π΅οΈββοΈ 500 Victims In, Black Basta Reinvents With Novel Vishing Strategy π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Ransomware groups have always created problems for their victims that only they could solve. Black Basta is taking that core idea in a creative, new direction.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
500 Victims In, Black Basta Reinvents With Novel Vishing Strategy
Ransomware groups have always created problems for their victims that only they could solve. Black Basta is taking that core idea in a creative, new direction.
π3
ποΈ Apple and Google Launch Cross-Platform Feature to Detect Unwanted Bluetooth Tracking Devices ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Apple and Google on Monday officially announced the rollout of a new feature that notifies users across both iOS and Android if a Bluetooth tracking device is being used to stealthily keep tabs on them without their knowledge or consent. "This will help mitigate the misuse of devices designed to help keep track of belongings," the companies said in a joint statement, adding it aims to address ".π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π§ 3 recommendations for adopting generative AI for cyber defense π§
π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
In the past eighteen months, generative AI gen AI has gone from being the source of jawdropping demos to a top strategic priority in nearly every industry. A majority of CEOs report feeling under pressure to invest in gen AI. Product teams are now scrambling to build gen AI into their solutions and services. The The post 3 recommendations for adopting generative AI for cyber defense appeared first on Security Intelligence.π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
Security Intelligence
3 recommendations for adopting generative AI for cyber defense
Consider these factors when evaluating generative AI (gen AI) for your threat detection and response program.
π½ Claiming Access to Coinbase π½
π Read more.
π Via "BE3SEC"
----------
ποΈ Seen on @cibsecurity
A threat actor claimed that they have an access to Coinbase with ability to check the balance of any account. The advertisement shared in Telegram group. Coinbase is a leading cryptocurrency exchange platform founded in 2012, headquartered in the United States. It allows users to buy, sell, and store various.π Read more.
π Via "BE3SEC"
----------
ποΈ Seen on @cibsecurity
Be4Sec
Claiming Access to Coinbase
A threat actor claimed that they have an access to Coinbase with ability to check the balance of any account. The advertisement shared in Telegram group. Coinbase is a leading cryptocurrency exchanβ¦
π Hackers Use DNS Tunneling to Scan and Track Victims π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Palo Alto Networks warns threat actors are using DNS tunneling techniques to probe for network vulnerabilities.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Hackers Use DNS Tunneling to Scan and Track Victims
Palo Alto Networks warns threat actors are using DNS tunneling techniques to probe for network vulnerabilities
π FCC Names and Shames First Robocall Threat Actor π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
In a first, the FCC has designated Royal Tiger as a malicious robocall threat group.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
FCC Names and Shames First Robocall Threat Actor
In a first, the FCC has designated βRoyal Tigerβ as a malicious robocall threat group
π’ Scattered Spider, the ransomware group behind the MGM cyber attack, is still on a rampage β and authorities are ramping up efforts to catch them π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Scattered Spider brought MGM Resorts to its knees in late 2023, and despite a law enforcement crackdown, its still highly active.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Scattered Spider, the ransomware group behind the MGM cyber attack, is still on a rampage β and authorities are ramping up effortsβ¦
Scattered Spider brought MGM Resorts to its knees in late 2023, and despite a law enforcement crackdown, itβs still highly active
π UK Insurance and NCSC Join Forces to Fight Ransomware Payments π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
UK insurers and the National Cybersecurity Centre release new guidance to discourage ransomware payments by businesses.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
UK Insurance and NCSC Join Forces to Fight Ransomware Payments
UK insurers and the National Cybersecurity Centre release new guidance to discourage ransomware payments by businesses
ποΈ 6 Mistakes Organizations Make When Deploying Advanced Authentication ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Deploying advanced authentication measures is key to helping organizations address their weakest cybersecurity link their human users. Having some form of 2factor authentication in place is a great start, but many organizations may not yet be in that spot or have the needed level of authentication sophistication to adequately safeguard organizational data. When deploying.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Ongoing Campaign Bombarded Enterprises with Spam Emails and Phone Calls ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have uncovered an ongoing social engineering campaign that bombards enterprises with spam emails with the goal of obtaining initial access to their environments for followon exploitation. "The incident involves a threat actor overwhelming a user's email with junk and calling the user, offering assistance," Rapid7 researchers Tyler McGraw, Thomas Elkins, and.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π’ The HSE cyber attack was a "landmark event" in Ireland - has it learned from the experience? π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The HSE cyber attack in 2021 was one of the worst security incidents in Irish history, but three years on, has the health service learned from its mistakes?.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
The HSE cyber attack was a "landmark event" in Ireland - has it learned from the experience?
