2023

War of the workstations: How the lowest bidders shaped today’s tech landscape 2023-12-25 at 18:03 By Liam Proven The MIT and New Jersey schools of software design, and how big lies turned into holy truths Feature  Digging into stories of 1980s OSes, a forgotten war for the future of computing emerges. It was won by

How the tech toy century has troubled Santa’s sack 2023-12-25 at 12:03 By Rupert Goodwins Bell Labs made it bulge then Gordon Moore made it deflate Opinion  It is, as the more observant may have noticed, Christmas time again. In all decent households, this marks the traditional giving and receiving of tech toys, many millions

Cloud Atlas’ Spear-Phishing Attacks Target Russian Agro and Research Companies 2023-12-25 at 11:17 By The threat actor referred to as Cloud Atlas has been linked to a set of spear-phishing attacks on Russian enterprises. Targets included a Russian agro-industrial enterprise and a state-owned research company, according to a report from F.A.C.C.T., a standalone cybersecurity company formed after Group-IB’s formal

ESA’s Mars Express continues to avoid retirement home 2023-12-24 at 12:03 By Richard Speed Another chunk of science, another mission extension. But probe is running on fumes Space Extenders II  The Mars Express recorded the highest clouds ever seen above the surface of a planet, as well as water ice on Mars’ polar caps. And

British LAPSUS$ Teen Members Sentenced for High-Profile Attacks 2023-12-24 at 08:32 By Two British teens part of the LAPSUS$ cyber crime and extortion gang have been sentenced for their roles in orchestrating a string of high-profile attacks against a number of companies. Arion Kurtaj, an 18-year-old from Oxford, has been sentenced to an indefinite hospital

Iranian cyberspies target US defense orgs with a brand new backdoor 2023-12-23 at 15:03 By Jessica Lyons Hardcastle Also: International cops crackdown on credit card stealers and patch these critical vulns Iranian cyberspies are targeting defense industrial base organizations with a new backdoor called FalseFont, according to Microsoft.… This article is an excerpt from The

Windows 12: Savior of PC makers, or just an apology for Windows 11? 2023-12-23 at 12:03 By Richard Speed Looking into our crystal ball we can see the end of 2024 will be filled with … AI. So much AI Analysis  Microsoft is betting the farm on AI apathy not hitting before it makes a

Rogue WordPress Plugin Exposes E-Commerce Sites to Credit Card Theft 2023-12-22 at 19:46 By Threat hunters have discovered a rogue WordPress plugin that’s capable of creating bogus administrator users and injecting malicious JavaScript code to steal credit card information. The skimming activity is part of a Magecart campaign targeting e-commerce websites, according to Sucuri. “As with many

Cyber sleuths reveal how they infiltrate the biggest ransomware gangs 2023-12-22 at 18:04 By Connor Jones How do you break into the bad guys’ ranks? Master the lingo and research, research, research Feature  When AlphV/BlackCat’s website went dark this month, it was like Chrimbo came early for cybersecurity defenders, some of whom seemingly believed law

Enhancing retail security: Combatting insider theft 2023-12-22 at 16:32 By In the dynamic and ever-changing landscape of the retail sector, the imperative task of thwarting theft has undergone substantial transformations.  This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

5 retailer strategies to deter holiday smash and grabs 2023-12-22 at 16:32 By As retailers approach the final stretch of this shopping blitz, they must prepare to address heightened risks of ORC and smash-and-grab incidences. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

Operation RusticWeb: Rust-Based Malware Targets Indian Government Entities 2023-12-22 at 16:32 By Indian government entities and the defense sector have been targeted by a phishing campaign that’s engineered to drop Rust-based malware for intelligence gathering. The activity, first detected in October 2023, has been codenamed Operation RusticWeb by enterprise security firm SEQRITE. “New Rust-based payloads and encrypted

Hunting for Android Privilege Escalation with a 32 Line Fuzzer 22/12/2023 at 16:02 By Maksymilian Motyl Trustwave SpiderLabs tested a couple of Android OS-based mobile devices to conduct the research on privilege escalation scenarios. Specifically, we wanted to show a straightforward process attackers may use to exploit vulnerabilities in an Android device’s system services and

Decoy Microsoft Word Documents Used to Deliver Nim-Based Malware 22/12/2023 at 16:01 By A new phishing campaign is leveraging decoy Microsoft Word documents as bait to deliver a backdoor written in the Nim programming language. “Malware written in uncommon programming languages puts the security community at a disadvantage as researchers and reverse engineers’ unfamiliarity can hamper