π¦Ώ UK Considers Banning Ransomware Payments π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
The proposed mandate intends to discourage criminals from targeting critical national infrastructure and public services, as there will be no financial motivation.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
UK Considers Banning Ransomware Payments
The U.K. government is considering banning ransomware payments to make critical industries βunattractive targets for criminals.β
π¦Ώ Patch Tuesday: January 2025 Security Update Patches Exploited Elevation of Privilege Attacks π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Microsofts monthly patches cover HyperV NT Kernel Integration VSPs, Git in Visual Studio, and more.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Patch Tuesday: January 2025 Security Update Patches Exploited Elevation of Privilege Attacks
Microsoftβs monthly patches cover Hyper-V NT Kernel Integration VSPs, Git in Visual Studio, and more.
π CISA Launches Playbook to Boost AI Cybersecurity Collaboration π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
CISA launched the JCDC AI Cybersecurity Playbook to enhance collaboration on AI cybersecurity risks.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
CISA Launches Playbook to Boost AI Cybersecurity Collaboration
CISA launched the JCDC AI Cybersecurity Playbook to enhance collaboration on AI cybersecurity risks
π¦Ώ 5 Emerging AI Threats Australian Cyber Pros Must Watch in 2025 π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
AI cloning and deepfakes rank among the top challenges for Australian cybersecurity professionals in 2025.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
5 Emerging AI Threats Australian Cyber Pros Must Watch in 2025
AI cloning and deepfakes rank among the top challenges for Australian cybersecurity professionals in 2025.
β€1
ποΈ Google Ads Users Targeted in Malvertising Scam Stealing Credentials and 2FA Codes ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have alerted to a new malvertising campaign that's targeting individuals and businesses advertising via Google Ads by attempting to phish for their credentials via fraudulent ads on Google. "The scheme consists of stealing as many advertiser accounts as possible by impersonating Google Ads and redirecting victims to fake login pages," Jrme Segura, senior director of.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Lazarus Group Targets Web3 Developers with Fake LinkedIn Profiles in Operation 99 ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The North Korealinked Lazarus Group has been attributed to a new cyber attack campaign dubbed Operation 99 that targeted software developers looking for freelance Web3 and cryptocurrency work to deliver malware. "The campaign begins with fake recruiters, posing on platforms like LinkedIn, luring developers with project tests and code reviews," Ryan Sherstobitoff, senior vice president of Threat.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π1
π΅οΈββοΈ Attackers Hijack Google Advertiser Accounts to Spread Malware π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
It's an especially brazen form of malvertising, researchers say, striking at the heart of Google's business the tech giant says it's aware of the issue and is working quickly to address the problem.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
ποΈ Python-Based Malware Powers RansomHub Ransomware to Exploit Network Flaws ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have detailed an attack that involved a threat actor utilizing a Pythonbased backdoor to maintain persistent access to compromised endpoints and then leveraged this access to deploy the RansomHub ransomware throughout the target network. According to GuidePoint Security, initial access is said to have been facilitated by means of a JavaScript malware downloaded named.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Researcher Uncovers Critical Flaws in Multiple Versions of Ivanti Endpoint Manager ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Ivanti has rolled out security updates to address several security flaws impacting Avalanche, Application Control Engine, and Endpoint Manager EPM, including four critical bugs that could lead to information disclosure. All the four critical security flaws, rated 9.8 out of 10.0 on the CVSS scale, are rooted in EPM, and concern absolute path traversal flaws that allow a remote unauthenticated.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π EU To Launch New Support Centre by 2026 to Boost Healthcare Cybersecurity π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A new EU action plan will be structured around four pillars prevention, threat detection and identification, response to cyberattacks and deterrence.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
EU To Launch New Support Centre by 2026 to Boost Healthcare Cybersecurity
A new EU action plan will be structured around four pillars: prevention, threat detection and identification, response to cyber-attacks and cyber deterrence
π’ Personal data compromised in Gateshead Council cyber attack π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The Medusa ransomware group has claimed responsibility for the attack.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Personal data compromised in Gateshead Council cyber attack
The Medusa ransomware group has claimed responsibility for the attack
π’ US authorities just purged malware from thousands of devices across the world π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
After taking control of the PlugX malwares commandandcontrol server, the coalition were able to trigger a selfdelete mechanism to remove the malicious program.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
US authorities just purged malware from thousands of devices across the world
After taking control of the PlugX malwareβs command-and-control server, the coalition were able to trigger a self-delete mechanism to remove the malicious program
π΅οΈββοΈ Risk, Reputational Scores Enjoy Mixed Success as Security Tools π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Part predictive analysis, part intuition, risk and reputation services are imperfect instruments at best and better than nothing for most organizations and insurers.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Risk, Reputational Scoring Services Enjoy Mixed Success
Part predictive analysis, part intuition, risk and reputation services are imperfect instruments at best β and better than nothing for most organizations and insurers.
π΅οΈββοΈ Trusted Apps Sneak a Bug Into the UEFI Boot Process π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Seven system recovery programs contained what amounted to a backdoor for injecting any untrusted file into the system startup process.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Trusted Apps Sneak a Bug Into UEFI Boot Process
Seven system recovery programs contained what amounted to a backdoor for injecting any untrusted file into the system startup process.
π΅οΈββοΈ CISA's AI Playbook Pushes For More Information Sharing π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The Joint Cyber Defense Collaborative playbook seeks to establish a "a unified approach" on how to handle AIrelated cybersecurity threats.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
CISA's AI Playbook Pushes For More Information Sharing
The Joint Cyber Defense Collaborative playbook seeks to establish a "a unified approach" on how to handle AI-related cybersecurity threats.
π§ The current state of ransomware: Weaponizing disclosure rules and more π§
π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
As we near the end of 2024, ransomware remains a dominant and evolving threat against any organization. Cyber criminals are more sophisticated and creative than ever. They integrate new technologies, leverage geopolitical tensions and even use legal regulations to their advantage. What once seemed like a disruptive but relatively straightforward crime has evolved into a The post The current state of ransomware Weaponizing disclosure rules and more appeared first on Security Intelligence.π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
Security Intelligence
The current state of ransomware: Weaponizing disclosure rules and more
Cyber criminals are changing tactics, relying on AI technology and exploiting legal frameworks β and the cost of ransomware attacks continues to rise.
ποΈ Ready to Simplify Trust Management? Join Free Webinar to See DigiCert ONE in Action ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The digital world is exploding. IoT devices are multiplying like rabbits, certificates are piling up faster than you can count, and compliance requirements are tightening by the day. Keeping up with it all can feel like trying to juggle chainsaws while riding a unicycle. Traditional trust management? Forget it. It's simply not built for today's fastpaced, hybrid environments. You need a.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ The $10 Cyber Threat Responsible for the Biggest Breaches of 2024 ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
You can tell the story of the current state of stolen credentialbased attacks in three numbers Stolen credentials were the 1 attacker action in 202324, and the breach vector for 80 of web app attacks. Source Verizon. Cybersecurity budgets grew again in 2024, with organizations now spending almost 1,100 per user Source Forrester. Stolen credentials on criminal forums cost as.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ New UEFI Secure Boot Vulnerability Could Allow Attackers to Load Malicious Bootkits ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Details have emerged about a nowpatched security vulnerability that could allow a bypass of the Secure Boot mechanism in Unified Extensible Firmware Interface UEFI systems. The vulnerability, assigned the CVE identifier CVE20247344 CVSS score 6.7, resides in a UEFI application signed by Microsoft's "Microsoft Corporation UEFI CA 2011" thirdparty UEFI certificate, according to a new.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Researchers Find Exploit Allowing NTLMv1 Despite Active Directory Restrictions ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have found that the Microsoft Active Directory Group Policy that's designed to disable NT LAN Manager NTLM v1 can be trivially bypassed by a misconfiguration. "A simple misconfiguration in onpremise applications can override the Group Policy, effectively negating the Group Policy designed to stop NTLMv1 authentications," Silverfort researcher Dor Segal said in a.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Hackers Hide Malware in Images to Deploy VIP Keylogger and 0bj3ctivity Stealer ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Threat actors have been observed concealing malicious code in images to deliver malware such as VIP Keylogger and 0bj3ctivity Stealer as part of separate campaigns. "In both campaigns, attackers hid malicious code in images they uploaded to archive.org, a filehosting website, and used the same .NET loader to install their final payloads," HP Wolf Security said in its Threat Insights Report.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity