The Hacker News
Qakbot Takedown Aftermath: Mitigations and Protecting Against Future Threats
DOJ and FBI dismantle Qakbot malware and botnet, but is the threat really gone? Find out the aftermath and mitigation strategies.
The Record
IoT vulnerability reporting obligations set to apply in EU from 2027
The new Cyber Resilience Act is intended to increase security standards for the Internet of Things. Manufacturers would face penalties for not properly reporting actively exploited vulnerabilities.
SC Magazine
Zoom flaw enabled hijacking of accounts with access to meetings, team chat
Ethical hackers at AppOmni claimed a $5,000 bug bounty for discovering the Zoom Rooms vulnerability, disclosed at a conference last summer.
Bleeping Computer
Capital Health Hospitals hit by cyberattack causing IT outages
Capital Health hospitals and physician offices across New Jersey are experiencing IT outages after a cyberattack hit the non-profit organization's network earlier this week.
SC Magazine
Fewer cybersecurity professionals losing their jobs in breach ‘blame’ game
Cybersecurity job security, vendor loyalty and board support after a breach were covered in a survey of 500 CISOs.
Ars Technica
How Huawei made a cutting-edge chip in China and surprised the US
China's flagship smartphone maker pulled off the feat despite sanctions.
The Hacker News
This Free Solution Provides Essential Third-Party Risk Management for SaaS
Wing Security offers FREE third-party risk assessment for SaaS, enhancing cybersecurity in the digital era. Learn more in this article.
The Hacker News
7 Uses for Generative AI to Enhance Security Operations
Generative AI is transforming cybersecurity! Discover how it detects and prevents threats like malware and phishing in real-time.
Cyber Security News
Defend Ransomware Attacks With Top Effective Proactive Measures in 2024
We’re currently living in an age where digital threats loom large. Among these, ransomware has emerged as a formidable adversary, disrupting businesses and individuals alike. This malicious software, designed to encrypt data and demand payment for its release, poses significant challenges in terms of security and data integrity. Understanding and implementing a proactive ransomware protection […]
CyberNews
DARPA $20M AI challenge kick off delayed until Dec 11th
The kick-off for Open Track registration for DARPA’s first-ever AI Cyber Challenge (AIxCC) is rescheduled until December 11.
CSO
Almost all developers are using AI despite security concerns, survey suggests
About 96% of developers are using AI tools and nearly eight out of 10 coders are bypassing security policies to use them, while placing unfounded trust into AI’s competence and security, according to the report by Snyk.
Infosecurity News
DeleFriend Weakness Puts Google Workspace Security at Risk
Hunters’ Team Axon said the flaw could lead to the unauthorized access of emails in Gmail and more
Infosecurity News
AI Boosts Malware Detection Rates by 70%
New research has found that AI is significantly more accurate than traditional techniques at detecting malicious malware
Cyber Security News
Slovenia’s Biggest Power Provider has Suffered a Cyberattack
HSE one of the biggest power providers in Slovenia was targeted by a serious cyberattack and control system as well as fire alarms.
CyberNews
Google Drive files mysteriously disappearing, users report
Google said that it was investigating after users reported that months’ worth of files had suddenly disappeared from their Drive storage.
The Hacker News
Discover Why Proactive Web Security Outsmarts Traditional Antivirus Solutions
Don't Rely on Antivirus Alone. Discover why proactive web security is crucial in the ever-changing digital landscape.
Cyber Security News
Design Flaw in Domain-Wide Delegation Could Leave Google Workspace Vulnerable to Takeover - Hunters
BOSTON, MASS. and TEL AVIV, ISRAEL, November 28, 2023 – A severe design flaw in Google Workspace’s domain-wide delegation feature discovered by threat hunting experts from Hunters’ Team Axon, can allow attackers to misuse existing delegations, enabling privilege escalation and unauthorized access to Workspace APIs without Super Admin privileges. This kind of attack might compromise […]
Infosecurity News
Ardent Health Services Grapples With Ransomware Disruption
Non-urgent procedures are being rescheduled, emergency room patients redirected to other hospitals
Latest Hacking News
Design Flaw in Domain-Wide Delegation Could Leave Google Workspace Vulnerable for Takeover, Says Cybersecurity Company Hunters
BOSTON, MASS. and TEL AVIV, ISRAEL, November 28, 2023 - A severe design flaw in Google Workspace's domain-wide delegation feature discovered by threat hunting experts from Hunters’ Team Axon, can allow attackers to misuse existing
SecurityWeek
Amazon One Enterprise Enables Palm-Based Access to Physical Locations, Digital Assets
AWS announces Amazon One Enterprise, a palm-based identity service that enables users to easily access physical locations and digital assets.
CyberSecurity Dive
Amazon CSO likens security to psychological chess matches
Security professionals should focus on ambiguous, dynamic problems that can’t be solved by software, Stephen Schmidt says.
Bleeping Computer
Ardent hospital ERs disrupted in 6 states after ransomware attack
Ardent Health Services, a healthcare provider operating 30 hospitals across five U.S. states, disclosed today that its systems were hit by a ransomware attack on Thursday.
Bleeping Computer
Leveraging Wazuh to combat insider threats
Effective strategies for mitigating insider threats involve a combination of detective and preventive controls. Such controls are provided by the Wazuh SIEM and XDR platform.
SecurityWeek
Hacktivism: What’s in a Name… It May be More Than You Expect
Hacktivists should be treated as malicious hackers because the distance between hacking/activism, malevolence, and damage is too small and too vague.
CyberSecurity Dive
SEC’s cyber disclosure rules: Key considerations for the board, C-suite and risk managers
Each business stakeholder has a different cyber risk management responsibility. Given the SEC’s coming disclosure rules, it’s even more important to outline who owns what.
CyberSecurity Dive
The top cybersecurity events and conferences in 2024, according to security pros
Which security conferences are teams prioritizing in 2024? A new report reveals the 7 most popular events in the cybersecurity calendar.
The Hacker News
6 Steps to Accelerate Cybersecurity Incident Response
Effective Incident Response is more than just tools. It's a process. Explore the 6-step framework for successful IR.
Cyber Security News
WailingCrab Malware Abuse Messaging Protocol for C2 Communications
WailingCrab's backdoor component has been in contact with the C2 since the middle of 2023 via the lightweight IoT message protocol MQTT.
CyberNews
Former OpenAI staffers slam CEO Sam Altman in new tell-all letter
Elon Musk is sent an anonymous letter dissing OpenAI’s Sam Altman - allegedly written by former OpenAI employees - and released hours before Altman is reinstated as CEO.
Bleeping Computer
The Black Friday 2023 Security, IT, VPN, & Antivirus Deals
Black Friday 2023 is here, and great deals are live in computer security, software, online courses, system admin services, antivirus, and VPN software.
SecurityWeek
Humans Are Notoriously Bad at Assessing Risk
7 Steps Toward Objective Risk Management: How security teams can ensure their risk assessment, management, and mitigation is as objective as possible.
The Hacker News
AI Solutions Are the New Shadow IT
AI Solutions Are the New Shadow IT - Ambitious Employees Tout New AI Tools, Ignore Serious SaaS Security Risks
Trend Micro
Packet Reflection Threats in Private 5G Networks
Dive into the world of private 5G networks and learn about a critical security vulnerability that could expose IoT devices to attacks from external networks.
SecurityWeek
LLM Security Startup Lasso Emerges From Stealth Mode
Lasso Security raises $6 million in seed funding to tackle cyber threats to secure generative AI and large language model algorithms.
CyberNews
Ransomware that all the script kiddies want to Play with
The Russian-affiliated threat actor Play ransomware gang is now a service for sale, according to cybersecurity analyst Adlumin.
SecurityWeek
Canadian Military, Police Impacted by Data Breach at Moving Companies
Data breaches at two moving companies impacts Canadian government employees, and military and police personnel.
SecurityWeek
Microsoft Paid Out $63 Million Since Launch of First Bug Bounty Program 10 Years Ago
Over the past ten years, Microsoft has handed out $63 million in rewards as part of its bug bounty programs.
SecurityWeek
Sumo Logic Completes Investigation Into Recent Security Breach
Sumo Logic has completed its investigation into the recent security breach and found no evidence of impact to customer data.
CyberNews
Hundreds of OpenAI staff threaten to resign and join Altman at Microsoft
After OpenAI's board confirmed that Sam Altman would not return as the firm’s CEO, most of its employees said they would resign en masse if the decision wasn't reversed.
The Hacker News
Why Defenders Should Embrace a Hacker Mindset
Prioritizing cybersecurity is key. Learn how to prioritize remediation based on impact and protect your organization's crown jewels.
The Record
Greater Paris wastewater agency dealing with cyberattack
The organization that manages wastewater for nine million people in and around Paris was hit with a cyberattack last week.
Trend Micro
CVE-2023-46604 (Apache ActiveMQ) Vulnerability Exploited to Infect Systems With Cryptominers and Rootkits
We uncovered the active exploitation of the Apache ActiveMQ vulnerability CVE-2023-46604 to download and infect Linux systems with the Kinsing malware (also known as h2miner) and cryptocurrency miner.
DarkReading
Scattered Spider Casino Hackers Evade Arrest in Plain Sight
The feds seem to know all about the hacking group brazenly breaking into corporate networks; so why are enterprise teams left on their own to stop their cybercrimes?
DarkReading
Actions to Take to Defeat Initial Access Brokers
Initial access brokers (IAB) are often difficult to track. This Tech Tip spells out some countermeasures enterprises need to defend against stolen credentials.
DarkReading
Detection & Response That Scales: A 4-Pronged Approach
Building a resilient incident response team requires more than a simple combination of tools and on-call rotations.
The Hacker News
U.S. Cybersecurity Agencies Warn of Scattered Spider's Gen Z Cybercrime Ecosystem
U.S. agencies warn about Scattered Spider cybercriminals using advanced phishing to steal data and extort victims.
CyberNews
City of Long Beach declares local emergency after cyberattack
The City of Long Beach, California declares a Local Emergency after a 'network security incident' on November 14th, forcing the city to shut down some systems..
The Record
CISA, FBI warn of Scattered Spider expertise with social engineering, SIM swapping
The leading cybersecurity officials in the U.S. published a stark warning on Thursday about a group of hackers who have disrupted some of the largest companies in the country through social engineering and other tactics.
Bleeping Computer
FBI shares tactics of notorious Scattered Spider hacker collective
The Federal Bureau of Investigation and the Cybersecurity and Infrastructure Security Agency released an advisory about the evasive threat actor tracked as Scattered Spider, a loosely knit hacking collective that now collaborates with the ALPHV/BlackCat Russian ransomware operation..
CyberNews
FBI warning on MGM hacker group Scattered Spider, urges victims to come forward
The FBI is warning organizations to guard against the Scattered Spider ransom group, responsible for the MGM and Caesars hacks, plus dozens more US attacks this year.
SecurityWeek
Biden Campaign Looking for CISO
The Biden for President campaign is looking for a cybersecurity chief to “define the organization's risk appetite” and run the IT operations.
SecurityWeek
Threat Intel: To Share or Not to Share is Not the Question
Three things to look for in a threat intelligence sharing community that will make the process more attainable and impactful.
The Hacker News
How to Automate the Hardest Parts of Employee Offboarding
Eliminate 90% of the time and effort in finding and offboarding cloud and SaaS accounts. Say goodbye to IT offboarding headaches.
CyberSecurity Dive
Clorox CISO departs months after cyberattack
The C-suite change comes in the aftermath of a cyberattack that damaged IT infrastructure, led to widespread disruption and negatively impacted earnings.
CyberNews
Vietnam Post exposes 1.2TB of data, including email addresses
At the time of discovery, the data store contained 226 million logged events, resulting in 1.2 Terabytes of data, which was being updated in real-time.
Cyber Security News
Best Network Security Vendors for SaaS - 2024
Best Network Security Vendors for SaaS : 1. Perimeter 81 2. Palo Alto Networks 3. Fortinet 4. Symantec 5. Check Point 6. McAfee 7. Okta.
Ars Technica
Developers can’t seem to stop exposing credentials in publicly accessible code
Many transgressions come from "very large companies that have robust security teams."
CSO
Top cybersecurity product news of the week
New product and service announcements from Wiz, Palo Alto Networks, Sophos, SecureAuth, Kasada, Lacework, Noname Security, and more.
The Record
Long Beach is latest California city facing cybersecurity incident
Long Beach's office of the city manager released a statement saying officials within the government were investigating the issue alongside a cybersecurity firm and had contacted the FBI for assistance.
Ars Technica
Microsoft launches custom chips to accelerate its plans for AI domination
Amid GPU shortages, Microsoft reaches for custom silicon to run its AI language models.
CyberNews
Henry Schein data breach: banking details exposed
Henry Schein confirms an October data breach, claimed by APLHV/BlackCat ransom group, and reveals that customer bank account and credit card numbers were likely exposed.
CSO
For top cybersecurity talent, companies pay over $500,000: Report
Cybersecurity strategy success depends on appropriate staff size and salary to retain top talent, according to a report from security analysis firm IANS.
Bleeping Computer
The OWASP Top 10: What They Are and How to Test Them
This article takes a deep dive into the OWASP Top 10 and advises on how to test your web applications for susceptibility to these security risks.
SecurityWeek
Application Security Startup Aikido Security Raises €5 Million
Aikido Security has raised €5 million (~$5.4 million) in seed funding for an all-in-one application security platform.
SecurityWeek
Addressing the State of AI’s Impact on Cyber Disinformation/Misinformation
The rise of AI-powered disinformation presents an immense challenge to society’s ability to discern fact from fiction.
The Hacker News
Three Ways Varonis Helps You Fight Insider Threats
Insider threats are difficult for organizations to combat. Varonis’ modern cybersecurity answer uses the data security triad of sensitivity, access, a
CyberNews
Ohio city severely disrupted by ransomware attack
Huber Heights and Bladen County fell victim to disruptive cyberattacks.
Bleeping Computer
New Reptar CPU flaw impacts Intel desktop and server systems
Intel has fixed a high-severity CPU vulnerability in its modern desktop, server, mobile, and embedded CPUs, including the latest Alder Lake, Raptor Lake, and Sapphire Rapids microarchitectures.
DarkReading
Microsoft Zero-Days Allow Defender Bypass, Privilege Escalation
Another two bugs in this month's set of fixes for 63 CVEs were publicly disclosed previously but have not been exploited yet.
SecurityWeek
Microsoft Warns of Critical Bugs Being Exploited in the Wild
Redmond’s security response team flags two vulnerabilities -- CVE-2023-36033 and CVE-2023-36036 -- already being exploited in the wild.
SecurityWeek
Zip Raises $7.7 Million to Expand SMB Cybersecurity Business
Zip Security raised $7.7 million in funding led by General Catalyst, co-led by Human Capital, and with participation from Box Group.
Cyber Security News
10 Best Network Security Companies For CISO - 2024
Best Network Security Companies for CISO: 1. Perimeter81 2. Palo Alto Networks 3. Cisco 4. Check Point 5. IBM 6. Crowdstrike 7. Trend Micro.
CyberNews
Open-source software more resilient, study finds
Software written in the past few years is less error-prone on the whole and therefore more resistant to cyberattacks.
The Hacker News
CI/CD Risks: Protecting Your Software Development Pipelines
Malicious actors are exploiting Dependabot's trust. Learn how to protect your CI/CD pipelines and software supply chain.
DarkReading
Ducktail Malware Targets the Fashion Industry
Threat actors distributed an archive containing images of new products by major clothing companies, along with a malicious executable disguised with a PDF icon.
The Hacker News
Top 5 Marketing Tech SaaS Security Challenges
Don't leave your marketing data exposed. Discover the top challenges in securing SaaS applications used by marketing teams.
CyberNews
Hacking the sky: planes need patching, too – interview
Cyber assaults on the aviation sector carry more serious repercussions than mere data theft or DDoS attacks.
CyberSecurity Dive
4 data-driven priorities for security leaders in 2024
According to a new report, security teams are struggling amid relentless cyberattacks and limited resources. What can leaders do to set their teams up for a more stable 2024?
Cyber Security News
Best Security Solutions for Marketers - 2024
Best security solutions for Marketers: 1. Perimeter 81 2. Surfshark3. Private Internet Access 4. Malwarebytes 5. CyberGhost 6. GoodAccess
Bleeping Computer
The Rise of Ransomware in Healthcare: What IT Leaders Need to Know
Ransomware attacks are rapidly becoming the weapon of choice, making up over half of all attacks in the healthcare industry. Learn more from Specops Software on securing your organization from these attacks.
The Hacker News
The New 80/20 Rule for SecOps: Customize Where it Matters, Automate the Rest
Are you tired of sifting through endless alerts? The era of Security Automation is here! Learn how it's changing the game for SOC teams.
Cyber Security News
Top 6 Cyber Incident Response Plans - 2024
Top Incident Response Plans : 1. Preparation 2. Identification 3. Containment 4. Eradication 5. Recovery 6. Lessons learned.
CSO
BigID unveils new data risk remediation guidance feature
Remediation guidance will help customers accelerate data risk reduction and tackle threats such as insider and toxic/dark data hazards.
Infosecurity News
Microsoft Warns of Election Threats in 2024
To address these challenges, Microsoft is introducing several initiatives
Bleeping Computer
ChatGPT down after major outage impacting OpenAI systems
OpenAI's AI-powered ChatGPT large language model-based chatbot is down because of a major ongoing outage that also took down the company's Application Programming Interface (API).
Bleeping Computer
ChatGPT back online after major OpenAI systems outage
OpenAI's AI-powered ChatGPT large language model-based chatbot is down because of a major ongoing outage that also took down the company's Application Programming Interface (API).
Cyber Security News
What is Crowdsourced Threat Intelligence?
Crowdsourced threat intelligence is a type of threat intelligence that is gathered and analyzed from a variety of sources.
CyberNews
Despite pledges not to pay, ransoms are here to stay
Cybernews asked more than 30 experts from various fields if they’d be willing to pay a ransom in the event of a cybersecurity breach.
The Hacker News
Webinar: Kickstarting Your SaaS Security Strategy & Program
Your SaaS apps are a goldmine for cybercriminals. Learn how to safeguard them with industry expert Effie Mansdorf.
CSO
Facebook tops security ratings among social networks
Enterprise-grade authentication remains an Achilles heel of the social media world, but security is improving in other areas, according to a report by access management provider Cerby.
Infosecurity News
Data Breach at Singapore’s Marina Bay Sands Affects 665,000 Customers
The leaked data include personally identifiable information, such as customers’ names, email addresses, phone numbers and membership numbers
CSO
Eclypsium launches supply chain security guide to track risks and incidents
The guide offers supply chain risk intelligence for IT infrastructure including endpoints, servers, network devices, and cloud infrastructure products.
CSO
Generative AI could erode customer trust, half of business leaders say
Businesses leaders admit their company needs to improve security and compliance measures as demands of customers, investors, and suppliers increase.
The Record
Singapore’s Marina Bay Sands says 665,000 customers had data stolen during cyberattack
The company said it became aware of a data security incident on October 20 after hackers broke into their systems the day before.
DarkReading
Kinsing Cyberattackers Debut 'Looney Tunables' Cloud Exploits
Admins need to patch immediately, as the prolific cybercrime group pivots from cryptomining to going after cloud secrets and credentials.
Bleeping Computer
Microsoft will roll out MFA-enforcing policies for admin portal access
Microsoft will roll out Conditional Access policies requiring multifactor authentication from administrators when signing into Microsoft admin portals such as Microsoft Entra, Microsoft 365, Exchange, and Azure.
Latest Hacking News
CVSS 4.0 Arrived As The New Vulnerability Scoring Standard
After announcing the upgradation of the CVSS 3.0 scoring system in June, this week, FIRST officially released the CVSS 4.0. This new standard will facilitate better severity scoring of vulnerabilities discovered henceforth. CVSS 4.0 Is Officially
CSO
Frontegg releases new identity, user management solution for SaaS products
Frontegg Forward delivers four fundamental user identity management innovations for SaaS vendors.
Infosecurity News
Over Half of Users Report Kubernetes/Container Security Incidents
Many say it led to a subsequent data breach
CyberSecurity Dive
Countries pledge to not pay ransoms, but experts question impact
There is no mandate to ban governments or businesses from paying ransom demands, but the pledge could be a step toward that outcome.
CyberSecurity Dive
Top ways businesses can manage the risk implications of the SEC cybersecurity disclosure rule
The SEC final rule requires public companies to disclose any material cybersecurity incidents within four business days of determination.
CSO
Most cloud moves found rushed as adopters underrate associated risks: Report
More than half of security leaders surveyed didn’t understand the security risks associated with shifting to the cloud.
Trend Micro
Zero Day Threat Protection for Your Network
Explore the world of zero day threats and gain valuable insight into the importance of proactive detection and remediation.
Cyber Security News
Threat and Vulnerability Roundup for the week of October 29th to November 4th
welcome to Cyber Writes' weekly publication - the Threat and Vulnerability Roundup! Get ready to dive into the latest and greatest in cybersecurity, as we bring you the most up-to-date information each week.
The Hacker News
Predictive AI in Cybersecurity: Outcomes Demonstrate All AI is Not Created Equally
Discover how predictive AI is shaping the future of cybersecurity. Learn how BlackBerry's Cylance AI is outperforming the competition in malware.
CSO
Microsoft pledges cybersecurity overhaul to protect products and services
Microsoft launches the Secure Future Initiative to usher in “next generation” of cybersecurity to better protect customers against escalating cybersecurity threats.
Bleeping Computer
Cloudflare Dashboard and APIs down after data center power outage
An ongoing Cloudflare outage has taken down many of its products, including the company's dashboard and related application programming interfaces (APIs) customers use to manage and read service configurations.
SecurityWeek
FusionAuth Snags $65 Million Investment for Customer Identity Tech
Colorado startup raises new capital from Updata Partners to build out its customer authentication and authorization technology.
SecurityWeek
Former SpaceX Engineers Get $8 Million in Funding for AI Security Firm Wraithwatch
Former SpaceX cybersecurity engineers launch Wraithwatch, an AI-based security firm that received $8 million in seed funding.
Bleeping Computer
Your end-users are reusing passwords – that’s a big problem
Password reuse is a difficult vulnerability for IT teams to get full visibility over. Learn more from Specops Software on how to mitigate the risk of compromised credentials.
Cyber Security News
Securing Your SaaS: Best Practices and Proven Strategies
Protecting cloud-based apps and the data they manage is the primary goal of Software as a Service (SaaS) security.
Cyber Security News
Next Generation CVSS v4.0 Vulnerability Scoring System Released: What's New!
FIRST, the Forum of Incident Response and Security Teams has recently unveiled the latest version of their Common Vulnerability Scoring System (CVSS).
The Hacker News
FIRST Announces CVSS 4.0 - New Vulnerability Scoring System
FIRST announces CVSS v4.0, the latest version of the Common Vulnerability Scoring System. Discover how this update addresses critical vulnerabilities.
CSO
Red Sift adds protection against phishing, BEC, and brand abuse
The new capabilities will bolster a company’s cyber resilience, especially in the areas of brand impersonation, BEC, and PKI certificates.
SecurityWeek
FIRST Releases CVSS 4.0 Vuln Scoring Standard
The CVSS vulnerability scoring standard is refreshed to provide more data and remove ambiguities in rating the severity of downstream issues.
Bleeping Computer
New CVSS 4.0 vulnerability severity rating standard released
The Forum of Incident Response and Security Teams (FIRST) has officially released CVSS v4.0, the next generation of its Common Vulnerability Scoring System standard, eight years after CVSS v3.0, the previous major version.
Computerworld
New Jamf CEO John Strosahl on Apple in the enterprise, Jamf's future
John Strosahl became CEO in September when he took over from Dean Hager. We caught up with him to discuss Apple's growing role in the enterprise and the future of his company.
SecurityWeek
DPI: Still Effective for the Modern SOC?
DPI can still be useful in a modern SOC, but its effectiveness and relevance depend on the specific security needs of the organization.
SecurityWeek
SIEM and Log Management Provider Graylog Raises $39 Million
Graylog secured $39 million in funding to accelerate product development and scale its go-to-market operations.
Cyber Security News
Strategic App Management: Simplifying, Securing, and Optimizing Device Workflows
App management encompasses each of these stages, ensuring a seamless experience for both users and admins. Let's explore how app management,
CSO
BackSlash’s new ASPM combines existing AppSec with context-based risk prioritization
The new platform is designed to drastically reduce alert noise and allow security teams to focus on genuine threats.
SecurityWeek
Cybersecurity Leaders Spooked by SEC Lawsuit Against SolarWinds CISO
The SEC's lawsuit against the CISO of SolarWinds is leaving CISOs across the industry spooked and reevaluating their roles.
SecurityWeek
Palo Alto Networks to Acquire Cloud Security Start-Up Dig Security
Palo Alto Networks agreed to acquire Dig Security, a provider of Data Security Posture Management (DSPM) technology.
CSO
Cybersecurity workforce shortage reaches 4 million despite significant recruitment drive
A new study suggests cybersecurity skills gaps can be worse than total workforce shortages.
DarkReading
20 Years Later, Is Patch Tuesday Enough?
Microsoft's longstanding practice isn't enough to handle its vulnerability problem.
SecurityWeek
Extending ZTNA to Protect Against Insider Threats
Overcoming the failures and challenges of Zero Trust Network Access (ZTNA) for in-office and remote users
The Hacker News
PentestPad: Platform for Pentest Teams
Pen test team up with PentestPad to supercharge your performance & achieve exceptional results with automated report generation, real-time collaborati
Infosecurity News
Cyber Skills Gap Reaches 4 Million, Layoffs Hit Security Teams
ISC2’s CEO says the c-suite appears to be more concerned with economic risk than cyber risk
Infosecurity News
SEC Charges SolarWinds and CISO With Misleading Investors
Complaint alleges company overstated security posture and understated risks
CSO
SEC sues SolarWinds and its CISO for fraudulent cybersecurity disclosures
SEC has accused SolarWinds and its CISO of understating cybersecurity risks to stakeholders and said the company missed numerous red flags.
SecurityWeek
SEC Charges SolarWinds and Its CISO With Fraud and Cybersecurity Failures
The SEC filed charges against SolarWinds and its CISO Timothy Brown, over misleading investors about its cybersecurity practices and known risks.
Bleeping Computer
SEC sues SolarWinds for misleading investors before 2020 hack
The U.S. Securities and Exchange Commission (SEC) today charged SolarWinds with defrauding investors by allegedly concealing cybersecurity defense issues before a December 2020 linked to APT29, the Russian Foreign Intelligence Service (SVR) hacking division.
Bleeping Computer
RCE exploit for Wyze Cam v3 publicly released, patch now
A security researcher has published a proof-of-concept (PoC) exploit for Wyze Cam v3 devices that opens a reverse shell and allows the takeover of vulnerable devices.
Infosecurity News
Lazarus Group Malware Targets Legitimate Software
Kaspersky unveiled the cyber campaign at the Security Analyst Summit
The Hacker News
New Webinar: 5 Must-Know Trends Impacting AppSec
Join our expert panel of security veterans Emo Gokay, Multi-Cloud Security Engineer at EY Technologies and George Prichici, VP of products at OPSWAT,
The Hacker News
ServiceNow Data Exposure: A Wake-Up Call for Companies
ServiceNow exposes sensitive data due to misconfigurations. Learn how this could've jeopardized your business and the steps to ensure your data is sec
SecurityWeek
Whistleblowers: Should CISOs Consider Them a Friend or Foe?
Are whistleblowers a danger to corporate brand image, and an insider threat? Or can they be used to strengthen cybersecurity and compliance?
The Record
SEC charges SolarWinds CISO with fraud for misleading investors before major cyberattack
The Securities and Exchange Commission (SEC) announced on Monday evening that it plans to charge SolarWinds Chief Information Security Officer Timothy Brown with fraud for his role in allegedly lying to investors by “overstating SolarWinds' cybersecurity practices and understating or failing to disclose known risks.”
Cyber Security News
11 Best Cloud Access Security Broker Software (CASB) - 2023
Best Cloud Access Security Broker (CASB) Software: 1. DoControl CASB 2. Microsoft Cloud App Security 3. Forcepoint 4. Palo Alto Networks.
SecurityWeek
In Other News: Ex-NSA Employee Spying for Russia, EU Threat Landscape, Cyber Education Funding
Noteworthy stories that might have slipped under the radar: Ex-NSA employee spying for Russia, EU threat landscape, cyber education funding
Infosecurity News
Generative AI A Boon for Organizations Despite the Risk
Experts highlighted the ways generative AI tools can help security teams, and how to mitigate the risks they pose
The Record
Internet access severed in Gaza as IDF announces ‘expanding’ ground operation
Internet access in the Gaza Strip has been severely limited as Israel’s military announced an expansion of its ground operation, according to internet monitoring firms and healthcare organizations working in the region.
The Record
Stanford University investigating cyberattack after ransomware claims
Stanford is looking into a cybersecurity incident within its Department of Public Safety after a ransomware gang claimed it attacked the school on Friday.
Infosecurity News
Operation Triangulation iOS Attack Details Revealed
Kaspersky said the attack exploited five vulnerabilities, four of which were unknown zero-days
Infosecurity News
CISO Best Practices for Managing Cyber Risk
Two leading CISOs provide best practice tips for CISOs on undertaking a sustainable cyber risk management program
Infosecurity News
CISOs Can Elevate Their Role with New Cyber Regulations
New regulations, such as the recent SEC incident reporting requirements, offer huge opportunities for CISOs to boost their influence
Infosecurity News
UK IT Pros Worried About C-Suite Training Gap Ahead of AI Safety Summi
93% of professionals express concerns about their company’s C-suite ambitions for generative AI
CSO
Teleport’s new offering to help reduce attack response times
The identity governance and security offering will automate access requests, detect weak access patterns, and help with incident response.
The Record
VMware warns of critical vulnerability affecting vCenter Server product
Cloud computing giant VMware warned of new vulnerabilities affecting a widely-used server management product.
The Record
CISA: Agencies seeing steep decrease in known exploited vulnerabilities on federal networks
A catalog of exploited vulnerabilities run by the top cybersecurity agency in the U.S. is having a significant effect on the security of federal civilian agencies, according to Congressional testimony from a senior official.
Bleeping Computer
Samsung Galaxy S23 hacked two more times at Pwn2Own Toronto
Security researchers hacked the Samsung Galaxy S23 smartphone two more times on the second day of the Pwn2Own 2023 hacking competition in Toronto, Canada.
Ars Technica
Hackers can force iOS and macOS browsers to divulge passwords and much more
iLeakage is practical and requires minimal resources. A patch isn't (yet) available.
SecurityWeek
Mandiant Intelligence Chief Raises Alarm Over China's 'Volt Typhoon' Hackers in US Critical Infrastructure
Critical infrastructure defenders should urgently work to find and remove traces of Volt Typhoon, a Chinese government-backed hacking team.
SecurityWeek
Hackers Earn $400k on First Day at Pwn2Own Toronto 2023
NAS devices, printers, IP cameras, speakers, and mobile phones were hacked on the first day at Pwn2Own Toronto 2023.
Infosecurity News
AWS: Security Not a Priority For a Third of SMBs
Cloud giant debunks common misconceptions
SecurityWeek
The Cybersecurity Resilience Quotient: Measuring Security Effectiveness
The Cybersecurity Resilience Quotient is a dynamic metric that can be applied in several ways and isn't a one-time assessment.
SecurityWeek
SecurityWeek's 2023 ICS Cybersecurity Conference Kicks Off in Atlanta
SecurityWeek’s 2023 ICS Cybersecurity Conference kicks off in Atlanta with presentations on a wide range of topics.
The Hacker News
Make API Management Less Scary for Your Organization
Protect your organization from security nightmares. Learn how modern API management with Gloo Gateway can fortify your defenses against data breaches
The Hacker News
Who's Experimenting with AI Tools in Your Organization?
See how you can find out in minutes with Nudge Security. Automate discovery of new AI tools as they are introduced, collect context on how AI tools ar
CSO
Lacework adds multiple extensions to its multicloud security platform
The platform is extending support on its CSPM, APA and vulnerability management offerings.
The Record
Behind the FTC’s plan to hire child psychologists to help regulate social media firms
Alvaro Bedoya, a commissioner at the Federal Trade Commission (FTC), is known for his expertise in digital privacy — a skill which is serving him well now, as the commission works to better understand the effects of social media, particularly on children.
Bleeping Computer
Microsoft announces Security Copilot early access program
Microsoft announced this week that its ChatGPT-like Security Copilot AI assistant is now available in early access for some customers.
Bleeping Computer
American Family Insurance confirms cyberattack is behind IT outages
Insurance giant American Family Insurance has confirmed it suffered a cyberattack and shut down portions of its IT systems after customers reported website outages all week.
SecurityWeek
Okta Support System Hacked, Sensitive Customer Data Stolen
Okta warns that hackers broke into its support case management system and stole sensitive data that can be used to impersonate valid users.
DarkReading
Ducktail Infostealer, DarkGate RAT Linked to Same Threat Actors
Vietnamese cybercrime groups are using multiple different MaaS infostealers and RATs to target the digital marketing sector.
The Hacker News
Vietnamese Hackers Target U.K., U.S., and India with DarkGate Malware
Attacks in the U.K., U.S., and India linked to Vietnamese hackers using DarkGate malware and Ducktail stealer.
Bleeping Computer
Fake Corsair job offers on LinkedIn push DarkGate malware
A threat actor is using fake LinkedIn posts and direct messages about a Facebook Ads specialist position at hardware maker Corsair to lure people into downloading info-stealing malware like DarkGate and RedLine.
The Hacker News
Unleashing the Power of the Internet of Things and Cyber Security
IoT adoption is on the rise, but it comes with risks. Explore the challenges and opportunities of seamlessly integrating IoT into your business while
The Record
Exclusive: How a defend-forward operation gave Ukraine’s SBU an edge over Russia
On a recent trip to Kyiv, the Click Here team spoke with Illia Vitiuk, head of the cyber department of the Security Service of Ukraine, about the importance of an early operation with U.S. hunt teams and why he considers attacks on civil infrastructure “to be nothing but a war crime.”
DarkReading
North Korean State Actors Attack Critical Bug in TeamCity Server
Known threat groups Diamond Sleet and Onyx Sleet focus on cyber espionage, data theft, network sabotage, and other malicious actions, Microsoft says.
Bleeping Computer
Microsoft extends Purview Audit log retention after July breach
Microsoft is extending Purview Audit log retention as promised after the Chinese Storm-0558 hacking group breached dozens of Exchange and Microsoft 365 corporate and government accounts in July.
ZDNet
What is ransomware? Everything you need to know and how to reduce your risk
The ransomware business is booming, and really anyone can be the next victim. Here's how to protect yourself and your organization from an attack. Too late for prevention? We'll show you what to do next.
Computerworld
Apple’s latest China App Store problem is a warning for us all
As pressure grows for Apple to support app purchases from outside its App Store, reports the company has fired App Store staffers for 'business misconduct' should send a little chill up your spine.
The Hacker News
Vulnerability Scanning: How Often Should I Scan?
Discover the importance of continuous vulnerability scanning in 2023 and how it can protect your business from emerging threats.
CSO
Palo Alto Networks updates Prisma Cloud with integrated cloud security
With the new code-to-cloud intelligence capabilities, Prisma Cloud aims to create a single point of security control for all cloud-native workflows.
Cyber Security News
Best Unified Network Security Solutions for Small Businesses
Best Unified Network Security Solutions for Small Businesses. 1. Perimeter 81, 2. Snort, 3. OSSEC, 4. Wireshark, 5. Burp Suite, 6. Splunk.
CSO
Most organizations globally have implemented zero trust
Zero-trust adoption is growing according to a recent report from Okta that found 61% of organizations have already implemented a zero-trust initiative.
CyberNews
DDoS attacks trending upwards: multiple EU websites under siege
DDoS attacks are currently on the rise.
The Record
Exclusive: Ukraine says joint mission with US derailed Moscow’s cyberattacks
Ukrainian officials speak with the Click Here podcast team about something they previously kept close to the vest: Their country's hunt forward operations with personnel from U.S. Cyber Command.
The Record
Lloyd’s of London finds hypothetical cyberattack could cost world economy $3.5 trillion
Researchers found that a global attack would shave off trillions in gross domestic product over a five-year period, with the United States the worst hit, followed by China and Japan.
Infosecurity News
Persistent Espionage Campaign Targets APAC Governments
Kaspersky said the campaign exploiting USB drives first came to light in early 2023
Infosecurity News
Fake Browser Updates Used in Malware Distribution
Proofpoint have identified at least four distinct threat clusters
Cyber Security News
Top 10 Best Insider Risk Management Platforms - 2023
Best Insider Risk Management Platforms. 1. DoControl 2.ActivTrak 3. Elevate Platform 4. Splunk 5.Varonis 6.Forcepoint 7.Securonix 8. Observe It 9. Exabeam 10.LogRhythm
Bleeping Computer
Fighting off cyberattacks? Make sure user credentials aren’t compromised
Login credential theft presents one of the biggest and most enduring cybersecurity problems. This article by Specops SOftware looks at the motivations driving credential theft and the tactics bad actors are likely to use.
The Record
Chilean government warns of Black Basta ransomware attacks after customs incident
The government of Chile warned of ransomware attacks by a notorious gang of hackers after its customs department dealt with an incident on Tuesday.
Bleeping Computer
Hackers exploit critical flaw in WordPress Royal Elementor plugin
A critical severity vulnerability impacting Royal Elementor Addons and Templates up to version 1.3.78 is reported to be actively exploited by two WordPress security teams.
Latest Hacking News
DarkGate Malware Becomes Active, Spreads Via Skype Accounts
The notorious DarkGate malware has become active again, as it now spreads via compromised Skype accounts. Researchers warn users to remain cautious while interacting with unknown accounts. DarkGate Malware Spreads Via Compromised Skype Accounts According to a
The Hacker News
The Fast Evolution of SaaS Security from 2020 to 2024 (Told Through Video)
SaaS Security breaches often stem from misconfigured settings. Learn how 'SaaS Security on Tap' video series tackles the key concepts.
-1.webp)
Cyber Security News
Hackers Abusing Skype and Teams to Deliver the DarkGate Malware
o spread the DarkGate malware to the targeted businesses, hackers utilized the Teams and Skype messaging platforms.
The Record
Cisco: Hackers targeting zero-day found in internet-exposed routers
The vulnerability carries the highest severity score possible of 10 and would “grant an attacker full administrator privileges" of the affected router.
The Record
Kwik Trip says ‘network incident’ causing disruptions at stores
Kwik Trip addressed widely reported outages that disrupted services at its more than 800 stores across the U.S. this week, writing on several social media sites that it is in the midst of a “network incident.”
The Record
Colonial Pipeline attributes ransomware claims to ‘unrelated’ third-party data breach
Colonial Pipeline said there has been no disruption to pipeline operations or their systems after a ransomware gang made several threats on Friday afternoon.
Bleeping Computer
DarkGate malware spreads through compromised Skype accounts
Between July and September, DarkGate malware attacks have used compromised Skype accounts to infect targets through messages containing VBA loader script attachments.
The Hacker News
DarkGate Malware Spreading via Messaging Services Posing as PDF Files
DarkGate malware is now spreading through instant messaging apps like Skype & Microsoft Teams.
DarkReading
DarkGate Operator Uses Skype, Teams Messages to Distribute Malware
A plurality of the targets in the ongoing campaign have been based in the Americas.
ZDNet
Ransomware victims continue to pay up, while also bracing for AI-enhanced attacks
Most organizations have paid up in a ransomware attack, with more than half shelling out over $100,000, and most see generative AI offering malicious hackers more ways to launch attacks, according to a recent survey.
Bleeping Computer
Apple fixes iOS Kernel zero-day vulnerability on older iPhones
Apple has published security updates for older iPhones and iPads to backport patches released one week ago, addressing two zero-day vulnerabilities exploited in attacks.
DarkReading
Uber's Ex-CISO Appeals Conviction Over 2016 Data Breach
Joe Sullivan's lawyers have claimed his conviction on two felony charges is based on tenuous theories and criminalizes the use of bug bounty programs.
Infosecurity News
Fifth of UK Cybersecurity Pros Work Excessive Hours
Workload is biggest concern for industry professionals
Trend Micro
DarkGate Opens Organizations for Attack via Skype, Teams
We detail an ongoing campaign abusing messaging platforms Skype and Teams to distribute the DarkGate malware to targeted organizations. We also discovered that once DarkGate is installed on the victim’s system, additional payloads were introduced to the environment.