CISA: New Whirlpool backdoor used in Barracuda ESG hacks
Image: Midjourney The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has discovered a new backdoor malware named 'Whirlpool' used in...
Year: 2023
Safeguarding Against Silent Cyber Threats: Exploring the Stealer Log Lifecycle
The first seven months of 2023 have seen a continued rapid evolution of the cybercrime ecosystem. Ransomware data exfiltration attacks,...
MoustachedBouncer hackers use AiTM attacks to spy on diplomats
Image: Midjourney A cyberespionage group named 'MoustachedBouncer' has been observed using adversary-in-the-middle (AitM) attacks at ISPs to hack foreign embassies...
Dell Compellent hardcoded key exposes VMware vCenter admin creds
An unfixed hardcoded encryption key flaw in Dell's Compellent Integration Tools for VMware (CITV) allows attackers to decrypt stored vCenter...
Gafgyt malware exploits five-years-old flaw in EoL Zyxel router
Fortinet has issued an alert warning that the Gafgyt botnet malware is actively trying to exploit a vulnerability in the...
EvilProxy Campaign Fires Out 120,000 Phishing Emails
Researchers have warned of a new multi-factor authentication (MFA) phishing campaign targeting thousands of users, including a large share of...
Fresh Blow to PSNI Security as Second Data Breach Disclosed
A further breach of personal data of serving officers from the Police Service of Northern Ireland (PSNI) was confirmed on...
Regulator: “Harmful” Web Design Could Break Data Protection Laws
The Information Commissioner’s Office (ICO) has warned UK companies that it will take enforcement action against those that use website...
NIST Expands Cybersecurity Framework with New Pillar
The US National Institute of Standards and Technology (NIST) has released a new draft version of its popular best practice...
#BHUSA: ESET Unmasks Cyber-Espionage Group Targeting Embassies in Belarus
In a revelation made during Black Hat USA, cybersecurity provider ESET unveiled the discovery of a novel threat actor engaged...
#BHUSA: DARPA Challenges AI Pros to Safeguard US Infrastructure
“I’m going to do something I’ve never done before.” Those were Jeff Moss’s words during his August 9 opening speech...
Potent Trojans Targeting MacOS Users
Threat actors are becoming more efficient at targeting Mac users through MacOS tailored malware, according to Bitdefender’s macOS Threat Landscape...
#BHUSA: Only 22% of Firms Have Mature Threat Intelligence Programs
Only 22% of organizations have achieved a fully matured threat intelligence program, revealed a new report by cybersecurity solutions provider...
#BHUSA: US National Security Agency Announces Codebreaker Challenge Theme
US coastguards discovered an unknown signal 30 miles outside the continental United States. The US National Security Agency (NSA) is...
APT31 Linked to Recent Industrial Attacks in Eastern Europe
The threat actor APT31 (AKA Judgment Panda and Zirconium) has been linked to recent industrial attacks in eastern Europe, according...
New York Introduces First-Ever Statewide Cybersecurity Strategy
Governor Kathy Hochul has introduced New York's first-ever statewide cybersecurity strategy, reinforced by a $600m commitment. The strategy emerges as a...
#BHUSA: White House, DARPA and CISA Ask for Help in Securing Open Source Software
“When I worked on a report from the US Cyber Safety Review Board about the Log4j vulnerability, I was stunned...
Rightbiz – 65,376 breached accounts
HIBP In June 2023, data belonging to the "UK's No.1 Business Marketplace" Rightbiz appeared on a popular hacking forum. Comprising...
CISA: CISA Releases its Cybersecurity Strategic Plan
CISA Releases its Cybersecurity Strategic Plan Today, CISA released a strategic plan to lay out how we will fulfill our...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on August 3, 2023. These...
CISA: Microsoft Releases August 2023 Security Updates
Microsoft Releases August 2023 Security Updates Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can...
CISA: CISA, NSA, FBI, and International Partners Release Joint CSA on Top Routinely Exploited Vulnerabilities of 2022
CISA, NSA, FBI, and International Partners Release Joint CSA on Top Routinely Exploited Vulnerabilities of 2022 The U.S. Cybersecurity and...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...
CISA: Fortinet Releases Security Update for FortiOS
Fortinet Releases Security Update for FortiOS Fortinet has released a security update to address a vulnerability (CVE-2023-29182) affecting FortiOS. A...
