Unprepared for Post-Quantum Threat: Why Organizations Must Act Now
Organizations are lagging in their preparedness for the post-quantum threat, highlighted by a recent report from the Entrust Cybersecurity Institute....
News
Clawback Service Launched by Insurer to Recover BEC Losses
A new clawback service by a leading insurer aims to tackle business email compromise (BEC) scams that have led to...
200+ Malicious Apps on Google Play: Eight Million Users at Risk from Malware
In a shocking revelation, security researchers have found that over eight million users may have unknowingly installed over 200 malicious...
Free Cybersecurity Services for Schools: NCSC’s Initiative to Enhance Safety
Educational organizations across the UK can now access invaluable free cybersecurity services offered by the National Cyber Security Centre (NCSC)....
Increased Darknet Activity Threatens 2024 Presidential Election Security
As the 2024 US Presidential election approaches, a rise in darknet activity poses significant cybersecurity threats, including phishing and ransomware....
Chinese Quantum Hack Claims: Experts Urge Caution and Context
In recent days, alarming reports suggested that Chinese researchers have cracked military-grade encryption using quantum computing, but security experts urge...
AI Safety Scheme: UK Government Tackles Deepfakes and Misinformation
The UK government has introduced an innovative AI safety research program aimed at enhancing resilience against deepfakes and other AI-driven...
ConfusedPilot Attack: A New Threat to AI Systems with Data Poisoning
The ConfusedPilot attack method poses a significant threat to AI systems like Microsoft 365 Copilot by utilizing data poisoning techniques....
Starbucks Phishing Scam Alert: Coffee Lovers Targeted by Fraudulent Emails
Attention, coffee lovers! A new phishing scam is on the rise, disguising itself as enticing Starbucks offers to deceive unsuspecting...
CISA’s New Guidance on Software Supply Chain Transparency: Key Improvements
CISA's latest publication emphasizes the need for enhanced software supply chain transparency, focusing on the crucial role of Software Bill...
AI Tools Revolutionize Ethical Hacking in Response to Growing Cyber Threats
A recent report reveals a notable shift among ethical hackers towards embracing AI tools as cyber threats rise significantly. A...
FIDO Alliance Proposes New Passkey Exchange Standard to Enhance Security
FIDO Alliance is advancing online security with a new passkey exchange standard that promises to revolutionize how credentials are managed...
Cyber Threats Escalate: NCSC Head Dr. Richard Horne Calls for Global Action
As cyber threats escalate, Dr. Richard Horne, the new head of the UK's National Cyber Security Centre, emphasizes the urgent...
Hackers Abuse EDRSilencer Tool to Bypass Security and Hide Malicious Activity
Threat actors are attempting to abuse the open-source EDRSilencer tool as part of efforts to tamper endpoint detection and response...
FIDO Alliance Drafts New Protocol to Simplify Passkey Transfers Across Different Platforms
The FIDO Alliance said it's working to make passkeys and other credentials more easier to export across different providers and...
From Misuse to Abuse: AI Risks and Attacks
AI from the attacker's perspective: See how cybercriminals are leveraging AI and exploiting its vulnerabilities to compromise systems, users, and...
North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware
The North Korean threat actor known as ScarCruft has been linked to the zero-day exploitation of a now-patched security flaw...
Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack
A new spear-phishing campaign targeting Brazil has been found delivering a banking malware called Astaroth (aka Guildma) by making use...
5 Techniques for Collecting Cyber Threat Intelligence
To defend your organization against cyber threats, you need a clear picture of the current threat landscape. This means constantly...
GitHub Patches Critical Flaw in Enterprise Server Allowing Unauthorized Instance Access
GitHub has released security updates for Enterprise Server (GHES) to address multiple issues, including a critical bug that could allow...
CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw impacting SolarWinds Web Help Desk...
US-CERT Vulnerability Summary for the Week of October 7, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
TrickMo Banking Trojan Can Now Capture Android PINs and Unlock Patterns
New variants of an Android banking trojan called TrickMo have been found to harbor previously undocumented features to steal a...
New Malware Campaign Uses PureCrypter Loader to Deliver DarkVision RAT
Cybersecurity researchers have disclosed a new malware campaign that leverages a malware loader named PureCrypter to deliver a commodity remote...
