Uncategorized

New PowerExchange Backdoor Used in Iranian Cyber Attack on UAE Government

New PowerExchange Backdoor Used in Iranian Cyber Attack on UAE Government 25/05/2023 at 17:30 By An unnamed government entity associated with the United Arab Emirates (U.A.E.) was targeted by a likely Iranian threat actor to breach the victim’s Microsoft Exchange Server with a “simple yet effective” backdoor dubbed PowerExchange. According to a new report from Fortinet […]

New PowerExchange Backdoor Used in Iranian Cyber Attack on UAE Government Read More »

Trustwave DbProtect and MailMarshal Named Finalists for SC Media and SC Europe Awards

Trustwave DbProtect and MailMarshal Named Finalists for SC Media and SC Europe Awards 25/05/2023 at 16:18 By SC Media and SC Media Europe have named two of Trustwave’s premiere products, DbProtect and MailMarshal, as a finalist in several award categories the cybersecurity media outlet plans to announce this summer. This article is an excerpt from

Trustwave DbProtect and MailMarshal Named Finalists for SC Media and SC Europe Awards Read More »

Webinar with Guest Forrester: Browser Security New Approaches

Webinar with Guest Forrester: Browser Security New Approaches 25/05/2023 at 14:48 By In today’s digital landscape, browser security has become an increasingly pressing issue, making it essential for organizations to be aware of the latest threats to browser security. That’s why the Browser Security platform LayerX is hosting a webinar featuring guest speaker Paddy Harrington, a senior

Webinar with Guest Forrester: Browser Security New Approaches Read More »

Alert: Brazilian Hackers Targeting Users of Over 30 Portuguese Banks

Alert: Brazilian Hackers Targeting Users of Over 30 Portuguese Banks 25/05/2023 at 14:48 By A Brazilian threat actor is targeting Portuguese financial institutions with information-stealing malware as part of a long-running campaign that commenced in 2021. “The attackers can steal credentials and exfiltrate users’ data and personal information, which can be leveraged for malicious activities

Alert: Brazilian Hackers Targeting Users of Over 30 Portuguese Banks Read More »

Buhti Ransomware Gang Switches Tactics, Utilizes Leaked LockBit and Babuk Code

Buhti Ransomware Gang Switches Tactics, Utilizes Leaked LockBit and Babuk Code 25/05/2023 at 14:48 By The threat actors behind the nascent Buhti ransomware have eschewed their custom payload in favor of leaked LockBit and Babuk ransomware families to strike Windows and Linux systems. “While the group doesn’t develop its own ransomware, it does utilize what appears to

Buhti Ransomware Gang Switches Tactics, Utilizes Leaked LockBit and Babuk Code Read More »

China’s Stealthy Hackers Infiltrate U.S. and Guam Critical Infrastructure Undetected

China’s Stealthy Hackers Infiltrate U.S. and Guam Critical Infrastructure Undetected 25/05/2023 at 12:19 By A stealthy China-based group managed to establish a persistent foothold into critical infrastructure organizations in the U.S. and Guam without being detected, Microsoft and the “Five Eyes” nations said on Wednesday. The tech giant’s threat intelligence team is tracking the activity, which includes post-compromise credential

China’s Stealthy Hackers Infiltrate U.S. and Guam Critical Infrastructure Undetected Read More »

GUAC 0.1 Beta: Google’s Breakthrough Framework for Secure Software Supply Chains

GUAC 0.1 Beta: Google’s Breakthrough Framework for Secure Software Supply Chains 25/05/2023 at 09:59 By Google on Wednesday announced the 0.1 Beta version of GUAC (short for Graph for Understanding Artifact Composition) for organizations to secure their software supply chains. To that end, the search giant is making available the open source framework as an API for developers to integrate their

GUAC 0.1 Beta: Google’s Breakthrough Framework for Secure Software Supply Chains Read More »

Iranian Agrius Hackers Targeting Israeli Organizations with Moneybird Ransomware

Iranian Agrius Hackers Targeting Israeli Organizations with Moneybird Ransomware 25/05/2023 at 09:59 By The Iranian threat actor known as Agrius is leveraging a new ransomware strain called Moneybird in its attacks targeting Israeli organizations. Agrius, also known as Pink Sandstorm (formerly Americium), has a track record of staging destructive data-wiping attacks aimed at Israel under the guise of ransomware

Iranian Agrius Hackers Targeting Israeli Organizations with Moneybird Ransomware Read More »

Iranian Tortoiseshell Hackers Targeting Israeli Logistics Industry

Iranian Tortoiseshell Hackers Targeting Israeli Logistics Industry 24/05/2023 at 18:26 By At least eight websites associated with shipping, logistics, and financial services companies in Israel were targeted as part of a watering hole attack. Tel Aviv-based cybersecurity company ClearSky attributed the attacks with low confidence to an Iranian threat actor tracked as Tortoiseshell, which is also

Iranian Tortoiseshell Hackers Targeting Israeli Logistics Industry Read More »

Improving IT security through cross-department collaboration

Improving IT security through cross-department collaboration 24/05/2023 at 17:24 By By having developer and security teams work together at the start of a project, security measures can be integrated in real-time saving both teams time and frustration.  This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

Improving IT security through cross-department collaboration Read More »

Hear From Children’s National Hospital and Trustwave at Gartner Security & Risk Management 2023

Hear From Children’s National Hospital and Trustwave at Gartner Security & Risk Management 2023 24/05/2023 at 16:43 By If you’re heading to Gartner Security & Risk Management 2023 in National Harbor, MD, mark your calendar for a compelling session from Children’s National Hospital and Trustwave. This article is an excerpt from Trustwave Blog View Original

Hear From Children’s National Hospital and Trustwave at Gartner Security & Risk Management 2023 Read More »

Microsoft Encrypted Restricted Permission Messages Deliver Phishing

Microsoft Encrypted Restricted Permission Messages Deliver Phishing 24/05/2023 at 16:43 By Over the past few days, we have seen phishing attacks that use a combination of compromised Microsoft 365 accounts and .rpmsg encrypted emails to deliver the phishing message. This article is an excerpt from SpiderLabs Blog from Trustwave View Original Source

Microsoft Encrypted Restricted Permission Messages Deliver Phishing Read More »

Legion Malware Upgraded to Target SSH Servers and AWS Credentials

Legion Malware Upgraded to Target SSH Servers and AWS Credentials 24/05/2023 at 14:34 By An updated version of the commodity malware called Legion comes with expanded features to compromise SSH servers and Amazon Web Services (AWS) credentials associated with DynamoDB and CloudWatch. “This recent update demonstrates a widening of scope, with new capabilities such the

Legion Malware Upgraded to Target SSH Servers and AWS Credentials Read More »

Scroll to Top