π΅οΈββοΈ Patch Now: CrushFTP Zero-Day Cloud Exploit Targets US Orgs π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
An exploit for the vulnerability allows unauthenticated attackers to escape a virtual file system sandbox to download system files and potentially achieve RCE.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Patch Now: CrushFTP Zero-Day Cloud Exploit Targets US Orgs
An exploit for the vulnerability allows attackers to escape a virtual file system sandbox to download system files and potentially achieve RCE.
ποΈ U.S. Treasury Sanctions Iranian Firms and Individuals Tied to Cyber Attacks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The U.S. Treasury Department's Office of Foreign Assets Control OFAC on Monday sanctioned two firms and four individuals for their involvement in malicious cyber activities on behalf of the Iranian Islamic Revolutionary Guard Corps Cyber Electronic Command IRGCCEC from at least 2016 to April 2021. This includes the front companies Mehrsam Andisheh Saz Nik MASN and Dadeh.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Researchers Detail Multistage Attack Hijacking Systems with SSLoad, Cobalt Strike ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have discovered an ongoing attack campaign that's leveraging phishing emails to deliver malware called SSLoad. The campaign, codenamed FROZENSHADOW by Securonix, also involves the deployment of Cobalt Strike and the ConnectWise ScreenConnect remote desktop software. "SSLoad is designed to stealthily infiltrate systems, gather sensitive.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π US Sanctions Iranian "Fronts" for Cyber-Attacks on American Entities π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The US Treasury announced sanctions on two companies and four individuals for cyber campaigns conducted on behalf of the Iranian government.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
US Sanctions Iranian "Fronts" for Cyber-Attacks on American Entities
The US Treasury announced sanctions on two companies and four individuals for cyber campaigns conducted on behalf of the Iranian government
𧨠How to Tell If Your Text Message Is Real π§¨
π Read more.
π Via "McAfee"
----------
ποΈ Seen on @cibsecurity
According to reports from the Federal Trade Commissions Consumer Sentinel database, text message scams swindled 330 million from Americans in... The post How to Tell If Your Text Message Is Real appeared first on McAfee Blog.π Read more.
π Via "McAfee"
----------
ποΈ Seen on @cibsecurity
McAfee Blog
How to Tell If Your Text Message Is Real | McAfee Blog
According to reports from the Federal Trade Commissionβs Consumer Sentinel database, text message scams swindled $372 million from Americans in 2023
π΅οΈββοΈ 2023: A 'Good' Year for OT Cyberattacks π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Attacks increased by "only" 19 last year. But that number is expected to grow significently.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
2023: A 'Good' Year for OT Cyberattacks
Attacks increased by "only" 19% last year. But that number is expected to grow significently.
π US Congress Passes Bill to Ban TikTok π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The bill that could see TikTok banned in the US has been approved by the House of Representatives and the Senate.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
US Congress Passes Bill to Ban TikTok
The bill that could see TikTok banned in the US has been approved by the House of Representatives and the Senate
π΅οΈββοΈ Iran Dupes US Military Contractors, Gov't Agencies in Years-Long Cyber Campaign π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
A statesponsored hacking team employed a clever masquerade and elaborate backend infrastructure as part of a fiveyear infostealing campaign that compromised the US State and Treasury Departments, and hundreds of thousands of accounts overall.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Iran Dupes US Military Contractors, Gov't Agencies in Cyber Campaign
A state-sponsored hacking team employed a clever masquerade and elaborate back-end infrastructure as part of a five-year info-stealing campaign that compromised the US State and Treasury Departments, and hundreds of thousands of accounts overall.
π’ TechSlayer chronicles - Digital defenders: π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Securing hybrid cloud infrastructure from alien forces.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
TechSlayer chronicles - Digital defenders:
Securing hybrid cloud infrastructure from alien forces
π’ The basics and business of trusted security π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Deploy technology with confidence.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
The basics and business of trusted security
Deploy technology with confidence
π’ Trusted security from the edge to the cloud π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Counter cyber risks and threats.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Trusted security from the edge to the cloud
Counter cyber risks and threats
π’ Putting Trusted Security to Work π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Securely manage servers across their entire lifecycle.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Putting Trusted Security to Work
Securely manage servers across their entire lifecycle
π΅οΈββοΈ North Korea APT Triumvirate Spied on South Korean Defense Industry For Years π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Lazarus, Kimsuky, and Andariel all got in on the action, stealing "important" data from firms responsible for defending their southern neighbors from them.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
3 DPRK APTs Spied on South Korea Defense Industry
Lazarus, Kimsuky, and Andariel all got in on the action, stealing "important" data from firms responsible for defending their southern neighbors (from them).
π¦Ώ Prompt Hacking, Private GPTs, Zero-Day Exploits and Deepfakes: Report Reveals the Impact of AI on Cyber Security Landscape π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
A new report by cyber security firm Radware identifies the four main impacts of AI on the threat landscape emerging this year.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Prompt Hacking, Private GPTs, Zero-Day Exploits and Deepfakes: Report Reveals the Impact of AI on Cyber Security Landscape
A new report by cyber security firm Radware identifies the four main impacts of AI on the threat landscape emerging in 2024.
π΅οΈββοΈ Lights On in Leicester: Streetlights in Disarray After Cyberattack π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The city is stymied in efforts to pinpoint the issue since its IT systems were shut down in the wake of the cyberattack.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Lights On in Leicester: City Streetlights in Disarray After Cyberattack
The city is stymied in efforts to pinpoint the issue since its IT systems were shut down in the wake of the cyberattack.
π΅οΈββοΈ KnowBe4 to Acquire Egress π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
KnowBe4 to Acquire Egress
π΅οΈββοΈ Black Girls Do Engineer Signs Education Partnership Agreement With NSA π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Black Girls Do Engineer Signs Education Partnership With NSA
π΅οΈββοΈ Attacker Social-Engineered Backdoor Code Into XZ Utils π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Unlike the SolarWinds and CodeCov incidents, all that it took for an adversary to nearly pull off a massive supply chain attack was some slick social engineering and a string of pressure emails.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Attacker Social-Engineered Backdoor Code Into XZ Utils
Unlike the SolarWinds and CodeCov incidents, all that it took for an adversary to nearly pull off a massive supply chain attack was some slick social engineering and a string of pressure emails.
ποΈ Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Google has once again pushed its plans to deprecate thirdparty tracking cookies in its Chrome web browser as it works to address outstanding competition concerns from U.K. regulators over its Privacy Sandbox initiative. The tech giant said it's working closely with the U.K. Competition and Markets Authority CMA and hopes to achieve an agreement by the end of the year. As part of the.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A new malware campaign leveraged two zeroday flaws in Cisco networking gear to deliver custom malware and facilitate covert data collection on target environments. Cisco Talos, which dubbed the activity ArcaneDoor, attributing it as the handiwork of a previously undocumented sophisticated statesponsored actor it tracks under the name UAT4356 aka Storm1849 by Microsoft. ".π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π High Performance Podcast Duo to Unveil Secrets of Success at Infosecurity Europe 2024 π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Jake Humphrey and Professor Damian Hughes, the minds behind the High Performance Podcast, share their top nonnegotiable behaviours for success in cybersecurity.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
High Performance Podcast Duo to Unveil Secrets of Success at Infosecurity Europe 2024
Jake Humphrey and Professor Damian Hughes, the minds behind the High Performance Podcast, share their top non-negotiable behaviours for success in cybersecurity
π1