π Teen Dating App Wizz Removed from Apple and Google Stores for Sextortion Concerns π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The Tinderlike app has countered claims of being a hot spot for sextortion scammers.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Wizz Removed from Apple and Google Stores for Sextortion Concerns
The Tinder-like app has countered claims of being a hot spot for sextortion scammers
ποΈ Russian APT28 Hackers Targeting High-Value Orgs with NTLM Relay Attacks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Russian statesponsored actors have staged NT LAN Manager NTLM v2 hash relay attacks through various methods from April 2022 to November 2023, targeting highvalue targets worldwide. The attacks, attributed to an "aggressive" hacking crew called APT28, have set their eyes on organizations dealing with foreign affairs, energy, defense, and transportation, as well as those involved with.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π1
π΅οΈββοΈ Google Play Used to Spread 'Patchwork' APT's Espionage Apps π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The Indian statesponsored cyberattackers lurked in Google's official app store, distributing a new RAT and spying on Pakistanis.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Google Play Used to Spread 'Patchwork' APT's Espionage Apps
The Indian state-sponsored cyberattackers lurked in Google's official app store, distributing a new RAT and spying on Pakistanis.
π΅οΈββοΈ South African Railways Lost Over $1M in Phishing Scam π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Just over half of the stolen funds have been recovered.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
South African Railways Lost Over $1M in Phishing Scam
More than half of the stolen funds have been recovered.
β€1
π΅οΈββοΈ Interpol's 'Synergia' Op Nabs Dozens of Cybercriminals, Zaps Global C2s π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The largest number of takedowns in Africa were in South Sudan and Zimbabwe.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Interpol's 'Synergia' Op Nabs Dozens of Cybercriminals, Zaps Global C2s
The largest number of takedowns in Africa were in South Sudan and Zimbabwe.
π΅οΈββοΈ macOS Malware Campaign Showcases Novel Delivery Technique π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Threat actor behind the Activator macOS backdoor is using pirated apps to distribute the malware in what could be a botnetbuilding operation.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
macOS Malware Campaign Showcases Novel Delivery Technique
Threat actor behind the Activator macOS backdoor is using pirated apps to distribute the malware in what could be a botnet-building operation.
π1
π¦Ώ Botnet Struck U.S. Routers; Hereβs How to Keep Employees Safe π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
The FBI spotted this statesponsored attack that highlights how home office setups can be overlooked when it comes to employees cybersecurity.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Botnet Attack Targeted Routers: A Wake-Up Call for Securing Remote Employees' Hardware
The FBI spotted this attack that highlights how home office setups can be overlooked when it comes to employeesβ cybersecurity.
π’ Financial services should look to processor-level data protections, report suggests π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Processors with security functions to secure data no matter where it is in use could help financial institutions with digital transformations.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Financial services should look to processor-level data protections, report suggests
Processors with security functions to secure data no matter where it is in use could help financial institutions with digital transformations
π΅οΈββοΈ Myanmar Hands Over Mob Bosses in Cyber-Fraud Bust π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Heads of top crime syndicates extradited to China are implicated in pigbutchering "fraud dens," but four individuals on China's mostwanted list still remain at large.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Myanmar Hands Over Mob Bosses in Cyber-Fraud Bust
Heads of top crime syndicates extradited to China are implicated in pig-butchering "fraud dens," but four individuals on China's most-wanted list still remain at large.
π΅οΈββοΈ CISO Corner: Gen Z Challenges, CISO Liability & Cathay Pacific Case Study π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading's roundup of strategic cyberoperations insights for chief information security officers.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
CISO Corner: Gen Z Challenges, CISO Liability & Cathay Pacific Case Study
Dark Reading's roundup of strategic cyber-operations insights for chief information security officers.
π1
π΅οΈββοΈ Forget Deepfakes or Phishing: Prompt Injection is GenAI's Biggest Problem π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
With prompt injection, AI puts new spin on an old security problem.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Forget Deepfakes or Phishing: Prompt Injection is GenAI's Biggest Problem
With prompt injection, AI puts new spin on an old security problem
ποΈ AnyDesk Hacked: Popular Remote Desktop Software Mandates Password Reset ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Remote desktop software maker AnyDesk disclosed on Friday that it suffered a cyber attack that led to a compromise of its production systems. The German company said the incident, which it discovered following a security audit, is not a ransomware attack and that it has notified relevant authorities. "We have revoked all securityrelated certificates and systems have been remediated or replaced.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Grandoreiro banking malware disrupted β Week in security with Tony Anscombe π
π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
The banking trojan, which targeted mostly Brazil, Mexico and Spain, blocked the victims screen, logged keystrokes, simulated mouse and keyboard activity and displayed fake popup windows.π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
Welivesecurity
Grandoreiro banking malware disrupted β Week in security with Tony Anscombe
Law enforcement in Brazil has taken action to disrupt the Grandoreiro banking malware in a joint effort that was also supported by the ESET research team
ποΈ Mastodon Vulnerability Allows Hackers to Hijack Any Decentralized Account ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The decentralized social network Mastodon has disclosed a critical security flaw that enables malicious actors to impersonate and take over any account. "Due to insufficient origin validation in all Mastodon, attackers can impersonate and take over any remote account," the maintainers said in a terse advisory. The vulnerability, tracked as CVE202423832, has a severity rating of 9.4 out of.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ U.S. Sanctions 6 Iranian Officials for Critical Infrastructure Cyber Attacks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The U.S. Treasury Department's Office of Foreign Assets Control OFAC announced sanctions against six officials associated with the Iranian intelligence agency for attacking critical infrastructure entities in the U.S. and other countries. The officials include Hamid Reza Lashgarian, Mahdi Lashgarian, Hamid Homayunfal, Milad Mansuri, Mohammad Bagher Shirinkar, and Reza Mohammad Amin.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ New Mispadu Banking Trojan Exploiting Windows SmartScreen Flaw ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The threat actors behind the Mispadu banking Trojan have become the latest to exploit a nowpatched Windows SmartScreen security bypass flaw to compromise users in Mexico. The attacks entail a new variant of the malware that was first observed in 2019, Palo Alto Networks Unit 42 said in a report published last week. Propagated via phishing mails, Mispadu is a Delphibased information stealer.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Pegasus Spyware Targeted iPhones of Journalists and Activists in Jordan ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The iPhones belonging to nearly three dozen journalists, activists, human rights lawyers, and civil society members in Jordan have been targeted with NSO Group's Pegasus spyware, according to joint findings from Access Now and the Citizen Lab. Nine of the 35 individuals have been publicly confirmed as targeted, out of whom had their devices compromised with the mercenary.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π₯1
π UK Court Backlog Blocks Attempts to Fight Fraud Epidemic π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
KPMG research finds a similar number of highvalue UK fraud cases heard in 2023 to previous year.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
UK Court Backlog Blocks Attempts to Fight Fraud Epidemic
KPMG research finds a similar number of high-value UK fraud cases heard in 2023 to previous year
π₯1
π Clorox and Johnson Controls Reveal $76m Cyber-Attack Bill π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
SEC filings reveal multimilliondollar costs of two serious 2023 cyberattacks on Clorox and Johnson Controls.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Clorox and Johnson Controls Reveal $76m Cyber-Attack Bill
SEC filings reveal multimillion-dollar costs of two serious 2023 cyber-attacks on Clorox and Johnson Controls
π1π₯1
π¦Ώ Vix Makes Travels Safer and Smoother With Proactive Global Visibility π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Vix Technology is a global leader in intelligent transportation systems, automated fare collection, and transit analytics. Transit agencies and operators including the major transportation systems of major cities like Edmonton and Seattle rely on Vix to help travelers process fare payments and arrive safely and on time at their destination. Previously, Vix relied ...π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Vix Makes Travels Safer and Smoother With Proactive Global Visibility | TechRepublic
Vix Technology is a global leader in intelligent transportation systems, automated fare collection, and transit analytics. Transit agencies and operators
ποΈ Combined Security Practices Changing the Game for Risk Management ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A significant challenge within cyber security at present is that there are a lot of risk management platforms available in the market, but only some deal with cyber risks in a very good way. The majority will shout alerts at the customer as and when they become apparent and cause great stress in the process. The issue being that by using a reactive, rather than proactive approach, many risks.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity