Oil and Gas Cybersecurity: Recommendations Part 3
In the final part of our series, we look at the APT33 case study and several recommendations from our expert...
News
VNC instances exposed to Internet pose critical infrastructures at risk
Researchers from threat intelligence firm Cyble reported a surge in attacks targeting virtual network computing (VNC). Virtual Network Computing (VNC) is...
SOVA Android malware now also encrypts victims’ files
Security researchers from Cleafy reported that the SOVA Android banking malware is back and is rapidly evolving. The SOVA Android...
A new PyPI Package was found delivering fileless Linux Malware
Security Researchers discovered a new PyPI Package designed to drop fileless cryptominer to Linux systems. Sonatype researchers have discovered a...
Iron Tiger APT is behind a supply chain attack that employed messaging app MiMi
China-linked threat actors Iron Tiger backdoored a version of the cross-platform messaging app MiMi to infect systems. Trend Micro researchers uncovered a...
A flaw in Xiaomi phones using MediaTek Chips could allow to forge transactions
Flaws in Xiaomi Redmi Note 9T and Redmi Note 11 models could be exploited to disable the mobile payment mechanism and even...
CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) and the FBI are warning of Zeppelin ransomware attacks. The US Cybersecurity...
Killnet claims to have breached Lockheed Martin
Russian hacker group Killnet claims to have launched a DDoS attack on the aerospace and defense giant Lockheed Martin. The...
Cyber Advisor
C The NCSC is currently inviting organisations to help develop a new Cyber Advisor service. The initial 100 Cyber Advisor...
Three flaws allow attackers to bypass UEFI Secure Boot feature
Researchers discovered a flaw in three signed third-party UEFI boot loaders that allow bypass of the UEFI Secure Boot feature....
Event-Driven Architectures & the Security Implications
This article explores event-driven architecture (EDA) with a detailed definition and explains how EDA offers many essential benefits to developers....
Iron Tiger Compromises Chat Application Mimi, Targets Windows, Mac, and Linux Users
We found APT group Iron Tiger's malware compromising chat application Mimi’s servers in a supply chain attack. If you like...
The US offers a $10M rewards for info on the Conti ransomware gang’s members
The U.S. State Department announced a $10 million reward for information related to five individuals associated with the Conti ransomware gang. The...
Experts warn of mass exploitation of an RCE flaw in Zimbra Collaboration Suite
Threat actors are exploiting an authentication bypass Zimbra flaw, tracked as CVE-2022-27925, to hack Zimbra Collaboration Suite email servers worldwide. An authentication bypass...
BazarCall attacks have revolutionized ransomware operations
The Conti ransomware gang is using BazarCall phishing attacks as an initial attack vector to access targeted networks. BazarCall attack,...
OpenTIP, command line edition
For more than a year, we have been providing free intelligence services via the OpenTIP portal. Using the web interface,...
CopperStealer Distributes Malicious Chromium-based Browser Extension to Steal Cryptocurrencies
We tracked the latest deployment of the group behind CopperStealer, this time stealing cryptocurrencies and users’ wallet account information via...
Cyber Insurance Coverage Checklist: 5 Security Items
Explore 5 security considerations in-line with cyber insurance requirements to renew or obtain a policy while reducing your cyber risk....
Palo Alto Networks warns of Reflected Amplification DoS issue in PAN-OS
Palo Alto Networks devices running the PAN-OS are abused to launch reflected amplification denial-of-service (DoS) attacks. Threat actors are exploiting...
Ex Twitter employee found guilty of spying for Saudi Arabian government
A former Twitter employee was found guilty of spying on certain Twitter users for Saudi Arabia. A former Twitter employee,...
Cisco fixed a flaw in ASA, FTD devices that can give access to RSA private key
Cisco addressed a high severity flaw, tracked as CVE-2022-20866, affecting Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software....
VileRAT: DeathStalker’s continuous strike at foreign and cryptocurrency exchanges
In late August 2020, we published an overview of DeathStalker’s profile and malicious activities, including their Janicab, Evilnum and PowerSing...
Cisco was hacked by the Yanluowang ransomware gang
Cisco discloses a security breach, the Yanluowang ransomware group breached its corporate network in late May and stole internal data....
Improve Threat Detection & Response with OCSF
New open source initiative helping organizations to detect and respond to cyber-attacks faster and easier If you like the site,...
