfuscate malicious payloads

cybercrime, Egress, email security, Malware, News, phishing, report, scams, social engineering, threat, threats /

Cybercriminals use legitimate websites to obfuscate malicious payloads 02/06/2023 at 06:33 By Help Net Security According to Egress, the evolving attack methodologies currently used by cybercriminals are designed to get through traditional perimeter security. “The evolution of phishing emails continues to pose a major threat to organizations, emphasizing the need to enhance defenses to prevent

React to this headline:

Loading spinner

Cybercriminals use legitimate websites to obfuscate malicious payloads Read More »

Despite cutbacks, IT salaries expected to rise

Artificial Intelligence, ChatGPT, digital transformation, InformationWeek, money, News /

Despite cutbacks, IT salaries expected to rise 02/06/2023 at 06:01 By Help Net Security Despite rising labor costs, economic inflation, and companies making an effort to cut back, the salary outlook for IT professionals is positive, according to InformationWeek. Work-life balance and base pay top the list as what matters most to IT professionals regarding

React to this headline:

Loading spinner

Despite cutbacks, IT salaries expected to rise Read More »

Generative AI: What Every CISO Needs to Know

Trend Micro CISO : Article, Trend Micro CISO : Cloud, Trend Micro CISO : Detection and Response, Trend Micro CISO : Expert Perspective, Trend Micro CISO : Risk Management /

Generative AI: What Every CISO Needs to Know 01/06/2023 at 23:19 By New technologies always change the security landscape, but few are likely to have the transformative power of generative AI. As platforms like ChatGPT continue to catch on, CISOs need to understand the unprecedented cybersecurity risks they bring—and what to do about them. This

React to this headline:

Loading spinner

Generative AI: What Every CISO Needs to Know Read More »

Scroll to Top