ποΈ Russian Hackers Breach 20+ NGOs Using Evilginx Phishing via Fake Microsoft Entra Pages ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Microsoft has shed light on a previously undocumented cluster of malicious activity originating from a Russiaaffiliated threat actor dubbed Void Blizzard aka Laundry Bear that it said is attributed to "worldwide cloud abuse." Active since at least April 2024, the hacking group is linked to espionage operations mainly targeting organizations that are important to Russian government objectives,.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ AI Agents and the NonβHuman Identity Crisis: How to Deploy AI More Securely at Scale ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Artificial intelligence is driving a massive shift in enterprise productivity, from GitHub Copilots code completions to chatbots that mine internal knowledge bases for instant answers. Each new agent must authenticate to other services, quietly swelling the population of nonhuman identities NHIs across corporate clouds. That population is already overwhelming the enterprise many companies.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ AI Agents and the NonβHuman Identity Crisis: How to Deploy AI More Securely at Scale ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Artificial intelligence is driving a massive shift in enterprise productivity, from GitHub Copilots code completions to chatbots that mine internal knowledge bases for instant answers. Each new agent must authenticate to other services, quietly swelling the population of nonhuman identities NHIs across corporate clouds. That population is already overwhelming the enterprise many companies.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π΅οΈββοΈ Hundreds of Web Apps Have Full Access to Microsoft OneDrive Files π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Researchers at Oasis Security say the problem has to do with OneDrive File Picker having overly broad permissions.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Hundreds of Web Apps Have Full Access to OneDrive Files
Researchers at Oasis Security say the problem has to do with OneDrive File Picker having overly broad permissions.
π΅οΈββοΈ Implementing Secure by Design Principles for AI π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Harnessing AI's full transformative potential safely and securely requires more than an incremental enhancement of existing cybersecurity practices. A Secure by Design approach represents the best path forward.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Vulnerabilities & Threats recent news | Dark Reading
Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading
π€1
π΅οΈββοΈ Cellcom Restores Regional Mobile Services After Cyberattack π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Customers in parts of Wisconsin and Michigan could not make calls or send text messages for nearly a week after an incident on May 14, and service is still intermittent in some areas.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Cellcom Restores Regional Mobile Services After Cyberattack
Customers in parts of Wisconsin and Michigan could not make calls or send text messages for nearly a week after an incident on May 14, and service is still intermittent in some areas.
βοΈ Pakistan Arrests 21 in βHeartsenderβ Malware Service βοΈ
π Read more.
π Via "Krebs on Security"
----------
ποΈ Seen on @cibsecurity
Authorities in Pakistan have arrested 21 individuals accused of operating "Heartsender," a once popular spam and malware dissemination service that operated for more than a decade. The main clientele for HeartSender were organized crime groups that tried to trick victim companies into making payments to a third party, and its alleged proprietors were publicly identified by KrebsOnSecurity in 2021 after they inadvertently infected their computers with malware.π Read more.
π Via "Krebs on Security"
----------
ποΈ Seen on @cibsecurity
Krebs on Security
Pakistan Arrests 21 in βHeartsenderβ Malware Service
Authorities in Pakistan have arrested 21 individuals accused of operating "Heartsender," a once popular spam and malware dissemination service that operated for more than a decade. The main clientele for HeartSender were organized crime groups that triedβ¦
ποΈ Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
An Iranian national has pleaded guilty in the U.S. over his involvement in an international ransomware and extortion scheme involving the Robbinhood ransomware. Sina Gholinejad aka Sina Ghaaf, 37, and his coconspirators are said to have breached the computer networks of various organizations in the United States and encrypted files with Robbinhood ransomware to demand Bitcoin ransom payments.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The Czech Republic on Wednesday formally accused a threat actor associated with the People's Republic of China PRC of targeting its Ministry of Foreign Affairs. In a public statement, the government said it identified China as the culprit behind a malicious campaign targeting one of the unclassified networks of the Czech Ministry of Foreign Affairs. The extent of the breach is presently not.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π1
ποΈ Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have disclosed a critical unpatched security flaw impacting TI WooCommerce Wishlist plugin for WordPress that could be exploited by unauthenticated attackers to upload arbitrary files. TI WooCommerce Wishlist, which has over 100,000 active installations, is a tool to allow ecommerce site customers to save their favorite products for later and share the lists on social.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π’ Do you really need to fix that critical flaw? π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Many CVEs represent no risk in a cloud container environment, researchers claim.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Do you really need to fix that critical flaw?
Many CVEs represent no risk in a cloud container environment, researchers claim
π’ Two more NHS Trusts have been hit with cyber attacks β hereβs what we know so far π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
A flaw in a thirdparty device management tool appears to be the source of the incident.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Two more NHS Trusts have been hit with cyber attacks β hereβs what we know so far
A flaw in a third-party device management tool appears to be the source of the incident
β€1
π’ GoTo and Acronis partnership looks to bolster endpoint management for MSPs π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The new strategic partnership includes the launch of the LogMeIn Data Protection Suite powered by Acronis.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ChannelPro
GoTo and Acronis partnership looks to bolster endpoint management for MSPs
The new strategic partnership includes the launch of the LogMeIn Data Protection Suite powered by Acronis
π΅οΈββοΈ 'Haozi' Gang Sells Turnkey Phishing Tools to Amateurs π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The phishing operation is using Telegram groups to sell a phishingasaservice kit with customer service, a mascot, and infrastructure that requires little technical knowledge to install.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
'Haozi' Gang Sells Turnkey Phishing Tools to Amateurs
The phishing operation is using Telegram groups to sell a phishing-as-a-service kit with customer service, a mascot, and infrastructure that requires little technical knowledge to install.
π΅οΈββοΈ Certified Randomness Uses Quantum Cryptography to Make Stronger Keys π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Researchers are using quantum computers to generate keys that are truly random to strengthen data encryption.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Certified Randomness Uses Quantum Cryptography to Make Stronger Keys
Researchers are using quantum computers to generate keys that are truly random to strengthen data encryption.
ποΈ DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The threat actors behind the DragonForce ransomware gained access to an unnamed Managed Service Provider's MSP SimpleHelp remote monitoring and management RMM tool, and then leveraged it to exfiltrate data and drop the locker on multiple endpoints. It's believed that the attackers exploited a trio of security flaws in SimpleHelp CVE202457727, CVE202457728, and CVE202457726 that were.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Google on Wednesday disclosed that the Chinese statesponsored threat actor known as APT41 leveraged a malware called TOUGHPROGRESS that uses Google Calendar for commandandcontrol C2. The tech giant, which discovered the activity in late October 2024, said the malware was hosted on a compromised government website and was used to target multiple other government entities. "Misuse of cloud.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Malware Analysis Reveals Sophisticated RAT With Corrupted Headers π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Fortinet has identified a new Windows RAT operating stealthily on compromised systems with advanced evasion techniques.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Malware Analysis Reveals Sophisticated RAT With Corrupted Headers
Fortinet has identified a new Windows RAT operating stealthily on compromised systems with advanced evasion techniques
π Thousands of ASUS Routers Hijacked in Stealthy Backdoor Campaign π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A threat actor has used ASUS routers legitimate features to create persistent backdoors that survive firmware updates and reboots.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Thousands of ASUS Routers Hijacked in Stealthy Backdoor Campaign
A threat actor has used ASUS routersβ legitimate features to create persistent backdoors that survive firmware updates and reboots
π Cybersecurity Teams Generate Average of $36M in Business Growth π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A new EY report found that cybersecurity teams are a major vehicle for business growth, and CISOs should push for a seat at the top table.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Cybersecurity Teams Generate Average of $36M in Business Growth
A new EY report found that cybersecurity teams are a major vehicle for business growth, and CISOs should push for a seat at the top table
π #Infosec2025: Over 90% of Top Email Domains Vulnerable to Spoofing Attacks π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
EasyDMARC found that just 7.7 of the worlds top 1.8 million email domains have implemented the most stringent DMARC policy.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
#Infosec2025: Over 90% of Top Email Domains Vulnerable to Spoofing Attacks
EasyDMARC found that just 7.7% of the worldβs top 1.8 million email domains have implemented the most stringent DMARC policy