πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
26.7K subscribers
89.8K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
πŸ–‹οΈ FakeBat Loader Malware Spreads Widely Through Drive-by Download Attacks πŸ–‹οΈ

The loaderasaservice LaaS known as FakeBat has become one of the most widespread loader malware families distributed using the driveby download technique this year, findings from Sekoia reveal. "FakeBat primarily aims to download and execute the nextstage payload, such as IcedID, Lumma, RedLine, SmokeLoader, SectopRAT, and Ursnif," the company said in a Tuesday analysis. Driveby attacks.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Israeli Entities Targeted by Cyberattack Using Donut and Sliver Frameworks πŸ–‹οΈ

Cybersecurity researchers have discovered an attack campaign that targets various Israeli entities with publiclyavailable frameworks like Donut and Sliver. The campaign, believed to be highly targeted in nature, "leverage targetspecific infrastructure and custom WordPress websites as a payload delivery mechanism, but affect a variety of entities across unrelated verticals, and rely on.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ South Korean ERP Vendor's Server Hacked to Spread Xctdoor Malware πŸ–‹οΈ

An unnamed South Korean enterprise resource planning ERP vendor's product update server has been found to be compromised to deliver a Gobased backdoor dubbed Xctdoor. The AhnLab Security Intelligence Center ASEC, which identified the attack in May 2024, did not attribute it to a known threat actor or group, but noted that the tactics overlap with that of Andariel, a subcluster within the.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸš€ AI in the workplace: The good, the bad, and the algorithmic πŸš€

While AI can liberate us from tedious tasks and even eliminate human error, it's crucial to remember its weaknesses and the unique capabilities that humans bring to the table.

πŸ“– Read more.

πŸ”— Via "ESET - WeLiveSecurity"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” New RUSI Report Exposes Psychological Toll of Ransomware, Urges Action πŸ“”

A new report reveals the hidden mental health toll of ransomware attacks on victims, urging a focus on wellbeing alongside data and system recovery.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” APP Fraud Singled Out as Biggest Financial Crime Threat πŸ“”

Payments professionals have highlighted authorized push payment APP fraud as the top threat facing businesses and consumers.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Dozens of Arrests Disrupt €2.5m Vishing Gang πŸ“”

Police have arrested 54 suspected members of a vishing group who stole the life savings of scores of victims.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ The Emerging Role of AI in Open-Source Intelligence πŸ–‹οΈ

Recently the Office of the Director of National Intelligence ODNI unveiled a new strategy for opensource intelligence OSINT and referred to OSINT as the INT of first resort. Public and private sector organizations are realizing the value that the discipline can provide but are also finding that the exponential growth of digital data in recent years has overwhelmed many traditional OSINT.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ‘1
πŸ“’ SMB security gaps drive new opportunities for channel players πŸ“’

Small and mediumsized enterprises are becoming a growing target for cybercriminals, struggling to protect an expanding attack surface heres how the channel can help.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
🧠 Does your business have an AI blind spot? Navigating the risks of shadow AI 🧠

With AI now an integral part of business operations, shadow AI has become the next frontier in information security. Heres what that means for managing risk. For many organizations, 2023 was the breakout year for generative AI. Now, large language models LLMs like ChatGPT have become household names. In the business world, theyre already deeply The post Does your business have an AI blind spot? Navigating the risks of shadow AI appeared first on Security Intelligence.

πŸ“– Read more.

πŸ”— Via "Security Intelligence"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Half of Employees Fear Punishment for Reporting Security Mistakes πŸ“”

A ThinkCyber survey conducted at Infosecurity Europe 2024 found that half of employees are afraid of reporting security mistakes.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Friend or Foe? AI's Complicated Role in Cybersecurity πŸ•΅οΈβ€β™‚οΈ

Staying informed about the latest AI security solutions and best practices is critical in remaining a step ahead of increasingly clever cyberattacks.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Intel CPUs Face Spectre-Like 'Indirector' Attack That Leaks Data πŸ•΅οΈβ€β™‚οΈ

"Indirector" targets a speculative execution component in silicon that previous research has largely overlooked.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Cyber Extortion Soars: SMBs Hit Four Times Harder πŸ“”

Orange Cyberdefenses latest CyXplorer report shows a 77 rise in cyber extortion, with SMBs impacted 4.2 times more often than large enterprises.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Millions of Apple Applications Were Vulnerable to CocoaPods Supply Chain Attack 🦿

The vulnerabilities have since been patched, but had quietly persisted since the CocoaPods migration in 2014.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Microsoft Uncovers Major Flaws in Rockwell PanelView Plus πŸ“”

The vulnerabilities stem from manipulable custom classes in PanelView Plus.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ The impact of generative AI on business πŸ“’

Optimal and speedy GenAI computing performance.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Ransomware Extortion Demands Soar to $5.2M per Attack πŸ•΅οΈβ€β™‚οΈ

The highest ransom demanded by threat actors this year so far was nearly 20 times last year's average.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ This new ransomware group has been calling up victims to pressure them into paying – and it could be their downfall πŸ“’

A new ransomware group has ditched the traditional leak site in favor of calling up their victims to pressure them into paying, but this could give law enforcement the extra info they need.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Critical vulnerabilities left millions of Apple devices at the mercy of hackers – and nobody noticed for nearly a decade πŸ“’

Apple devices could've been susceptible to supply chain attacks after three critical vulnerabilities went unnoticed for nearly a decade.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Any IoT Device Can Be Hacked, Even Grills πŸ•΅οΈβ€β™‚οΈ

Researchers uncover a way to hack the summer cookout but firmware updates will stop that grilled meat or tofu from turning into an inedible mess.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity