Two more malicious Python packages in the PyPI
On August 8, CheckPoint published a report on ten malicious Python packages in the Python Package Index (PyPI), the most...
News
Threat in your browser: what dangers innocent-looking extensions hold for users
Whether you want to block ads, keep a to-do list or check your spelling, browser extensions allow you to do...
What Exposed OPA Servers Can Tell You About Your Applications
This blog entry discusses what an OPA is and what it’s for, what we’ve discovered after identifying 389 exposed OPA...
Top Five Patch Management & Process Best Practices
Explore the top patch management best practices to mitigate the growing threat of vulnerability exploits in your organization. If you...
Clop gang targeted UK drinking water supplier South Staffordshire Water
A cyber attack disrupted the IT operations of South Staffordshire Water, a company supplying drinking water to 1.6M consumers daily....
Russia-linked Gamaredon APT continues to target Ukraine
Russia-linked Gamaredon APT group targets Ukrainian entities with PowerShell info-stealer malware dubbed GammaLoad. Russia-linked Gamaredon APT group (aka Shuckworm, Actinium, Armageddon, Primitive...
Phone numbers of 1,900 Signal users exposed as a result of Twilio security breach
For about 1,900 users, Twilio hackers could have attempted to re-register their number to another device or learned that their...
IT threat evolution in Q2 2022. Mobile statistics
IT threat evolution in Q2 2022 IT threat evolution in Q2 2022. Non-mobile statistics IT threat evolution in Q2 2022....
IT threat evolution in Q2 2022. Non-mobile statistics
IT threat evolution in Q2 2022 IT threat evolution in Q2 2022. Non-mobile statistics IT threat evolution in Q2 2022....
IT threat evolution Q2 2022
IT threat evolution in Q2 2022 IT threat evolution in Q2 2022. Non-mobile statistics IT threat evolution in Q2 2022....
Microsoft disrupts SEABORGIUM ’s ongoing phishing operations
Microsoft disrupted a hacking operation linked conducted by Russia-linked APT SEABORGIUM aimed at NATO countries. The Microsoft Threat Intelligence Center...
Oil and Gas Cybersecurity: Recommendations Part 3
In the final part of our series, we look at the APT33 case study and several recommendations from our expert...
VNC instances exposed to Internet pose critical infrastructures at risk
Researchers from threat intelligence firm Cyble reported a surge in attacks targeting virtual network computing (VNC). Virtual Network Computing (VNC) is...
SOVA Android malware now also encrypts victims’ files
Security researchers from Cleafy reported that the SOVA Android banking malware is back and is rapidly evolving. The SOVA Android...
A new PyPI Package was found delivering fileless Linux Malware
Security Researchers discovered a new PyPI Package designed to drop fileless cryptominer to Linux systems. Sonatype researchers have discovered a...
Iron Tiger APT is behind a supply chain attack that employed messaging app MiMi
China-linked threat actors Iron Tiger backdoored a version of the cross-platform messaging app MiMi to infect systems. Trend Micro researchers uncovered a...
A flaw in Xiaomi phones using MediaTek Chips could allow to forge transactions
Flaws in Xiaomi Redmi Note 9T and Redmi Note 11 models could be exploited to disable the mobile payment mechanism and even...
CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) and the FBI are warning of Zeppelin ransomware attacks. The US Cybersecurity...
Killnet claims to have breached Lockheed Martin
Russian hacker group Killnet claims to have launched a DDoS attack on the aerospace and defense giant Lockheed Martin. The...
Cyber Advisor
C The NCSC is currently inviting organisations to help develop a new Cyber Advisor service. The initial 100 Cyber Advisor...
Three flaws allow attackers to bypass UEFI Secure Boot feature
Researchers discovered a flaw in three signed third-party UEFI boot loaders that allow bypass of the UEFI Secure Boot feature....
Event-Driven Architectures & the Security Implications
This article explores event-driven architecture (EDA) with a detailed definition and explains how EDA offers many essential benefits to developers....
Iron Tiger Compromises Chat Application Mimi, Targets Windows, Mac, and Linux Users
We found APT group Iron Tiger's malware compromising chat application Mimi’s servers in a supply chain attack. If you like...
The US offers a $10M rewards for info on the Conti ransomware gang’s members
The U.S. State Department announced a $10 million reward for information related to five individuals associated with the Conti ransomware gang. The...
