π¦
The Commonwealth Cyber Security Posture 2024: A Deep Dive into Australiaβs Cyber Defense Measures π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Overview The Australian Government has shared its latest report for commonwealth cyber security. The Commonwealth Cyber Security Posture in 2024 report provides an essential update on the measures and progress related to cyber security across Australian Government entities. Tabled before the Australian Parliament, the report is a key tool for understanding the implementation and effectiveness of cyber security protocols for the 202324 financial year. As part of the government's ongoing efforts to protect national security, public trust, and the economy, the Commonwealth Cyber Security Posture in 2024 highlights areas of improvement, challenges, and recommendations for enhancing Australia's cyber defenses. According to the report, the Australian Government consists of 1002 noncorp...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Australiaβs Commonwealth Cyber Security Posture 2024
The 2024 Commonwealth Cyber Security Posture report highlights key updates, progress, and recommendations to strengthen Australiaβs cybersecurity.
ποΈ Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have shed light on a new remote access trojan called NonEuclid that allows bad actors to remotely control compromised Windows systems. "The NonEuclid remote access trojan RAT, developed in C, is a highly sophisticated malware offering unauthorised remote access with advanced evasion techniques," Cyfirma said in a technical analysis published last week. "It employs.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Scammers Exploit Microsoft 365 to Target PayPal Users π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A new PayPal phishing scam used genuine money requests, bypassing security checks to deceive recipients.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Scammers Exploit Microsoft 365 to Target PayPal Users
PayPal phishing scam used genuine money requests, bypassing security checks to deceive recipients
π§ Cloud threat report: Why have SaaS platforms on dark web marketplaces decreased? π§
π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
IBMs XForce team recently released the latest edition of the Cloud Threat Landscape Report for 2024, providing a comprehensive outlook on the rise of cloud infrastructure adoption and its associated risks. One of the key takeaways of this years report was focused on the gradual decrease in SoftwareasaService SaaS platforms being mentioned across dark web The post Cloud threat report Why have SaaS platforms on dark web marketplaces decreased? appeared first on Security Intelligence.π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
Security Intelligence
Cloud threat report: Why have SaaS platforms on dark web marketplaces decreased?
Does the decrease in SaaS platforms on dark web marketplaces suggest that cloud platforms are increasing their defenses? There are more factors to consider.
π΅οΈββοΈ Best Practices & Risks Considerations in LCNC and RPA Automation π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Lowcodenocode LCNC and robotic process automation RPA technologies allow companies to speed up development processes and reduce costs, but security is often overlooked. When this happens, the risks can outweigh the benefits.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Best Practices in LCNC & RPA Automation
Low-code/no-code (LCNC) and robotic process automation (RPA) technologies allow companies to speed up development processes and reduce costs, but security is often overlooked. When this happens, the risks can outweigh the benefits.
π US Launches Cyber Trust Mark for IoT Devices π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The voluntary Cyber Trust Mark labeling program will allow consumers to assess the cybersecurity of IoT devices when making purchasing decisions.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
US Launches Cyber Trust Mark for IoT Devices
The voluntary Cyber Trust Mark labeling program will allow consumers to assess the cybersecurity of IoT devices when making purchasing decisions
π΅οΈββοΈ Unconventional Cyberattacks Aim to Take Over PayPal Accounts π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Attackers are abusing a Microsoft 365 feature to send payment requests to users, tricking them into logging in to their accounts so attackers can seize control over them.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Unconventional Cyberattacks Aim for PayPal Account Takeover
Attackers are abusing a Microsoft 365 feature to send payment requests to users, tricking them into logging in to their accounts so attackers can seize control over them.
π΅οΈββοΈ New Docuseries Spotlights Hackers Who Shaped Cybersecurity π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
"Where Warlocks Stay Up Late" project speaks to hackers who have played pivotal roles in shaping the field of cybersecurity. The video interviews are complemented by an encyclopedia and an anthropological map.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
New Docuseries Spotlights Hackers Who Helped Shape Cybersecurity
"Where Warlocks Stay Up Late" project speaks to hackers who have played pivotal roles in shaping the field of cybersecurity. The video interviews are complemented by an encyclopedia and an anthropological map.
π¦Ώ US to Launch Cyber Trust Mark to Label Secure Smart Devices π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
The Cyber Trust Mark shows which devices meet FCC security standards.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
US to Launch Cyber Trust Mark to Label Secure Smart Devices
The Cyber Trust Mark will help consumers make more informed decisions about the cybersecurity of products, according to the White House.
ποΈ Neglected Domains Used in Malspam to Evade SPF and DMARC Security Protections ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have found that bad actors are continuing to have success by spoofing sender email addresses as part of various malspam campaigns. Faking the sender address of an email is widely seen as an attempt to make the digital missive more legitimate and get past security mechanisms that could otherwise flag it as malicious. While there are safeguards such as DomainKeys.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π΅οΈββοΈ Fed 'Cyber Trust' Label: Good Intentions That Fall Short π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The voluntary program is intended to boost consumer confidence in vulnerable IoT devices, but experts want to see vendors held to a higher standard.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Fed 'Cyber Trust' Label: Good Intentions Fall Short
The voluntary program is intended to boost consumer confidence in vulnerable IoT devices, but experts want to see vendors held to a higher standard.
π΅οΈββοΈ Green Bay Packers' Online Pro Shop Sacked by Payment Skimmer π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Cyberattackers injected the NFL Wild Card team's online Pro Shop with malicious code to steal creditcard data from 8,500 fans.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Green Bay Packers Fans Sacked by Online Payment Skimmer
Cyberattackers injected the NFL Wild Card team's online Pro Shop with malicious code to steal credit card data from 8,500 fans.
π΅οΈββοΈ India Readies Overhauled National Data Privacy Rules π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The country awaits implementation guidelines for a framework that gives Indians greater autonomy and security over their personal data and recognizes a right to personal privacy.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
India Readies Overhauled National Data Privacy Rules
The country awaits implementation guidelines for a framework that gives Indians greater autonomy and security over their personal data β and recognizes a right to personal privacy.
ποΈ Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Ivanti is warning that a critical security flaw impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways has come under active exploitation in the wild beginning midDecember 2024. The security vulnerability in question is CVE20250282 CVSS score 9.0, a stackbased buffer overflow that affects Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Ivanti Flaw CVE-2025-0282 Actively Exploited, Impacts Connect Secure and Policy Secure ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Ivanti is warning that a critical security flaw impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways has come under active exploitation in the wild beginning midDecember 2024. The security vulnerability in question is CVE20250282 CVSS score 9.0, a stackbased buffer overflow that affects Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ E.U. Commission Fined for Transferring User Data to Meta in Violation of Privacy Laws ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The European General Court on Wednesday fined the European Commission, the primary executive arm of the European Union responsible for proposing and enforcing laws for member states, for violating the bloc's own data privacy regulations. The development marks the first time the Commission has been held liable for infringing stringent data protection laws in the region. The court determined that.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Green Bay Packers Pro Shop Data Breach Compromises Customers π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The Green Bay Packers disclosed on Monday that their official online store was breached and customer information stolen.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Green Bay Packers Pro Shop Data Breach Compromises Customers
The Green Bay Packers disclosed on Monday that their official online store was breached and customer information stolen
π Critical Ivanti Zero-Day Exploited in the Wild π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Ivanti customers are urged to patch two new bugs in the security vendor's products, one of which is being actively exploited.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Critical Ivanti Zero-Day Exploited in the Wild
Ivanti customers are urged to patch two new bugs in the security vendor's products, one of which is being actively exploited
β€1
π’ UK cyber experts on red alert after Salt Typhoon attacks on US telcos π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The UK could be next in a spate of statesponsored attacks on telecoms infrastructure.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
UK cyber experts on red alert after Salt Typhoon attacks on US telcos
The UK could be next in a spate of state-sponsored attacks on telecoms infrastructure
π’ China cyber threats: What businesses can do to protect themselves π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
As attacks from the likes of Salt Typhoon escalate, business leaders must take a proactive approach to improving their cyber capabilities.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
China cyber threats: What businesses can do to protect themselves
As attacks from the likes of Salt Typhoon escalate, business leaders must take a proactive approach to improving their cyber capabilities
π’ "Thinly spread": Questions raised over UK governmentβs latest cyber funding scheme π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The funding will go towards bolstering cyber skills, though some industry experts have questioned the size of the price tag.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
"Thinly spread": Questions raised over UK governmentβs latest cyber funding scheme
The funding will go towards bolstering cyber skills, though some industry experts have questioned the size of the price tag