Playbook: Your First 100 Days as a vCISO – 5 Steps to Success
In an increasingly digital world, no organization is spared from cyber threats. Yet, not every organization has the luxury of...
Month: December 2023
SpyLoan Scandal: 18 Malicious Loan Apps Defraud Millions of Android Users
Cybersecurity researchers have discovered 18 malicious loan apps for Android on the Google Play Store that have been collectively downloaded...
Police Arrest Hundreds of Human Traffickers Linked to Cyber Fraud
Interpol has repeated warnings that human traffickers are fueling an online fraud epidemic in South East Asia and beyond, after...
Two-Fifths of Log4j Apps Use Vulnerable Versions
Organizations are still exposed to critical vulnerabilities in Log4j, two years after a maximum severity bug was found in the...
ALPHV/BlackCat Site Downed After Suspected Police Action
One of the most prolific ransomware-as-a-service (RaaS) groups operating today has suffered online disruption which intelligence experts have attributed to...
Lazarus Group Targets Log4Shell Flaw Via Telegram Bots
The threat actor known as Lazarus Group has been observed targeting the Log4Shell vulnerability (CVE-2021-44228) in a new series of...
Europol Raises Alarm on Criminal Misuse of Bluetooth Trackers
Europol has issued a new warning regarding an emerging trend in organized crime involving the use of Bluetooth trackers. Originally designed...
EU Reaches Agreement on AI Act Amid Three-Day Negotiations
The EU reached a provisional deal on the AI Act on December 8, 2023, following record-breaking 36-hour-long ‘trilogue’ negotiations between...
InflateVids – 13,405 breached accounts
HIBP In December 2023, the inflatable and balloon fetish videos website InflateVids suffered a data breach. The incident exposed over...
New 5G Modem Flaws Affect iOS Devices and Android Models from Major Brands
A collection of security flaws in the firmware implementation of 5G mobile network modems from major chipset vendors such as...
SpyLoan Scandal: 18 Malicious Loan Apps Defraud Millions of Android Users
Cybersecurity researchers have discovered 18 malicious loan apps for Android on the Google Play Store that have been collectively downloaded...
Lazarus Group Using Log4j Exploits to Deploy Remote Access Trojans
The notorious North Korea-linked threat actor known as the Lazarus Group has been attributed to a new global campaign that...
Playbook: Your First 100 Days as a vCISO – 5 Steps to Success
In an increasingly digital world, no organization is spared from cyber threats. Yet, not every organization has the luxury of...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Joint Guide for Software Manufacturers: The Case for Memory Safe Roadmaps
CISA Releases Joint Guide for Software Manufacturers: The Case for Memory Safe Roadmaps Today, as part of the Secure by...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Advisory on Threat Actors Exploiting CVE-2023-26360 Vulnerability in Adobe ColdFusion
CISA Releases Advisory on Threat Actors Exploiting CVE-2023-26360 Vulnerability in Adobe ColdFusion Today, CISA released a Cybersecurity Advisory (CSA), Threat...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on December 5, 2023. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA and International Partners Release Advisory on Russia-based Threat Actor Group, Star Blizzard
CISA and International Partners Release Advisory on Russia-based Threat Actor Group, Star Blizzard Today, the Cybersecurity and Infrastructure Security Agency...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Atlassian Releases Security Advisories for Multiple Products
Atlassian Releases Security Advisories for Multiple Products Atlassian has released security updates to address vulnerabilities affecting multiple Atlassian products. A...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on December 7, 2023. These...
US-CERT Vulnerability Summary for the Week of December 4, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
