📔 Coffee Lovers Warned of New Starbucks Phishing Scam 📔
📖 Read more.
🔗 Via "Infosecurity Magazine"
----------
👁️ Seen on @cibsecurity
Phishing emails claiming to be from Starbucks are offering recipients a "free Coffee Lovers Box" in an attempt to steal personal or install malware on devices.📖 Read more.
🔗 Via "Infosecurity Magazine"
----------
👁️ Seen on @cibsecurity
Infosecurity Magazine
Coffee Lovers Warned of New Starbucks Phishing Scam
Phishing emails claiming to be from Starbucks are offering recipients a
🦅 Critical Vulnerability in Veeam Products Exploited by Ransomware Gangs 🦅
📖 Read more.
🔗 Via "CYBLE"
----------
👁️ Seen on @cibsecurity
Key Takeaways A critical vulnerability, CVE202440711, was discovered in Veeam Backup Replication, allowing unauthenticated remote code execution. CVE202440711 has a CVSS score of 9.8, indicating an urgent need for remediation due to its severity. Threat actors are actively exploiting this vulnerability to deploy Akira and Fog ransomware. Veeam issued security updates to address these vulnerabilities in early September 2024. Multiple Veeam products were also affected by different vulnerabilities, including Veeam Backup Replication, Veeam ONE, and Veeam Agent for Linux, among others. Organizations are urged to implement regular update protocols, enhance monitoring, and develop incident response plans to mitigate risks. Overview Threat actors have exploited a re...📖 Read more.
🔗 Via "CYBLE"
----------
👁️ Seen on @cibsecurity
Cyble
Ransomware Gangs Exploit Critical Vulnerability In Veeam
Critical vulnerability CVE-2024-40711 in Veeam Backup exploited for ransomware. Patch released in Sept 2024. Urgent update needed to prevent further attacks.
🕵️♂️ Cyber Gangs Aren't Afraid of Prosecution 🕵️♂️
📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
Challenges with cybercrime prosecution are making it easier for attackers to act with impunity. Law enforcement needs to catch up.📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
Darkreading
Cyber Gangs Aren't Afraid of Prosecution
Challenges with cybercrime prosecution are making it easier for attackers to act with impunity. Law enforcement needs to catch up.
🦿 Zscaler Report: Mobile, IoT, and OT Cyber Threats Surge in 2024 🦿
📖 Read more.
🔗 Via "Tech Republic"
----------
👁️ Seen on @cibsecurity
A new report reveals a 2024 surge in mobile, IoT, and OT cyberattacks, highlighting key trends and the need for zerotrust security.📖 Read more.
🔗 Via "Tech Republic"
----------
👁️ Seen on @cibsecurity
TechRepublic
Zscaler Report: Mobile, IoT, and OT Cyber Threats Surge in 2024
A new report reveals a surge in mobile, IoT, and OT cyberattacks, highlighting key trends and the need for zero-trust security.
🦿 7 Security and Compliance Tips From ISC2 Security Congress 🦿
📖 Read more.
🔗 Via "Tech Republic"
----------
👁️ Seen on @cibsecurity
An IT and security compliance analyst distilled seven ways to forge effective synergies between IT and broader business goals.📖 Read more.
🔗 Via "Tech Republic"
----------
👁️ Seen on @cibsecurity
TechRepublic
7 Security and Compliance Tips From ISC2 Security Congress
An IT and security compliance analyst distilled seven ways to forge effective synergies between IT and broader business goals.
🕵️♂️ Hybrid Work Exposes New Vulnerabilities in Print Security 🕵️♂️
📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
The shift to a distributed work model has exposed organizations to new threats, and a low but continuing stream of printerrelated vulnerabilities isn't helping.📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
Darkreading
Hybrid Work Exposes New Vulnerabilities in Print Security
The shift to a distributed work model has exposed organizations to new threats, and a low but continuing stream of printer-related vulnerabilities isn't helping.
