Android Keyboard Apps with 2 Million downloads can remotely hack your device
Experts found multiple flaws in three Android Keyboard apps that can be exploited by remote attackers to compromise a mobile...
News
Kaspersky Security Bulletin 2022. Statistics
All statistics in this report are from the global cloud service Kaspersky Security Network (KSN), which receives information from components...
New Go-based Redigo malware targets Redis servers
Redigo is a new Go-based malware employed in attacks against Redis servers affected by the CVE-2022-0543 vulnerability. Researchers from security firm...
Top 3 Non-Technical Cybersecurity Trends for 2023
A strong cybersecurity strategy isn’t just about choosing the right tools. Cybersecurity experts Greg Young and William Malik discuss three...
3 of the Worst Data Breaches in the World That Could Have Been Prevented
Data breaches can be devastating for organizations, these are 3 of the worst incidents that could have been prevented Data...
North Korea ScarCruft APT used previously undetected Dolphin Backdoor against South Korea
North Korea-linked ScarCruft group used a previously undocumented backdoor called Dolphin against targets in South Korea. ESET researchers discovered a previously undocumented backdoor called Dolphin...
Lastpass discloses the second security breach this year
LastPass disclosed a new security breach, threat actors had access to its cloud storage using information stolen in the August...
Google links three exploitation frameworks to Spanish commercial spyware vendor Variston
Google’s Threat Analysis Group (TAG) linked three exploitation frameworks to a Spanish surveillance spyware vendor named Variston. While tracking the...
Attackers abused the popular TikTok Invisible Challenge to spread info-stealer
Threat actors are exploiting interest in a popular TikTok challenge, dubbed Invisible Challenge, to trick users into downloading info-stealing malware....
China-linked UNC4191 APT relies on USB Devices in attacks against entities in the Philippines
An alleged China-linked cyberespionage group, tracked as UNC4191, used USB devices in attacks aimed at Philippines entities. Mandiant researchers spotted...
ENC Security, the encryption provider for Sony and Lexar, leaked sensitive data for over a year
CyberNews experts discovered that ENC Security, a Netherlands software company, had been leaking critical business data since May 2021. Original...
Threat actors are offering access to corporate networks via unauthorized Fortinet VPN access
Cyble observed Initial Access Brokers (IABs) offering access to enterprise networks compromised via a critical flaw in Fortinet products. Researchers at...
Data Exfiltration Prevention with SASE
Data exposure from SaaS and cloud applications is an increasing risk factor facing businesses today. Discover how SASE capabilities can...
Industry 4.0: CNC Machine Security Risks Part 1
This three-part blog series explores the risks associated with CNC machines If you like the site, please consider joining the...
Cyber Crime: INTERPOL Uses Trend Threat Intelligence
INTERPOL recently conducted operation African Surge to take down malicious infrastructure across the African continent and requested the help of...
US-CERT Bulletin (SB22-332):Vulnerability Summary for the Week of November 21, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
CISA adds Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities Catalog
CISA added a critical flaw impacting Oracle Fusion Middleware, tracked as CVE-2021-35587, to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity...
Tips for Gamifying Your Cybersecurity Awareness Training Program
In today’s technological world, educating people about cybersecurity awareness is an absolute necessity. According to one report, 82% of data...
Irish data protection commission fines Meta over 2021 data-scraping leak
Irish data protection commission (DPC) fined Meta for not protecting Facebook’s users’ data from scraping. Meta has been fined €265 million...
Privacy predictions 2023
Our last edition of privacy predictions focused on a few important trends where business and government interests intersect, with regulators...
Consumer cyberthreats: predictions for 2023
The consumer threat landscape constantly changes. Although the main types of threats (phishing, scams, malware, etc.) remain the same, lures...
How a Unified Security Platform Protects the Cloud
Massive growth in cloud use has increased the enterprise attack surface. Addressing the risks with specialized point solutions is unwieldy,...
A flaw in some Acer laptops can be used to bypass security features
ESET announced the discovery of a vulnerability impacting Acer laptops that can allow an attacker to deactivate UEFI Secure Boot....
Experts found a vulnerability in AWS AppSync
Amazon Web Services (AWS) fixed a cross-tenant vulnerability that could have allowed attackers to gain unauthorized access to resources. Amazon...