The HSE cyber attack in 2021 was one of the worst security incidents in Irish history, but three years on, has the health service learned from its mistakes?
π΅οΈββοΈ Heartbleed: When Is It Good to Name a Vulnerability? π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Ten years have passed since Heartbleed was first identified, but the security industry is still grappling with the question of branded vulnerabilities and naming vulnerabilities appropriately.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Heartbleed: When Is It Good to Name a Vulnerability?
Ten years have passed since Heartbleed was first identified, but the security industry is still grappling with the question of branded vulnerabilities and naming vulnerabilities appropriately.
π§ Overheard at RSA Conference 2024: Top trends cybersecurity experts are talking about π§
π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
At a brunch roundtable, one of the many informal events held during the RSA Conference 2024 RSAC, the conversation turned to the most popular trends and themes at this years events. There was no disagreement in what people presenting sessions or companies on the Expo show floor were talking about RSAC 2024 is all about The post Overheard at RSA Conference 2024 Top trends cybersecurity experts are talking about appeared first on Security Intelligence.π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
Security Intelligence
Overheard at RSA Conference 2024: Top trends cybersecurity experts are talking about
Dive into the top takeaways from the RSA Conference 2024 (RSAC).
ποΈ Critical Flaws in Cacti Framework Could Let Attackers Execute Malicious Code ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The maintainers of the Cacti opensource network monitoring and fault management framework have addressed a dozen security flaws, including two critical issues that could lead to the execution of arbitrary code. The most severe of the vulnerabilities are listed below CVE202425641 CVSS score 9.1 An arbitrary file write vulnerability in the "Package Import" feature that.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π΅οΈββοΈ There Is No Cyber Labor Shortage π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
There are plenty of valuable candidates on the market. Hiring managers are simply looking in the wrong places.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
There Is No Cyber Labor Shortage
There are plenty of valuable candidates on the market. Hiring managers are simply looking in the wrong places.
π Russian Actors Weaponize Legitimate Services in Multi-Malware Attack π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Recorded Future details a novel campaign that abuses legitimate internet services to deploy multiple malware variants for credential theft.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Russian Actors Weaponize Legitimate Services in Multi-Malware Attack
Recorded Future details a novel campaign that abuses legitimate internet services to deploy multiple malware variants for credential theft
π΅οΈββοΈ DNS Tunneling Abuse Expands to Tracking & Scanning Victims π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Several campaigns are leveraging the evasive tactic to provide useful insights into victims' online activities and find new ways to compromise organizations.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
DNS Tunneling Abuse Expands to Tracking & Scanning Victims
Several campaigns are leveraging the evasive tactic to provide useful insights into victims' online activities, and find new ways to compromise organizations.
π½ Microsoft Upgrades Outlook Spam Filter with AI, Phishing Protection π½
π Read more.
π Via "BE3SEC"
----------
ποΈ Seen on @cibsecurity
Microsoft has announced significant improvements to its spam filtering capabilities within Outlook, aiming to reduce the amount of unwanted emails reaching users inboxes. These enhancements leverage artificial intelligence AI and machine learning to better identify and block spam messages, providing a cleaner and more productive email experience. Key Improvements Improved.π Read more.
π Via "BE3SEC"
----------
ποΈ Seen on @cibsecurity
Be4Sec
Microsoft Upgrades Outlook Spam Filter with AI, Phishing Protection
Microsoft has announced significant improvements to its spam filtering capabilities within Outlook, aiming to reduce the amount of unwanted emails reaching usersβ inboxes. These enhancements β¦
β€1
ποΈ New Chrome Zero-Day Vulnerability CVE-2024-4761 Under Active Exploitation ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Google on Monday shipped emergency fixes to address a new zeroday flaw in the Chrome web browser that has come under active exploitation in the wild. The highseverity vulnerability, tracked as CVE20244761, is an outofbounds write bug impacting the V8 JavaScript and WebAssembly engine. It was reported anonymously on May 9, 2024. Outofbounds write bugs could be typically.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π China Presents Defining Challenge to Global Cybersecurity, Says GCHQ π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
GCHQ chief warns China's cyber actions threaten global internet security, while Russia and Iran pose immediate risks.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
China Presents Defining Challenge to Global Cybersecurity, Says GCHQ
GCHQ chief warns China's cyber actions threaten global internet security, while Russia and Iran pose immediate risks
π 44% of Cybersecurity Professionals Struggle with Regulatory Compliance π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Europe research highlights significant challenges faced by organisations in staying up to speed with increasing compliance requirements.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
44% of Cybersecurity Professionals Struggle with Regulatory Compliance
Infosecurity Europe research highlights significant challenges faced by organisations in staying up to speed with increasing compliance requirements
β€1