🕵️♂️ Bad Actors Manipulate Red-Team Tools to Evade Detection 🕵️♂️
📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
By using EDRSilencer, threat actors are able to prevent security alerts and reports getting generated.📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
Darkreading
Bad Actors Manipulate Red-Team Tools to Evade Detection
By using EDRSilencer, threat actors are able to prevent security alerts and reports getting generated.
🕵️♂️ Chinese Researchers Tap Quantum to Break Encryption 🕵️♂️
📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
But the time when quantum computers pose a tangible threat to modern encryption is likely still several years away.📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
Darkreading
Chinese Researchers Tap Quantum to Break Encryption
But the time when quantum computers pose a tangible threat to modern encryption is likely still several years away.
🕵️♂️ Iran's APT34 Abuses MS Exchange to Spy on Gulf Gov'ts 🕵️♂️
📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
A MOISaligned threat group has been using Microsoft Exchange servers to exfiltrate sensitive data from Gulfstate government agencies.📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
Dark Reading
Iran's APT34 Abuses MS Exchange
A MOIS-aligned threat group has been using Microsoft Exchange servers to exfiltrate sensitive data.
🖋️ Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk 🖋️
📖 Read more.
🔗 Via "The Hacker News"
----------
👁️ Seen on @cibsecurity
A critical security flaw has been disclosed in the Kubernetes Image Builder that, if successfully exploited, could be abused to gain root access under certain circumstances. The vulnerability, tracked as CVE20249486 CVSS score 9.8, has been addressed in version 0.1.38. The project maintainers acknowledged Nicolai Rybnikar for discovering and reporting the vulnerability. "A security issue.📖 Read more.
🔗 Via "The Hacker News"
----------
👁️ Seen on @cibsecurity
📔 NIS2 Confusion: Concerns Over Readiness as Deadline Reached 📔
📖 Read more.
🔗 Via "Infosecurity Magazine"
----------
👁️ Seen on @cibsecurity
NIS2 will be enforced as of October 17, yet many organizations and even EU member states appear completely unprepared for implementation.📖 Read more.
🔗 Via "Infosecurity Magazine"
----------
👁️ Seen on @cibsecurity
Infosecurity Magazine
NIS2 Confusion: Concerns Over Readiness as Deadline Reached
NIS2 will be enforced as of October 17, yet many organizations and even EU member states appear completely unprepared for implementation
📔 CISA Seeks Feedback on Upcoming Product Security Flaws Guidance 📔
📖 Read more.
🔗 Via "Infosecurity Magazine"
----------
👁️ Seen on @cibsecurity
CISA is asking for feedback on future guidance outlining bad security practices in product development as part of its Secure by Design initiative.📖 Read more.
🔗 Via "Infosecurity Magazine"
----------
👁️ Seen on @cibsecurity
Infosecurity Magazine
CISA Seeks Feedback on Upcoming Product Security Flaws Guidance
CISA is asking for feedback on future guidance outlining bad security practices in product development as part of its Secure by Design initiative
📢 96% of SMBs are missing critical cybersecurity skills – here's why 📢
📖 Read more.
🔗 Via "ITPro"
----------
👁️ Seen on @cibsecurity
The skills shortage hits SMBs worse as they often suffer from a lack of budget and resources.📖 Read more.
🔗 Via "ITPro"
----------
👁️ Seen on @cibsecurity
ITPro
96% of SMBs are missing critical cybersecurity skills – here's why
The skills shortage hits SMBs worse as they often suffer from a lack of budget and resources
🖋️ U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks 🖋️
📖 Read more.
🔗 Via "The Hacker News"
----------
👁️ Seen on @cibsecurity
Federal prosecutors in the U.S. have charged two Sudanese brothers with running a distributed denialofservice DDoS botnet for hire that conducted a record 35,000 DDoS attacks in a single year, including those that targeted Microsoft's services in June 2023. The attacks, which were facilitated by Anonymous Sudan's "powerful DDoS tool," singled out critical infrastructure, corporate networks,.📖 Read more.
🔗 Via "The Hacker News"
----------
👁️ Seen on @cibsecurity
📔 RansomHub Overtakes LockBit as Most Prolific Ransomware Group 📔
📖 Read more.
🔗 Via "Infosecurity Magazine"
----------
👁️ Seen on @cibsecurity
Symantec data reveals RansomHub claimed more attacks than any other group in Q3 2024.📖 Read more.
🔗 Via "Infosecurity Magazine"
----------
👁️ Seen on @cibsecurity
Infosecurity Magazine
RansomHub Overtakes LockBit as Most Prolific Ransomware Group
Symantec data reveals RansomHub claimed more attacks than any other group in Q3 2024
📔 Two-thirds of Attributable Malware Linked to Nation States 📔
📖 Read more.
🔗 Via "Infosecurity Magazine"
----------
👁️ Seen on @cibsecurity
Netskope claims 66 of malware attacks last year were backed by nation states.📖 Read more.
🔗 Via "Infosecurity Magazine"
----------
👁️ Seen on @cibsecurity
Infosecurity Magazine
Two-thirds of Attributable Malware Linked to Nation States
Netskope claims 66% of malware attacks last year were backed by nation states
🕵️♂️ Is a CPO Still a CPO? The Evolving Role of Privacy Leadership 🕵️♂️
📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
Has the role of chief privacy officer become something more than it was? And is it still a role that just one person can handle?.📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
Darkreading
Is a CPO Still a CPO? Privacy Leadership's Evolving Role
Has the role of chief privacy officer become something more than it was? And is it still a role that just one person can handle?
❤1👍1
🦿 NIS 2 Compliance Deadline Arrives: What You Need to Know 🦿
📖 Read more.
🔗 Via "Tech Republic"
----------
👁️ Seen on @cibsecurity
The NIS 2 compliance deadline is Oct. 17. Discover essential insights on requirements, impacts, and what organisations must do now.📖 Read more.
🔗 Via "Tech Republic"
----------
👁️ Seen on @cibsecurity
TechRepublic
NIS 2 Compliance Deadline Arrives: What You Need to Know
The NIS 2 compliance deadline is Oct. 17. Discover essential insights on requirements, impacts, and what organisations must do now.
📢 Fortify your future with HPE ProLiant Servers powered by Intel 📢
📖 Read more.
🔗 Via "ITPro"
----------
👁️ Seen on @cibsecurity
Enhance your security and manage your servers more effectively.📖 Read more.
🔗 Via "ITPro"
----------
👁️ Seen on @cibsecurity
ITPro
Fortify your future with HPE ProLiant Servers powered by Intel
Enhance your security and manage your servers more effectively
👍1
🕵️♂️ 4 Ways to Address Zero-Days in AI/ML Security 🕵️♂️
📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
As the unique challenges of AI zerodays emerge, the approach to managing the accompanying risks needs to follow traditional security best practices but be adapted for AI.📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
Darkreading
4 Ways to Address Zero-Days in AI/ML Security
As the unique challenges of AI zero-days emerge, the approach to managing the accompanying risks needs to follow traditional security best practices but be adapted for AI.
🕵️♂️ Anonymous Sudan Unmasked as Leaders Face Life in Prison 🕵️♂️
📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
US officials disrupted the group's DDoS operation and arrested two individuals behind it, who turned out to be far less intimidating than they were made out to be in the media.📖 Read more.
🔗 Via "Dark Reading"
----------
👁️ Seen on @cibsecurity
Darkreading
Anonymous Sudan Unmasked as Leader Faces Life in Prison
US officials disrupted the cyber threat group's DDoS operation and arrested two individuals behind it, who turned out to be far less intimidating than they were made out to be in the media.