RATs Spread Via Fake Skype, Zoom, Google Meet Sites
Cybersecurity researchers have uncovered a new cyber-threat involving fraudulent Skype, Google Meet and Zoom websites aimed at spreading malware. The campaign,...
Premium Members Content
Evasive Panda Targets Tibet With Trojanized Software
A sophisticated cyber-espionage campaign by the China-aligned APT group Evasive Panda (also known as BRONZE HIGHLAND and Daggerfly) has been...
Dropbox Used to Steal Credentials and Bypass MFA in Novel Phishing Campaign
A novel phishing campaign leveraged legitimate Dropbox infrastructure and successfully bypassed multifactor authentication (MFA) protocols, new research from Darktrace has...
UnitedHealth Sets Timeline to Restore Change Healthcare Systems After BlackCat Hit
UnitedHealth Group has published a timeline to restore Change Healthcare’s systems following the BlackCat/ALPHV ransomware attack, which has led to...
Russia’s Midnight Blizzard Accesses Microsoft Source Code
A notorious Russian state-backed APT group has accessed Microsoft source code and internal systems in an ongoing campaign that was...
Telemedicine Business Owner Faces 20 Years For $136m Fraud
A nurse practitioner has pleaded guilty to her role in a massive $136m conspiracy to defraud the US government’s Medicare...
Third-Party Breach and Missing MFA Contributed to British Library Cyber-Attack
The British Library ransomware attack was likely caused by the compromise of third-party credentials coupled with no multifactor authentication (MFA)...
NSA Launches Top 10 Cloud Security Mitigation Strategies
As businesses migrate their services to hybrid and multi-cloud environments, cloud misconfigurations and security flaws are becoming critical points of...
Threat Hunt: Detecting LSASS Memory Dump via ProcDump
Introduction The Local Security Authority Subsystem Service (LSASS) process in Windows systems manages the security policy, writes to the Security...
Threat Hunt: Detecting Excessive File Writes/Modifications with Ransomware Note Extensions
Published Date: 06/03/2024 Introduction Ransomware attacks often involve encrypting files on a victim's system and leaving ransom notes with instructions...
Threat Hunt: Detecting Encoded PowerShell Commands
Published Date: 06/03/2024 Introduction This hunt aims to identify potentially malicious activities involving encoded PowerShell commands. Encoded commands are a...
Weekly Cyber Security Tip – Bolster Your Internet Of Things (IoT) Security
Welcome back to our weekly cyber security tip. This week, we're shining the spotlight on the increasingly high-tech world of...
UK Home Office Breached Data Protection Law with Migrant Tracking Program, ICO Finds
The UK Home Office has breached data protection law by using electronic tags to monitor migrants, according to the Information...
Five Eyes Warn of Ivanti Vulnerabilities Exploitation, Detection Tools Insufficient
Read more on Ivanti vulnerabilities: Two Ivanti Zero-Days Actively Exploited in the Wild Ivanti Zero-Days Exploited By Multiple Actors Globally...
Biden Warns Chinese Cars Could Steal US Citizens’ Data
US President Joe Biden has warned that Chinese manufactured automobiles could be used to steal sensitive data of US citizens...
Biden Bans Mass Sale of Data to Hostile Nations
The White House has launched a new effort to stop data brokers lawfully selling Americans’ personal data to entities in...
TimbreStealer Malware Targets Mexican Victims with Tax-Related Lures
A new phishing campaign targeting Mexican citizens with financial lures has been discovered by Cisco Talos.Using Mexican tax-related lures, the...
Savvy Seahorse Targets Investment Platforms With DNS Scams
DNS threat actors operating under the moniker Savvy Seahorse have been observed employing sophisticated tactics to lure victims into fake...
US Government Warns Healthcare is Biggest Target for BlackCat Affiliates
The US government has warned the healthcare sector that it is now the biggest target of the BlackCat ransomware group.The...
Pharma Giant Cencora Reports Cybersecurity Breach
Leading drug distributor Cencora has disclosed a cybersecurity incident where data from its information systems was compromised, potentially containing personal...
Dark Web Market Revenues Rebound but Sector Fragments
Administrators and sellers on dark web marketplaces had a better 2023 than the previous year, pulling in an estimated $1.7bn...
UK ICO Vows to Safeguard Privacy in AI Era, Rules Out Bespoke Regulation
The UK's top Information Commissioner has confirmed safeguarding consumer rights in the era of artificial intelligence (AI) is a top...
Over Half of UK Firms Concerned About Insider Threats
A majority (54%) of UK business decision makers are concerned about the likelihood of their employees being approached by cybercriminals,...
Ads for Zero-Day Exploit Sales Surge 70% Annually
Security researchers have warned that threat actors are increasingly turning to zero-day exploits to increase the success rate of advanced...
