Attack infrastructure used in Cisco hack linked to Evil Corp affiliate
Researchers discovered that the infrastructure used in Cisco hack was the same used to target a Workforce Management Solution firm....
News
Researchers analyzed a new JavaScript skimmer used by Magecart threat actors
Researchers from Cyble analyzed a new, highly evasive JavaScript skimmer used by Magecart threat actors. Cyble Research & Intelligence Labs...
Metaverse Broadband Infrastructure Security
The metaverse is coming—but what does that mean for network infrastructure? We explore expected changes, network challenges, and tips for...
Ragnar Locker ransomware gang claims to have stolen data from TAP Air Portugal
The Ragnar Locker ransomware gang claims to have hacked the Portuguese state-owned flag carrier airline TAP Air Portugal and stolen...
1,859 Android and iOS apps were containing hard-coded Amazon AWS credentials
Researchers discovered 1,859 Android and iOS apps containing hard-coded Amazon Web Services (AWS) credentials. Researchers from Broadcom Symantec’s Threat Hunter...
FBI is helping Montenegro in investigating the ongoing cyberattack
A team of cybersecurity experts from the US FBI will help the authorities in Montenegro to investigate the recent massive...
Apple released patches for recently disclosed WebKit zero-day in older iPhones and iPads
Apple released new security updates for older iPhone and iPad devices addressing recently fixed WebKit zero-day. Apple has released new updates...
A flaw in TikTok Android app could have allowed the hijacking of users’ accounts
Microsoft discovered a vulnerability in the TikTok app for Android that could lead to one-click account hijacking. Microsoft researchers discovered...
Tackling the Growing and Evolving Digital Attack Surface: 2022 Midyear Cybersecurity Report
This blog entry highlights the threats that dominated the first six months of the year, which we discussed in detail...
Threat actors breached the network of the Italian oil company ENI
Italian oil giant Eni was hit by a cyber attack, attackers compromised its computer networks, but the consequences appear to...
GO#WEBBFUSCATOR campaign hides malware in NASA’s James Webb Space Telescope image
A malware campaign tracked as GO#WEBBFUSCATOR used an image taken from NASA’s James Webb Space Telescope (JWST) as a lure....
Experts spotted five malicious Google Chrome extensions used by 1.4M users
Researchers spotted 5 malicious Google Chrome extensions used to track users’ browsing activity and profit of retail affiliate programs. McAfee...
China-linked APT40 used ScanBox Framework in a long-running espionage campaign
Experts uncovered a cyber espionage campaign conducted by a China-linked APT group and aimed at several entities in the South...
Russian streaming platform Start discloses a data breach impacting 7.5M users
The Russian subscription-based streaming service Start discloses a data breach affecting 7.5 million users. The Russian media streaming platform START...
Cyber Security Managed Services 101
MSP partnerships are growing in line with rapid cloud migration and the evolving threat landscape. Discover how an MSP can...
US-CERT Bulletin (SB22-241):Vulnerability Summary for the Week of August 22, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
A new Google bug bounty program now covers Open Source projects
Google this week launched a new bug bounty program that covers the open source projects of the IT giant. Google...
Three campaigns delivering multiple malware, including ModernLoader and XMRig miner
Researchers spotted three campaigns delivering multiple malware, including ModernLoader, RedLine Stealer, and cryptocurrency miners Cisco Talos researchers observed three separate,...
A study on malicious plugins in WordPress Marketplaces
A group of researchers from the Georgia Institute of Technology discovered malicious plugins on tens of thousands of WordPress sites....
World’s largest distributors of books Baker & Taylor hit by ransomware
Baker & Taylor, one of the world’s largest distributors of books, revealed that it was hit by a ransomware attack....
Crooks are increasingly targeting DeFi platforms to steal cryptocurrency
The U.S. FBI warns investors that crooks are increasingly exploiting security issues in Decentralized Finance (DeFi) platforms to steal cryptocurrency....
US FTC sued US data broker Kochava for selling sensitive and geolocation data
The U.S. FTC sued US data broker Kochava for selling sensitive and precise geolocation data collected from hundreds of millions...
Twilio breach let attackers access Authy two-factor accounts of 93 users
Threat actors behind the Twilio hack also gained access to the accounts of 93 individual users of its Authy two-factor...
Nitrokod crypto miner infected systems across 11 countries since 2019
Researchers spotted a Turkish-based crypto miner malware campaign, tracked as Nitrokod, which infected systems across 11 countries. Check Point researchers...
