SecuriDropper: New Android Dropper-as-a-Service Bypasses Google’s Defenses
Cybersecurity researchers have shed light on a new dropper-as-a-service (DaaS) for Android called SecuriDropper that bypasses new security restrictions imposed...
News
Google Warns How Hackers Could Abuse Calendar Service as a Covert C2 Channel
Google is warning of multiple threat actors sharing a public proof-of-concept (PoC) exploit that leverages its Calendar service to host...
Google Play Store Highlights ‘Independent Security Review’ Badge for VPN Apps
Google is rolling out a new banner to highlight the "Independent security review" badge in the Play Store's Data safety...
U.S. Treasury Sanctions Russian Money Launderer in Cybercrime Crackdown
The U.S. Department of the Treasury imposed sanctions against a Russian woman for taking part in the laundering of virtual...
Socks5Systemz proxy service infects 10,000 systems worldwide
A proxy botnet called 'Socks5Systemz' has been infecting computers worldwide via the 'PrivateLoader' and 'Amadey' malware loaders, currently counting 10,000...
US-CERT Vulnerability Summary for the Week of October 23, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info projectworlds_pvt._limited -- online_art_gallery Online Art Gallery v1.0 is vulnerable to multiple...
Discord will switch to temporary file links to block malware delivery
Discord will switch to temporary file links for all users by the end of the year to block attackers from...
US-CERT Vulnerability Summary for the Week of October 23, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info projectworlds_pvt._limited -- online_art_gallery Online Art Gallery v1.0 is vulnerable to multiple...
StripedFly Malware Operated Unnoticed for 5 Years, Infecting 1 Million Devices
An advanced strain of malware masquerading as a cryptocurrency miner has managed to fly the radar for over five years,...
Google Play Store Introduces ‘Independent Security Review’ Badge for Apps
Google is rolling out an "Independent security review" badge in the Play Store's Data safety section for Android apps that...
Okta’s Recent Customer Support Data Breach Impacted 134 Customers
Identity and authentication management provider Okta on Friday disclosed that the recent support case management system breach affected 134 of...
AIT fraud: what you need to know
AIT fraud: what you need to know The rise in Artificial Inflation of Traffic (AIT) is leaving many businesses out...
Next steps in migrating to post-quantum cryptography
Next steps in migrating to post-quantum cryptography In 2020, the NCSC published a white paper on https://www.ncsc.gov.uk/whitepaper/next-steps-preparing-for-post-quantum-cryptography" target="_self">Preparing for Quantum-Safe...
Dutch hacker jailed for extortion, selling stolen data on RaidForums
A former Dutch cybersecurity professional was sentenced to four years in prison after being found guilty of hacking and blackmailing...
Okta breach: 134 customers exposed in October support system hack
Okta says attackers who breached its customer support system last month gained access to files belonging to 134 customers, five...
The Week in Ransomware – November 3rd 2023 – Hive’s Back
Over the past couple of months, ransomware attacks have been escalating as new operations launch, old ones return, and existing...
American Airlines pilot union hit by ransomware attack
Allied Pilots Association (APA), a labor union representing 15,000 American Airlines pilots, disclosed a ransomware attack that hit its systems...
Google Play adds security audit badges for Android VPN apps
Google Play, Android's official app store, is now tagging VPN apps with an 'independent security reviews' badge if they conducted...
Forrester: GenAI Will Lead to Breaches and Fines in 2024
Rampant generative AI (GenAI) use next year will lead to some major data breaches and fines for application developers using the...
Russian Security Services Arrest Suspected Ukrainian Hackers
Russia’s feared security service the FSB has detained two men suspected of launching cyber-attacks against domestic IT assets in support...
AI Safety Summit: OWASP Urges Governments to Agree on AI Security Standards
Top-level discussions on security and ethical risks AI-powered tools pose are no longer enough to mitigate the dangers posed by...
UK Banks Warn Quantum Will Imperil Entire Payment System
The UK finance industry has warned that quantum computing could unravel the security used to protect the country’s entire payment...
AI Safety Summit: Biden-Harris Administration Launches US AI Safety Institute
The US Department of Commerce has created a new government body to lead the US government’s efforts on AI safety...
Israeli Entities Under Attack By MuddyWater’s Advanced Tactics
A new social engineering campaign conducted by the “MuddyWater” group has been observed targeting two Israeli entities with tactics, techniques and...
