πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
26.8K subscribers
89.8K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
🦿 Gartner: 3 Actions to Achieve Cybersecurity Consolidation 🦿

In this TechRepublic exclusive, Gartner VP Analyst Dionisio Zumerle shares three leadership strategies for achieving cybersecurity platform consolidation.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ ExCobalt Cyber Gang Targets Russian Sectors with New GoRed Backdoor πŸ–‹οΈ

Russian organizations have been targeted by a cybercrime gang called ExCobalt using a previously unknown Golangbased backdoor known as GoRed. "ExCobalt focuses on cyber espionage and includes several members active since at least 2016 and presumably once part of the notorious Cobalt Gang," Positive Technologies researchers Vladislav Lunin and Alexander Badayev said in a technical report.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Warning: New Adware Campaign Targets Meta Quest App Seekers πŸ–‹οΈ

A new campaign is tricking users searching for the Meta Quest formerly Oculus application for Windows into downloading a new adware family called AdsExhaust. "The adware is capable of exfiltrating screenshots from infected devices and interacting with browsers using simulated keystrokes," cybersecurity firm eSentire said in an analysis, adding it identified the activity earlier this month. ".

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ U.S. Treasury Sanctions 12 Kaspersky Executives Amid Software Ban πŸ–‹οΈ

The U.S. Department of the Treasury's Office of Foreign Assets Control OFAC imposed sanctions against a dozen individuals serving executive and senior leadership roles at Kaspersky Lab, a day after the Russian company was banned by the Commerce Department. The move "underscores our commitment to ensure the integrity of our cyber domain and to protect our citizens against malicious cyber.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸš€ The long-tail costs of a data breach – Week in security with Tony Anscombe πŸš€

Understanding and preparing for the potential longtail costs of data breaches is crucial for businesses that aim to mitigate the impact of security incidents.

πŸ“– Read more.

πŸ”— Via "ESET - WeLiveSecurity"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸͺ– NIST’s International Cybersecurity and Privacy Engagement Update – Mexico City, RSA Conference, and More πŸͺ–

The last few months have brought even more opportunities for NIST to engage with our international partners to enhance cybersecurity. Here are some updates on our recent international engagement Conversations have continued with our partners throughout the world on the recent release of the Cybersecurity Framework Version 2.0 . NIST international engagement continues through our support to the Department of State and the International Trade Administration ITA during numerous international dialogues. Most recently, NIST participated in interagency dialogues to share information on NIST.

πŸ“– Read more.

πŸ”— Via "NIST"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ LockBit says it hacked the Federal Reserve – but experts think we should take the claims with a pinch of salt πŸ“’

LockBit has added the US Federal Reserve to its leak site, claiming to have stolen 33TB of data, but some security experts arent convinced.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ‘Ž1
πŸ“’ Indonesian data center hack disrupts critical public services πŸ“’

Threat actors are seeking an 8 million ransom after taking down government systems.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ CDK Global was on the road to recovery after a ransomware attack – then it was hit a second time πŸ“’

CDK Global, a tech company supplying car dealers across North America, was breached after temporarily restoring systems impacted by a cyber attack.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ NIS 2 compliance with WatchGuard Technologies πŸ“’

WatchGuard whitepaper Demystifying NIS 2 requirements.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Wells Fargo firing staff for using 'mouse jiggler' tools raises questions over employee privacy, wellbeing πŸ“’

Wells Fargo is by no means the first company to crack down on mouse jigglers.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Financial services workers are facing a wave of deepfake scams – and it’s only going to get worse πŸ“’

Deepfake scams are surging, according to new research, as cyber criminals target csuite figures.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Google Workspace just got a slew of new zero trust features to help supercharge user security – here's what you need to know πŸ“’

New Zscaler integrations across Chrome Enterprise, Google Workspace, and Google Security Operations aim to enhance enterprise security and access.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Change Healthcare shares details on medical data stolen during disastrous February cyber attack πŸ“’

Those impacted by the Change Healthcare attack will be contacted and given advice on how to protect themselves.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ 'ChamelGang' APT Disguises Espionage Activities With Ransomware πŸ•΅οΈβ€β™‚οΈ

The Chinanexus cyberthreat actor has been operating since at least 2019 and has notched victims in multiple countries.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Fresh MOVEit Bug Under Attack Mere Hours After Disclosure πŸ•΅οΈβ€β™‚οΈ

The highseverity CVE20245806 allows cyberattackers to authenticate to the filetransfer platform as any valid user, with accompanying privileges.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Indonesia Refuses to Pay $8M Ransom After Cyberattack πŸ•΅οΈβ€β™‚οΈ

More than 200 regional and national government agencies have been impacted by the ransomware attack, and few of them are once again operational.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Threat Actor May Have Accessed Sensitive Info on CISA Chemical App πŸ•΅οΈβ€β™‚οΈ

An unknown adversary compromised a CISA app containing the data via a vulnerability in the Ivanti Connect Secure appliance this January.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ WordPress Supply Chain Attack Spreads Across Multiple Plug-ins πŸ•΅οΈβ€β™‚οΈ

Injected malicious JavaScript code gives attackers administrator rights on websites, and fills sites with SEO spam.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Key Takeaways From the British Library Cyberattack πŸ•΅οΈβ€β™‚οΈ

Knowledge institutions with legacy infrastructure, limited resources, and digitized intellectual property must protect themselves from sophisticated and destructive cyberattacks.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ 'P2PInfect' Worm Grows Teeth With Miner, Ransomware & Rootkit πŸ•΅οΈβ€β™‚οΈ

For a while, the botnet spread but did essentially nothing. All the malicious payloads came well after.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity