Uncategorized

Experts Detail New Zero-Click Windows Vulnerability for NTLM Credential Theft 10/05/2023 at 19:45 By Cybersecurity researchers have shared details about a now-patched security flaw in Windows MSHTML platform that could be abused to bypass integrity protections on targeted machines. The vulnerability, tracked as CVE-2023-29324 (CVSS score: 6.5), has been described as a security feature bypass. It was addressed by […]

React to this headline:

Sophisticated DownEx Malware Campaign Targeting Central Asian Governments 10/05/2023 at 17:22 By Government organizations in Central Asia are the target of a sophisticated espionage campaign that leverages a previously undocumented strain of malware dubbed DownEx. Bitdefender, in a report shared with The Hacker News, said the activity remains active, with evidence likely pointing to the involvement of Russia-based

React to this headline:

Why Honeytokens Are the Future of Intrusion Detection 10/05/2023 at 15:00 By A few weeks ago, the 32nd edition of RSA, one of the world’s largest cybersecurity conferences, wrapped up in San Francisco. Among the highlights, Kevin Mandia, CEO of Mandiant at Google Cloud, presented a retrospective on the state of cybersecurity. During his keynote, Mandia

React to this headline:

Mastermind Behind Twitter 2020 Hack Pleads Guilty and Faces up to 70 Years in Prison 10/05/2023 at 14:47 By A U.K. national has pleaded guilty in connection with the July 2020 Twitter attack affecting numerous high-profile accounts and defrauding other users of the platform. Joseph James O’Connor, who also went by the online alias PlugwalkJoe,

React to this headline:

U.S. Government Neutralizes Russia’s Most Sophisticated Snake Cyber Espionage Tool 10/05/2023 at 12:20 By The U.S. government on Tuesday announced the court-authorized disruption of a global network compromised by an advanced malware strain known as Snake wielded by Russia’s Federal Security Service (FSB). Snake, dubbed the “most sophisticated cyber espionage tool,” is the handiwork of a Russian

React to this headline:

Microsoft’s May Patch Tuesday Fixes 38 Flaws, Including Active Zero-Day Bug 10/05/2023 at 09:26 By Microsoft has rolled out Patch Tuesday updates for May 2023 to address 38 security flaws, including one zero-day bug that it said is being actively exploited in the wild. Trend Micro’s Zero Day Initiative (ZDI) said the volume is the lowest since August 2021,

React to this headline:

Dr. Victoria Ekhomu receives the 2023 Bill Zalud Memorial Award 10/05/2023 at 07:00 By Dr. (Amb.) Victoria Omonigho Ekhomu has been named the 2023 recipient of the Bill Zalud Memorial Award for Professional Excellence. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

U.S. Authorities Seize 13 Domains Offering Criminal DDoS-for-Hire Services 09/05/2023 at 21:49 By U.S. authorities have announced the seizure of 13 internet domains that offered DDoS-for-hire services to other criminal actors. The takedown is part of an ongoing international initiative dubbed Operation PowerOFF that’s aimed at dismantling criminal DDoS-for-hire infrastructures worldwide. The development comes almost five months

React to this headline:

White House announces plan to encourage safe AI use 09/05/2023 at 18:17 By The Biden-Harris Administration has announced plans to encourage safe artificial intelligence (AI) development to improve national security.  This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

FTC proposes ban to stop Meta from sharing data received from minors 09/05/2023 at 18:17 By The FTC proposed to change a 2020 privacy order with Meta after the FTC alleges that the company has failed to fully comply with the order. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View

React to this headline:

Mark Porter named Ohio Homeland Security Executive Director 09/05/2023 at 18:17 By Ohio Department of Public Safety Director Andy Wilson announced that Mark Porter has been named executive director of Ohio Homeland Security. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

A generative AI guidebook was released for CISOs 09/05/2023 at 18:17 By A guide for Chief Information Security Officers (CISOs) was released to manage risks associated with generative AI being used in the workplace. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

From DevOps to DevSecOps: Strengthen Product Security with Collaborative Tools 09/05/2023 at 18:17 By In the fast-paced cybersecurity landscape, product security takes center stage. DevSecOps swoops in, seamlessly merging security practices into DevOps, empowering teams to tackle challenges. Let’s dive into DevSecOps and explore how collaboration can give your team the edge to fight cyber

React to this headline:

Operation ChattyGoblin: Hackers Targeting Gambling Firms via Chat Apps 09/05/2023 at 18:17 By A gambling company in the Philippines was the target of a China-aligned threat actor as part of a campaign that has been ongoing since October 2021. Slovak cybersecurity firm ESET is tracking the series of attacks against Southeast Asian gambling companies under

React to this headline:

Researchers Uncover SideWinder’s Latest Server-Based Polymorphism Technique 09/05/2023 at 13:25 By The advanced persistent threat (APT) actor known as SideWinder has been accused of deploying a backdoor in attacks directed against Pakistan government organizations as part of a campaign that commenced in late November 2022. “In this campaign, the SideWinder advanced persistent threat (APT) group

React to this headline:

Microsoft Warns of State-Sponsored Attacks Exploiting Critical PaperCut Vulnerability 09/05/2023 at 13:14 By Iranian nation-state groups have now joined financially motivated actors in actively exploiting a critical flaw in PaperCut print management software, Microsoft said. The tech giant’s threat intelligence team said it observed both Mango Sandstorm (Mercury) and Mint Sandstorm (Phosphorus) weaponizing CVE-2023-27350 in

React to this headline:

New Ransomware Strain ‘CACTUS’ Exploits VPN Flaws to Infiltrate Networks 09/05/2023 at 10:17 By Cybersecurity researchers have shed light on a new ransomware strain called CACTUS that has been found to leverage known flaws in VPN appliances to obtain initial access to targeted networks. “Once inside the network, CACTUS actors attempt to enumerate local and

React to this headline:

Artificial intelligence bolsters public safety & security in smart cities 09/05/2023 at 08:13 By A growing number of cities and transit organizations are adopting AI-enhanced technologies to identify and respond to security risks more effectively. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

8 ways to optimize operations and support business continuity 09/05/2023 at 08:13 By There are numerous ways to optimize security operations, such as implementing technology, consolidating vendors or harnessing the power of automation. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

68% work in a centralized IT model 08/05/2023 at 21:05 By A recent report by Torii found that 99% of IT professionals say they’re fulfilled in their jobs despite increasing SaaS spend concerns. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline: