October, 2024 - Security Ticks

ESET denies it was compromised as Israeli orgs targeted with ‘ESET-branded’ wipers

ESET denies it was compromised as Israeli orgs targeted with ‘ESET-branded’ wipers 2024-10-18 at 14:04 By Connor Jones Says ‘limited’ incident isolated to ‘partner company’ ESET denies being compromised after an infosec researcher highlighted a wiper campaign that appeared to victims as if it was launched using the Slovak security shop’s infrastructure.… This article is […]

React to this headline:

ESET denies it was compromised as Israeli orgs targeted with ‘ESET-branded’ wipers Read More »

Beware: Fake Google Meet Pages Deliver Infostealers in Ongoing ClickFix Campaign

Uncategorized / SecurityTicks

Beware: Fake Google Meet Pages Deliver Infostealers in Ongoing ClickFix Campaign 2024-10-18 at 14:03 By Threat actors are leveraging fake Google Meet web pages as part of an ongoing malware campaign dubbed ClickFix to deliver infostealers targeting Windows and macOS systems. “This tactic involves displaying fake error messages in web browsers to deceive users into

React to this headline:

Beware: Fake Google Meet Pages Deliver Infostealers in Ongoing ClickFix Campaign Read More »

Israeli orgs targeted with wiper malware via ESET-branded emails

ESET, Hot stuff, Israel, Malware, News, phishing / SecurityTicks

Israeli orgs targeted with wiper malware via ESET-branded emails 2024-10-18 at 13:32 By Zeljka Zorz Attackers have tried to deliver wiper malware to employees at organizations across Israel by impersonating cybersecurity company ESET via email. The phishing email The attack took the form of a phishing email ostensibly sent by the “Eset Advanced Threat Defense

React to this headline:

Israeli orgs targeted with wiper malware via ESET-branded emails Read More »

Someone’s finally taking on £10M Hull City Council ERP deal to replace Oracle

Uncategorized / SecurityTicks

Someone’s finally taking on £10M Hull City Council ERP deal to replace Oracle 2024-10-18 at 12:48 By Lindsay Clark Step forward Workday after mega long procurement to support system that went live 22 years ago More than two and a half years after it began talking to vendors, a city council in northern England has

React to this headline:

Someone’s finally taking on £10M Hull City Council ERP deal to replace Oracle Read More »

Vietnamese Threat Actor’s Multi-Layered Strategy on Digital Marketing Professionals

cybercrime, Malware / SecurityTicks

Vietnamese Threat Actor’s Multi-Layered Strategy on Digital Marketing Professionals 2024-10-18 at 12:48 By rohansinhacyblecom Key takeaways Overview Cyble Research and Intelligence Lab (CRIL) has uncovered an advanced attack campaign that likely originates from spam emails containing phishing attachments. These emails include an archive file with an LNK file disguised as a PDF file. The attack

React to this headline:

Vietnamese Threat Actor’s Multi-Layered Strategy on Digital Marketing Professionals Read More »

Arrested: USDoD, Anonymous Sudan, SEC X account hacker

account hijacking, arrest, cybercriminals, data breach, DDoS, Hot stuff, News, USA / SecurityTicks

Arrested: USDoD, Anonymous Sudan, SEC X account hacker 2024-10-18 at 12:22 By Zeljka Zorz Law enforcement agencies have arrested suspects involved in cyber attacks claimed by USDoD and Anonymous Sudan, as well as a person involved in the hacking of SEC’s X (Twitter) account. USDoD On Wednesday, the Brazilian federal police (Policia Federal) arrested a

React to this headline:

Arrested: USDoD, Anonymous Sudan, SEC X account hacker Read More »

HashiCorp unveils ‘Terraform 2.0’ while tiptoeing around Big Blue elephant in the room

Uncategorized / SecurityTicks

HashiCorp unveils ‘Terraform 2.0’ while tiptoeing around Big Blue elephant in the room 2024-10-18 at 11:56 By Richard Speed HashiConf shindig oddly reluctant to mention impending IBM acquisition HashiCorp’s annual HashiConf shindig wrapped up in Boston with a Big Blue elephant in the room and a hissed instruction: “Don’t mention IBM!”… This article is an

React to this headline:

HashiCorp unveils ‘Terraform 2.0’ while tiptoeing around Big Blue elephant in the room Read More »

IT Vulnerability Weekly Report: Cyble Urges Fixes for Fortinet, Palo Alto & More

All / SecurityTicks

IT Vulnerability Weekly Report: Cyble Urges Fixes for Fortinet, Palo Alto & More 2024-10-18 at 11:41 By daksh sharma IT products from Fortinet, Palo Alto Networks, GitLab, Microsoft, Ivanti, Veeam and Zimbra are at high risk of attack and should be patched now. The post IT Vulnerability Weekly Report: Cyble Urges Fixes for Fortinet, Palo

React to this headline:

IT Vulnerability Weekly Report: Cyble Urges Fixes for Fortinet, Palo Alto & More Read More »

CyCognito expands automated testing capabilities

CyCognito, Industry news / SecurityTicks

CyCognito expands automated testing capabilities 2024-10-18 at 11:01 By Industry News CyCognito announced several enhancements to its CyCognito Automated Security Testing (AST) product, a module in the CyCognito platform built for automated exposure validation and security testing. These additions speed the configuration of automated testing for AWS cloud environments, provide enhanced data exposure detection and augment

React to this headline:

CyCognito expands automated testing capabilities Read More »

Server-maker Wiwynn expands $61 million lawsuit against X

Uncategorized / SecurityTicks

Server-maker Wiwynn expands $61 million lawsuit against X 2024-10-18 at 09:32 By Simon Sharwood Finds two more reasons Musk should have known he was on the hook for datacenter kit Taiwanese contract manufacturer Wiwynn has added two more counts to its complaint against Elon Musk’s social network X, alleging hasn’t paid for hardware it had

React to this headline:

Server-maker Wiwynn expands $61 million lawsuit against X Read More »

Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser

Uncategorized / SecurityTicks

Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser 2024-10-18 at 09:31 By Microsoft has disclosed details about a now-patched security flaw in Apple’s Transparency, Consent, and Control (TCC) framework in macOS that has likely come under exploitation to get around a user’s privacy preferences and access data. The shortcoming, codenamed HM Surf

React to this headline:

Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser Read More »

Intel robustly refutes China’s accusations it bakes in NSA backdoors

Uncategorized / SecurityTicks

Intel robustly refutes China’s accusations it bakes in NSA backdoors 2024-10-18 at 08:47 By Laura Dobberstein Chipzilla uses WeChat post to defend record of following local laws Intel has roundly rebutted Chinese accusations that its chips include security backdoors at the direction of the US National Security Agency (NSA).… This article is an excerpt from

React to this headline:

Intel robustly refutes China’s accusations it bakes in NSA backdoors Read More »

Biz hired, and fired, a fake North Korean IT worker – then the ransom demands began

Uncategorized / SecurityTicks

Biz hired, and fired, a fake North Korean IT worker – then the ransom demands began 2024-10-18 at 07:46 By Jessica Lyons ‘My webcam isn’t working today’ is the new ‘The dog ate my network’ It’s a pattern cropping up more and more frequently: a company fills an IT contractor post, not realizing it’s mistakenly

React to this headline:

Biz hired, and fired, a fake North Korean IT worker – then the ransom demands began Read More »

Despite massive security spending, 44% of CISOs fail to detect breaches

CISO, cybersecurity, Gigamon, News, report, survey / SecurityTicks

Despite massive security spending, 44% of CISOs fail to detect breaches 2024-10-18 at 07:31 By Help Net Security Despite global information security spending projected to reach $215 billion in 2024, 44% of CISOs surveyed reported they were unable to detect a data breach in the last 12 months using existing security tools, according to Gigamon.

React to this headline:

Despite massive security spending, 44% of CISOs fail to detect breaches Read More »

5 reasons why healthcare organizations need a SIEM tool

Uncategorized / SecurityTicks

5 reasons why healthcare organizations need a SIEM tool 2024-10-18 at 07:17 By For healthcare organizations, where breaches can have severe consequences, robust cybersecurity practices are critical. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

5 reasons why healthcare organizations need a SIEM tool Read More »

What to do if your iPhone or Android smartphone gets stolen?

Android, cybercrime, cybersecurity, iPhone, mobile security, News, theft, tips / SecurityTicks

What to do if your iPhone or Android smartphone gets stolen? 2024-10-18 at 07:01 By Help Net Security A lost, stolen, or compromised smartphone today means we are in serious trouble. Most people have everything related to their personal and professional lives stored on their phones, a fact that criminals are well aware of. Cybersecurity

React to this headline:

What to do if your iPhone or Android smartphone gets stolen? Read More »

Someone’s tried sneaking semiconductor secrets out of South Korea’s patent office

Uncategorized / SecurityTicks

Someone’s tried sneaking semiconductor secrets out of South Korea’s patent office 2024-10-18 at 06:31 By Laura Dobberstein Government hardens up infosec to stop this – as you would when Samsung and SK hynix are massive parts of your economy South Korea announced new measures on Thursday to prevent future leaks of technology from its patent

React to this headline:

Someone’s tried sneaking semiconductor secrets out of South Korea’s patent office Read More »

Cybercrime’s constant rise is becoming everyone’s problem

Avast, Bitdefender, Bolster, cybercrime, cybersecurity, Expel, Gen, HackerOne, Video / SecurityTicks

Cybercrime’s constant rise is becoming everyone’s problem 2024-10-18 at 06:31 By Help Net Security Cybercrime in recent years shows no signs of slowing down, with phishing attacks surging and ransomware tactics becoming more advanced, forcing organizations to constantly adapt their defenses. The rise of deepfake technology, especially in creating realistic audio impersonations, poses new dangers.

React to this headline:

Cybercrime’s constant rise is becoming everyone’s problem Read More »

New infosec products of the week: October 18, 2024

ExtraHop, GitGuardian, Nametag, News, Okta, Rubrik, Sectigo / SecurityTicks

New infosec products of the week: October 18, 2024 2024-10-18 at 06:01 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from ExtraHop, GitGuardian, Nametag, Okta, Rubrik, and Sectigo. GitGuardian Visual Studio Code extension helps developers protect their sensitive information GitGuardian’s new Visual Studio Code extension

React to this headline:

New infosec products of the week: October 18, 2024 Read More »

Healthcare Services Group discloses ‘cybersecurity incident’ in SEC filing

Uncategorized / SecurityTicks

Healthcare Services Group discloses ‘cybersecurity incident’ in SEC filing 2024-10-18 at 05:46 By Connor Jones Laundry and dining provider still investigating cause and scope Healthcare Services Group (HSG) has disclosed “unauthorized activity within some of its systems” in a Securities and Exchange Commission (SEC) filing.… This article is an excerpt from The Register View Original

React to this headline:

Healthcare Services Group discloses ‘cybersecurity incident’ in SEC filing Read More »

October 2024