January 2024

Nation-State Actors Weaponize Ivanti VPN Zero-Days, Deploying 5 Malware Families 2024-01-12 at 16:17 By As many as five different malware families were deployed by suspected nation-state actors as part of post-exploitation activities leveraging two zero-day vulnerabilities in Ivanti Connect Secure (ICS) VPN appliances since early December 2023. “These families allow the threat actors to circumvent authentication and […]

React to this headline:

Medusa Ransomware on the Rise: From Data Leaks to Multi-Extortion 2024-01-12 at 16:17 By The threat actors associated with the Medusa ransomware have ramped up their activities following the debut of a dedicated data leak site on the dark web in February 2023 to publish sensitive data of victims who are unwilling to agree to their demands.

React to this headline:

Microsoft suggests command line fiddling to get faulty Windows 10 update installed 2024-01-12 at 16:03 By Richard Speed Unhelpful error codes, complex fixes … When did Windows turn into Linux? Microsoft sent yet another problematic patch into the wild this week in the form of KB5034441. However, rather than deal with a BitLocker vulnerability, the

React to this headline:

Disparate systems: The importance of closing the gap 2024-01-12 at 16:03 By Are you getting the most out of your security system? This is a question that many security leaders should be asking themselves and their employees. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this

React to this headline:

So, are we going to talk about how GitHub is an absolute boon for malware, or nah? 2024-01-12 at 15:17 By Thomas Claburn Microsoft says it’s doing its best to crack down on crims The popularity of Github has made it too big to block, which is a boon to dissidents ducking government censors but

React to this headline:

It’s uncertain where personal technology is heading, but judging from CES, it smells 2024-01-12 at 14:32 By Mark Pesce Our vulture spent a week in Las Vegas for CES 2024 – here are his key takeaways Column  Every January in Las Vegas a few hundred thousand folks gather to learn about the latest innovations from

React to this headline:

Applying the Tyson Principle to Cybersecurity: Why Attack Simulation is Key to Avoiding a KO 2024-01-12 at 14:31 By Picture a cybersecurity landscape where defenses are impenetrable, and threats are nothing more than mere disturbances deflected by a strong shield. Sadly, this image of fortitude remains a pipe dream despite its comforting nature. In the

React to this headline:

Data regulator fines HelloFresh £140k for sending 80M+ spams 2024-01-12 at 13:31 By Paul Kunert Messaging menace used text and email to bombard people Food delivery company HelloFresh is nursing a £140,000 ($178k) fine by Britain’s data privacy watchdog after a probe found it had dispatched upwards of a staggering 79 million spam email and

React to this headline:

Cryptominers Targeting Misconfigured Apache Hadoop and Flink with Rootkit in New Attacks 2024-01-12 at 10:16 By Cybersecurity researchers have identified a new attack that exploits misconfigurations in Apache Hadoop and Flink to deploy cryptocurrency miners within targeted environments. “This attack is particularly intriguing due to the attacker’s use of packers and rootkits to conceal the

React to this headline:

Drivers: We’ll take that plain dumb car over a flashy data-spilling internet one, thanks 2024-01-12 at 09:31 By Jessica Lyons Hardcastle Now that’s a smart move CES  Despite all the buzz around internet-connected smart cars at this year’s CES in Las Vegas, most folks don’t want vehicle manufacturers sharing their personal data with third parties

React to this headline: