πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
26.8K subscribers
89.8K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
πŸ–‹οΈ U.S. Treasury Sanctions 12 Kaspersky Executives Amid Software Ban πŸ–‹οΈ

The U.S. Department of the Treasury's Office of Foreign Assets Control OFAC imposed sanctions against a dozen individuals serving executive and senior leadership roles at Kaspersky Lab, a day after the Russian company was banned by the Commerce Department. The move "underscores our commitment to ensure the integrity of our cyber domain and to protect our citizens against malicious cyber.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸš€ The long-tail costs of a data breach – Week in security with Tony Anscombe πŸš€

Understanding and preparing for the potential longtail costs of data breaches is crucial for businesses that aim to mitigate the impact of security incidents.

πŸ“– Read more.

πŸ”— Via "ESET - WeLiveSecurity"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸͺ– NIST’s International Cybersecurity and Privacy Engagement Update – Mexico City, RSA Conference, and More πŸͺ–

The last few months have brought even more opportunities for NIST to engage with our international partners to enhance cybersecurity. Here are some updates on our recent international engagement Conversations have continued with our partners throughout the world on the recent release of the Cybersecurity Framework Version 2.0 . NIST international engagement continues through our support to the Department of State and the International Trade Administration ITA during numerous international dialogues. Most recently, NIST participated in interagency dialogues to share information on NIST.

πŸ“– Read more.

πŸ”— Via "NIST"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ LockBit says it hacked the Federal Reserve – but experts think we should take the claims with a pinch of salt πŸ“’

LockBit has added the US Federal Reserve to its leak site, claiming to have stolen 33TB of data, but some security experts arent convinced.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ‘Ž1
πŸ“’ Indonesian data center hack disrupts critical public services πŸ“’

Threat actors are seeking an 8 million ransom after taking down government systems.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ CDK Global was on the road to recovery after a ransomware attack – then it was hit a second time πŸ“’

CDK Global, a tech company supplying car dealers across North America, was breached after temporarily restoring systems impacted by a cyber attack.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ NIS 2 compliance with WatchGuard Technologies πŸ“’

WatchGuard whitepaper Demystifying NIS 2 requirements.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Wells Fargo firing staff for using 'mouse jiggler' tools raises questions over employee privacy, wellbeing πŸ“’

Wells Fargo is by no means the first company to crack down on mouse jigglers.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Financial services workers are facing a wave of deepfake scams – and it’s only going to get worse πŸ“’

Deepfake scams are surging, according to new research, as cyber criminals target csuite figures.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Google Workspace just got a slew of new zero trust features to help supercharge user security – here's what you need to know πŸ“’

New Zscaler integrations across Chrome Enterprise, Google Workspace, and Google Security Operations aim to enhance enterprise security and access.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Change Healthcare shares details on medical data stolen during disastrous February cyber attack πŸ“’

Those impacted by the Change Healthcare attack will be contacted and given advice on how to protect themselves.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ 'ChamelGang' APT Disguises Espionage Activities With Ransomware πŸ•΅οΈβ€β™‚οΈ

The Chinanexus cyberthreat actor has been operating since at least 2019 and has notched victims in multiple countries.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Fresh MOVEit Bug Under Attack Mere Hours After Disclosure πŸ•΅οΈβ€β™‚οΈ

The highseverity CVE20245806 allows cyberattackers to authenticate to the filetransfer platform as any valid user, with accompanying privileges.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Indonesia Refuses to Pay $8M Ransom After Cyberattack πŸ•΅οΈβ€β™‚οΈ

More than 200 regional and national government agencies have been impacted by the ransomware attack, and few of them are once again operational.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Threat Actor May Have Accessed Sensitive Info on CISA Chemical App πŸ•΅οΈβ€β™‚οΈ

An unknown adversary compromised a CISA app containing the data via a vulnerability in the Ivanti Connect Secure appliance this January.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ WordPress Supply Chain Attack Spreads Across Multiple Plug-ins πŸ•΅οΈβ€β™‚οΈ

Injected malicious JavaScript code gives attackers administrator rights on websites, and fills sites with SEO spam.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Key Takeaways From the British Library Cyberattack πŸ•΅οΈβ€β™‚οΈ

Knowledge institutions with legacy infrastructure, limited resources, and digitized intellectual property must protect themselves from sophisticated and destructive cyberattacks.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ 'P2PInfect' Worm Grows Teeth With Miner, Ransomware & Rootkit πŸ•΅οΈβ€β™‚οΈ

For a while, the botnet spread but did essentially nothing. All the malicious payloads came well after.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ China-Linked Cyber-Espionage Teams Target Asian Telecoms πŸ•΅οΈβ€β™‚οΈ

In the latest breaches, threat groups compromised telecommunications firms in at least two Asian nations, installing backdoors and possibly eavesdropping or prepositioning for a future attack.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ CDK Attack: Why Contingency Planning Is Critical for SaaS Customers πŸ•΅οΈβ€β™‚οΈ

Daily operations at some 15,000 automotive dealers remain impacted as CDK works to restore its dealer management system, following what appears to be a ransomware attack last week.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ What Building Application Security Into Shadow IT Looks Like πŸ•΅οΈβ€β™‚οΈ

AppSec is hard for traditional software development, let alone citizen developers. So how did two people resolve 70,000 vulnerabilities in three months?.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity