π΅οΈββοΈ Trump Fires Cyber Safety Board Investigating Salt Typhoon Hackers π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
In a letter sent today, the acting DHS secretary terminated membership to all advisory boards, including the Cyber Safety Review Board CSRB tasked with investigating statesponsored cyber threats against the US.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Trump Fires DHS Board Probing Salt Typhoon Hacks
In a letter sent today, the acting DHS secretary terminated membership to all advisory boards, including the Cyber Safety Review Board tasked with investigating state-sponsored cyber threats against the US.
π΅οΈββοΈ Email Bombing, 'Vishing' Tactics Abound in Microsoft 365 Attacks π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Sophos noted more than 15 attacks have been reported during the past three months.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Microsoft 365 Subject to Email Bombing, 'Vishing' Attacks
Sophos noted more than 15 attacks have been reported during the past three months.
π΅οΈββοΈ DONOT Group Deploys Malicious Android Apps in India π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The advanced persistent threat APT group is likely Indiabased and targeting individuals with connections to the country's intelligence community.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
DONOT Group Deploys Malicious Android Apps in India
The advanced persistent threat (APT) group is likely India-based and targeting individuals with connections to the country's intelligence community.
π΅οΈββοΈ HPE Investigates After Alleged Data Breach π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The company reports that it is not experiencing any operational issues within its business, so far.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
HPE Investigates After Alleged Data Breach
The company reports that it is not experiencing any operational issues within its business, so far.
π΅οΈββοΈ Mirai Botnet Spinoffs Unleash Global Wave of DDoS Attacks π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Two separate campaigns are targeting flaws in various IoT devices globally, with the goal of compromising them and propagating malware worldwide.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Mirai Botnet Spinoffs Unleash Global DDoS Attack Wave
Two separate campaigns are targeting flaws in various IoT devices globally, with the goal of compromising them and propagating malware worldwide.
π¦Ώ βSneaky Logβ Microsoft Spoofing Scheme Sidesteps Two-Factor Security π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
The phishingasaservice kit from Sneaky Log creates fake authentication pages to farm account information, including twofactor security codes.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
βSneaky Logβ Microsoft Spoofing Scheme Sidesteps Two-Factor Security
The phishing-as-a-service kit from Sneaky Log creates fake authentication pages to farm account information.
π§ Why maintaining data cleanliness is essential to cybersecurity π§
π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
Data, in all its shapes and forms, is one of the most critical assets a business possesses. Not only does it provide organizations with critical information regarding their systems and processes, but it also fuels growth and enables better decisionmaking on all levels. However, like any other piece of company equipment, data can degrade over The post Why maintaining data cleanliness is essential to cybersecurity appeared first on Security Intelligence.π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
Security Intelligence
Why maintaining data cleanliness is essential to cybersecurity
Data is a critical asset, but it can lose its value β or even become a security and compliance risk β if your company neglects proper data cleanliness.
π New Mirai Malware Variant Targets AVTECH Cameras, Huawei Routers π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
MurdocBotnet used Mirai malware to exploit IoT vulnerabilities, targeting devices globally.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
New Mirai Malware Variant Targets AVTECH Cameras, Huawei Routers
Murdoc_Botnet used Mirai malware to exploit IoT vulnerabilities, targeting devices globally
ποΈ Mirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT Device ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Web infrastructure and security company Cloudflare on Tuesday said it detected and blocked a 5.6 Terabit per second Tbps distributed denialofservice DDoS attack, the largest ever attack to be reported to date. The UDP protocolbased attack took place on October 29, 2024, targeting one of its customers, an unnamed internet service provider ISP from Eastern Asia. The activity originated.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π1
π΅οΈββοΈ Mandatory MFA, Biometrics Make Headway in Middle East, Africa π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Despite lagging in technology adoption, African and Middle Eastern organizations are catching up, driven by smartphone acceptance and national identity systems.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
MFA, Biometrics Make Headway in Middle East & Africa
Despite lagging in technology adoption, African and Middle Eastern organizations are catching up, driven by smartphone acceptance and national identity systems.
ποΈ PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A previously undocumented Chinaaligned advanced persistent threat APT group named PlushDaemon has been linked to a supply chain attack targeting a South Korean virtual private network VPN provider in 2023, according to new findings from ESET. "The attackers replaced the legitimate installer with one that also deployed the group's signature implant that we have named SlowStepper a.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Oracle Releases January 2025 Patch to Address 318 Flaws Across Major Products ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Oracle is urging customers to apply its January 2025 Critical Patch Update CPU to address 318 new security vulnerabilities spanning its products and services. The most severe of the flaws is a bug in the Oracle Agile Product Lifecycle Management PLM Framework CVE202521556, CVSS score 9.9 that could allow an attacker to seize control of susceptible instances. "Easily exploitable.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π¦
Cyble Finds Thousands of Security Vendor Credentials on Dark Web π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Overview Account credentials from some of the largest cybersecurity vendors can be found on the dark web, a result of the growing problem of infostealers, according to an analysis of Cyble threat intelligence data. The credentials available for as little as 10 in cybercrime marketplaces span internal accounts and customer access across web and cloud environments, including internal security company enterprise and development environments that could pose substantial risks. The accounts ideally would have been protected by multifactor authentication MFA, which would have made any attack more difficult. However, the leaked credentials underscore the importance of dark web monitoring as an early warning system for keeping such leaks from becoming much bigger cyberattacks. Leak...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Thousands Of Security Vendor Credentials Found On Dark Web
Account credentials from top cybersecurity vendors are on the dark web due to infostealers, reveals Cyble threat intelligence analysis.
ποΈ Discover Hidden Browsing Threats: Free Risk Assessment for GenAI, Identity, Web, and SaaS Risks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
As GenAI tools and SaaS platforms become a staple component in the employee toolkit, the risks associated with data exposure, identity vulnerabilities, and unmonitored browsing behavior have skyrocketed. Forwardthinking security teams are looking for security controls and strategies to address these risks, but they do not always know which risks to prioritize. In some cases, they might have.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ President Trump Pardons Silk Road Creator Ross Ulbricht After 11 Years in Prison ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
U.S. President Donald Trump on Tuesday granted a "full and unconditional pardon" to Ross Ulbricht, the creator of the infamous Silk Road drug marketplace, after spending 11 years behind bars. "I just called the mother of Ross William Ulbricht to let her know that in honor of her and the Libertarian Movement, which supported me so strongly, it was my pleasure to have just signed a full and.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Account Compromise and Phishing Top Healthcare Security Incidents π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Netwrix claims 84 of healthcare organizations detected a cyberattack in the past year.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Account Compromise and Phishing Top Healthcare Security Incidents
Netwrix claims 84% of healthcare organizations detected a cyber-attack in the past year
π Cloudflare Mitigates Record-Breaking 5.6Tbps DDoS Attack π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Cloudflare warns of a surge in hypervolumetric DDoS after revealing it stopped a massive 5.6Tbps attack.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Cloudflare Mitigates Record-Breaking 5.6Tbps DDoS Attack
Cloudflare warns of a surge in hyper-volumetric DDoS after revealing it stopped a massive 5.6Tbps attack
π¦
Australian Cyber Security Centre Targets Bulletproof Hosting Providers to Disrupt Cybercrime Networks π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Overview The Australian Cyber Security Centre ACSC has issued a detailed warning regarding Bulletproof Hosting Providers BPH. These illicit infrastructure services play a critical role in supporting cybercrime, allowing malicious actors to conduct their operations while remaining largely undetectable. The Australian governments growing efforts to combat cybercrime highlight the increasing difficulty for cybercriminals to maintain secure, resilient, and hidden infrastructures. BPH services are an integral part of the CybercrimeasaService CaaS ecosystem, which provides a range of tools and services enabling cybercriminals to carry out their attacks. From ransomware campaigns to data theft, cybercriminals rely on BPH providers to host illicit websites, deploy malware, and execute p...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
π’ GDPR fines mightβve dipped last year, but donβt get complacent β personal liability risks are rising π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
A decrease in big GDPR fines doesnt mean its plane sailing for enterprises in 2025.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
GDPR fines mightβve dipped last year, but donβt get complacent β personal liability risks are rising
A decrease in big GDPR fines doesnβt mean itβs plane sailing for enterprises in 2025
π Major Cybersecurity Vendors' Credentials Found on Dark Web π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Cyble has found thousands of security vendors' credentials on the dark web, likely pulled from infostealer logs.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Major Cybersecurity Vendors' Credentials Found on Dark Web
Cyble has found thousands of security vendors' credentials on the dark web, likely pulled from infostealer logs
π’ Guardz launches new βUltimate Planβ for MSPs π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The offering embeds SentinelOnes endpoint protection capabilities into Guardz unified detection and response platform.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ChannelPro
Guardz launches new βUltimate Planβ for MSPs
The offering embeds SentinelOneβs endpoint protection capabilities into Guardzβ unified detection and response platform