CISO Best Practices for Managing Cyber Risk
Leading CISOs have offered best practices for security leaders on how to manage cyber risks effectively during the ISC2 Security...
News
CISOs Can Elevate Their Role with New Cyber Regulations
New cybersecurity rules and regulations offer security leaders a great opportunity to elevate their role at their organizations, boosting security...
Microsoft Sounds Alarm Over English-Speaking Octo Tempest
Microsoft has described the Octo Tempest (aka Scattered Spider, 0ktapus, UNC3944) group as “one of the most dangerous financial criminal...
Security Agency Rolls Out Protective DNS for Schools
The UK’s National Cyber Security Centre (NCSC) has announced the launch of a new offering designed to prevent school users...
#ISC2Congress: Generative AI A Boon for Organizations Despite the Risks, Experts Say
Generative AI is too beneficial to abandon despite the threats it poses to organizations, according to experts speaking at the...
Nigerian Police Dismantle Major Cybercrime Hub
Nigerian police have uncovered and shut down a cybercrime recruitment and training center in the country’s capital.A post on X...
US-CERT Vulnerability Summary for the Week of October 16, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info1e -- platformAffected 1E Platform versions have a Blind SQL Injection vulnerability...
N. Korean Lazarus Group Targets Software Vendor Using Known Flaws
The North Korea-aligned Lazarus Group has been attributed as behind a new campaign in which an unnamed software vendor was...
Google Expands Its Bug Bounty Program to Tackle Artificial Intelligence Threats
Google has announced that it's expanding its Vulnerability Rewards Program (VRP) to compensate researchers for finding attack scenarios tailored to...
F5 Issues Warning: BIG-IP Vulnerability Allows Remote Code Execution
F5 has alerted customers of a critical security vulnerability impacting BIG-IP that could result in unauthenticated remote code execution. The...
How to Keep Your Business Running in a Contested Environment
When organizations start incorporating cybersecurity regulations and cyber incident reporting requirements into their security protocols, it's essential for them to...
Cloudflare sees surge in hyper-volumetric HTTP DDoS attacks
Cloudflare says the number of hyper-volumetric HTTP DDoS (distributed denial of service) attacks recorded in the third quarter of 2023...
New iLeakage attack steals emails, passwords from Apple Safari
Academic researchers created a new speculative side-channel attack they named iLeakage that works on all recent Apple devices and can...
Android adware apps on Google Play amass two million installs
Several malicious Google Play Android apps installed over 2 million times push intrusive ads to users while concealing their presence...
Nigerian Police dismantle cybercrime recruitment, mentoring hub
The Nigerian Police Form has arrested six suspects and dismantled a mentoring hub linked to cybercrime activities, including business email...
StripedFly malware framework infects 1 million Windows, Linux hosts
A sophisticated cross-platform malware platform named StripedFly flew under the radar of cybersecurity researchers for five years, infecting over a...
Microsoft: Octo Tempest is one of the most dangerous financial hacking groups
Microsoft has published a detailed profile of a native English-speaking threat actor with advanced social engineering capabilities it tracks as...
France says Russian state hackers breached numerous critical networks
The Russian APT28 hacking group (aka 'Strontium' or 'Fancy Bear') has been targeting government entities, businesses, universities, research institutes, and...
Europol: Police Must Start Planning For Post-Quantum Future
Law enforcers should start building their knowledge and assessing the potential impact of quantum computing technologies, to ensure they can...
Humans Need to Rethink Trust in the Wake of Generative AI
As generative AI rapidly evolves, one of the biggest risks that is being discussed is the potential for the technology...
UK Parliament Opens Inquiry into Cyber-Resilience
UK lawmakers have launched an inquiry into the cyber-resilience of critical national infrastructure (CNI), claiming the country is the third...
CISA Releases Cybersecurity Toolkit For Healthcare
A leading US cybersecurity agency has published a new set of online resources designed to help IT security leaders in the...
UK IT Pros Express Concerns About C-Suite’s Generative AI Ambitions
Ahead of the UK's AI Safety Summit, new research has revealed significant concerns among UK IT professionals regarding the deployment of...
Operation Triangulation iOS Attack Details Revealed
In an update to previous reports, Kaspersky’s Global Research and Analysis Team (GReAT) has disclosed new insights into the notorious...
