π #Infosec2025: Half of Firms Suffer Two Supply Chain Incidents in Past Year π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Risk Ledger found that 90 of UK professionals view supply chain cyber incidents as a top concern for 2025.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Half of Firms Suffer Two Supply Chain Incidents in Past Year
Risk Ledger found that 90% of UK professionals view supply chain cyber incidents as a top concern for 2025
π¦
APRA Compliance, Simplified by Cyble π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble APRA Compliance, Simplified by Cyble " dataimagecaption"Cyble APRA Compliance, Simplified by Cyble " datamediumfile"httpscyble.comwpcontentuploads202506CybleBlogsAPRA300x150.png" datalargefile"httpscyble.comwpcontentuploads202506CybleBlogsAPRA1024x512.png" title"APRA Compliance, Simplified by Cyble 1" Australias fintech sector is undergoing rapid evolution. With a booming A45 billion fintech industry and a 10 trillion financial services market, the nation has become a global hub for digital finance innovation. However, this progress comes with heightened scrutiny and regulatory pressure. The Australian Prudential Regulation Authority APRA and the Australian Cyber Security Centre ACSC are urging organizations to implement strong cyber hygiene measuresespecially the Essential 8as...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
ποΈ Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Google has revealed that it will no longer trust digital certificates issued by Chunghwa Telecom and Netlock citing "patterns of concerning behavior observed over the past year." The changes are expected to be introduced in Chrome 139, which is scheduled for public release in early August 2025. The current major version is 137. The update will affect all Transport Layer Security TLS.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Microsoft and CrowdStrike Launch Shared Threat Actor Glossary to Cut Attribution Confusion ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Microsoft and CrowdStrike have announced that they are teaming up to align their individual threat actor taxonomies by publishing a new joint threat actor mapping. "By mapping where our knowledge of these actors align, we will provide security professionals with the ability to connect insights faster and make decisions with greater confidence," Vasu Jakkal, corporate vice president at Microsoft.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π΅οΈββοΈ Open-Weight Chinese AI Models Drive Privacy Innovation in LLMs π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Edge computing and stricter regulations may usher in a new era of AI privacy.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Open-Weight Chinese AI Models Drive Privacy Innovation in LLMs
Edge computing and stricter regulations could usher in a new era of AI privacy.
π¦Ώ Silence, Security, Speed β This Antivirus Checks Every Box π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
ESET NOD32 2025's AI and cloudpowered scanning detect threats faster and more accurately than legacy tools.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Silence, Security, Speed β This Antivirus Checks Every Box
ESET NOD32 2025's AI and cloud-powered scanning detect threats faster β and more accurately β than legacy tools.
π¦Ώ 6 Best Open Source Password Managers for Windows in 2025 π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Discover the top opensource password managers for Windows. Learn about the features and benefits of each to determine which one is the best fit for your needs.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
6 Best Open Source Password Managers for Windows in 2024
Discover the top open-source password managers for Windows. Learn about the features and benefits of each to determine which one is the best fit for your needs.
ποΈ Scattered Spider: Understanding Help Desk Scams and How to Defend Your Organization ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
In the wake of highprofile attacks on UK retailers Marks Spencer and Coop, Scattered Spider has been all over the media, with coverage spilling over into the mainstream news due to the severity of the disruption caused currently looking like hundreds of millions in lost profits for MS alone. This coverage is extremely valuable for the cybersecurity community as it raises.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
β€1
ποΈ Android Trojan Crocodilus Now Active in 8 Countries, Targeting Banks and Crypto Wallets ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A growing number of malicious campaigns have leveraged a recently discovered Android banking trojan called Crocodilus to target users in Europe and South America. The malware, according to a new report published by ThreatFabric, has also adopted improved obfuscation techniques to hinder analysis and detection, and includes the ability to create new contacts in the victim's contacts list. "Recent.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π½ Victoriaβs Secret Website Offline Amidst βSecurity Incidentβ π½
π Read more.
π Via "BE3SEC"
----------
ποΈ Seen on @cibsecurity
Lingerie giant Victorias Secret has confirmed that its U.S. website was taken offline as a precautionary measure following a security incident that began impacting operations earlier this week. While the company has been tightlipped on the exact nature of the disruption, the widespread outages and the engagement of thirdparty experts suggest a significant cybersecurity event. .π Read more.
π Via "BE3SEC"
----------
ποΈ Seen on @cibsecurity
be4sec
Victoriaβs Secret Website Offline Amidst βSecurity Incidentβ
Lingerie giant Victoriaβs Secret has confirmed that its U.S. website was taken offline as a βprecautionary measureβ following a βsecurity incidentβ that began impactinβ¦
π Trump Budget Plan to Cut Nearly 1000 Jobs at Cyber Agency CISA π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
CISA is facing 495m budget cut, losing 1000 employees and reducing staff to 2324.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π #Infosec2025: Demand More of Your Vendors to Ease Quantum Transition, Say Experts π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
CISOs should demand more of their vendors and use regulation as an ally to persuade board members to accelerate the transition to postquantum safety.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π Fake Docusign Pages Deliver Multi-Stage NetSupport RAT Malware π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Malware campaign used fake DocuSign pages to deploy NetSupport RAT through clipboard manipulation.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π #Infosec2025: VEC Attacks Alarmingly Effective at Driving Engagement π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Abnormal AI found that engagement rates with VEC attacks globally is worrisomely high, overtaking BEC in the EMEA region.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
π¦
Ransomware Landscape May 2025: SafePay, DevMan Emerge as Major Threats π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble Ransomware Landscape May 2025 SafePay, DevMan Emerge as Major Threats " dataimagecaption"Cyble Ransomware Landscape May 2025 SafePay, DevMan Emerge as Major Threats " datamediumfile"httpscyble.comwpcontentuploads202506CybleBlogsRansomwareSafePay300x150.png" datalargefile"httpscyble.comwpcontentuploads202506CybleBlogsRansomwareSafePay1024x512.png" title"Ransomware Landscape May 2025 SafePay, DevMan Emerge as Major Threats 1" SafePay took the top spot among ransomware groups in May 2025, solidifying the groups status as a major threat. Overall, ransomware groups claimed 384 victims in May chart below, the third straight monthly decline, as leadership continues to shift after RansomHub the top group for more than a year went offline at the end of March in what may have been an inf...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
ποΈ Critical 10-Year-Old Roundcube Webmail Bug Allows Authenticated Users Run Malicious Code ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have disclosed details of a critical security flaw in the Roundcube webmail software that has gone unnoticed for a decade and could be exploited to take over susceptible systems and execute arbitrary code. The vulnerability, tracked as CVE202549113, carries a CVSS score of 9.9 out of 10.0. It has been described as a case of postauthenticated remote code execution via.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π΅οΈββοΈ Is Your CISO Navigating Your Flight Path? π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
If your CISO isn't wielding influence with the CEO and helping top leaders clearly see the flight path ahead, your company is dangerously exposed.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Is Your CISO Navigating Your Flight Path?
If your CISO isn't wielding influence with the CEO and helping top leaders clearly see the flight path ahead, your company is dangerously exposed.
π #Infosec2025: Good Cybersecurity Enabled Ukraineβs Surprise Attack on Russia, Says NCSC π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Effective cybersecurity played a key role Ukraine drone attack on Russian strategic bombers, a leading government security expert has claimed.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
ποΈ Fake DocuSign, Gitcode Sites Spread NetSupport RAT via Multi-Stage PowerShell Attack ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Threat hunters are alerting to a new campaign that employs deceptive websites to trick unsuspecting users into executing malicious PowerShell scripts on their machines and infect them with the NetSupport RAT malware. The DomainTools Investigations DTI team said it identified "malicious multistage downloader Powershell scripts" hosted on lure websites that masquerade as Gitcode and DocuSign. ".π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π #Infosec2025: Channel Bridges Security Skills Gap π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Resellers and channel partners can add value, fill gaps in security teams and offer expertise in niche markets.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
#Infosec2025: Channel Bridges Security Skills Gap
Resellers and channel partners can add value, fill gaps in security teams and offer expertise in niche markets
π’ Email spoofing attacks are still a major threat for FTSE 100 companies β despite a simple fix being widely available π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Improper configuration of DMARC and other email authentication protocols opens organizations to major threats.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Email spoofing attacks are still a major threat for FTSE 100 companies β despite a simple fix being widely available
Improper configuration of DMARC and other email authentication protocols opens organizations to major threats