New BLUFFS attack lets attackers hijack Bluetooth connections
Researchers at Eurecom have developed six new attacks collectively named 'BLUFFS' that can break the secrecy of Bluetooth sessions, allowing...
News
Hackers start exploiting critical ownCloud flaw, patch now
Hackers are exploiting a critical ownCloud vulnerability tracked as CVE-2023-49103 that exposes admin passwords, mail server credentials, and license keys...
Google Chrome emergency update fixes 6th zero-day exploited in 2023
Google has fixed the sixth Chrome zero-day vulnerability this year in an emergency security update released today to counter ongoing...
KyberSwap Says Hackers Stole $55m in Crypto
Decentralized exchange KyberSwap has become the latest crypto firm to lose millions to digital thieves, after reporting a highly sophisticated...
General Electric Investigates Alleged DARPA Breach
A prolific threat actor has been spotted on the dark web selling what they claim to be sensitive information stolen...
SysJoker Malware: Hamas-Related Threat Expands With Rust Variant
The SysJoker malware has been linked to targeted attacks by a Hamas-affiliated threat actor during the Israel-Hamas conflict. The unattributed multi-platform...
UK Publishes First Guidelines on Safe AI Development
The UK’s National Cyber Security Centre (NCSC) has published what it claims to be the world’s first globally agreed guidelines...
Americans Receive Two Billion Spam Calls Per Month
US consumers were deluged with an estimated two billion spam and scam calls last month, according to new data from...
CISA Warns Congress on Chemical Industry Terror Attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) has urged Congress to reauthorize a critically important program designed to protect...
Ukraine Police Dismantle Major Ransomware Group
Police in Ukraine have arrested five individuals including the suspected ringleader of a prolific ransomware affiliate believed to have made...
Cybersecurity Incident Hits Fidelity National Financial
Fidelity National Financial (FNF) has disclosed a cybersecurity incident that prompted the company to take down certain systems.The company made...
Cybercriminals Hesitant About Using Generative AI
Cybercriminals are so far reluctant to use generative AI to launch attacks, according to new research by Sophos.Examining four prominent...
Deepfake Digital Identity Fraud Surges Tenfold, Sumsub Report Finds
Threat actors undertaking identity fraud have been using deepfakes ten times more in 2023 than in 2022, according to digital...
Undetected Android Trojan Expands Attack on Iranian Banks
Security researchers have uncovered the continuation and expansion of an Android mobile banking Trojan campaign targeting major Iranian banks. Initially discovered...
Ardent Health Services Grapples With Ransomware Disruption
Ardent Health Services and its affiliated entities discovered a cybersecurity incident on the morning of November 23 2023, confirming it to...
N. Korean Hackers ‘Mixing’ macOS Malware Tactics to Evade Detection
The North Korean threat actors behind macOS malware strains such as RustBucket and KANDYKORN have been observed "mixing and matching"...
Experts Uncover Passive Method to Extract Private RSA Keys from SSH Connections
A new study has demonstrated that it's possible for passive network attackers to obtain private RSA host keys from a...
How to Handle Retail SaaS Security on Cyber Monday
If forecasters are right, over the course of today, consumers will spend $13.7 billion. Just about every click, sale, and...
How Hackers Phish for Your Users’ Credentials and Sell Them
Account credentials, a popular initial access vector, have become a valuable commodity in cybercrime. As a result, a single set...
Stop Identity Attacks: Discover the Key to Early Threat Detection
Identity and Access Management (IAM) systems are a staple to ensure only authorized individuals or entities have access to specific...
Hackers Can Exploit ‘Forced Authentication’ to Steal Windows NTLM Tokens
Cybersecurity researchers have discovered a case of "forced authentication" that could be exploited to leak a Windows user's NT LAN...
Key Cybercriminals Behind Notorious Ransomware Families Arrested in Ukraine
A coordinated law enforcement operation has led to the arrest of key individuals in Ukraine who are alleged to be...
Transform Your Data Security Posture – Learn from SoFi’s DSPM Success
As cloud technology evolves, so does the challenge of securing sensitive data. In a world where data duplication and sprawl...
US-CERT Vulnerability Summary for the Week of November 20, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoadobe -- after_effectsAdobe After Effects version 24.0.2 (and earlier) and 23.6 (and...
