The Hacker News
North Korean Hackers Deploy New Golang Malware 'Durian' Against Crypto Firms
North Korean hackers have unleashed a new Golang malware called "Durian" in targeted attacks against South Korean crypto firms.
The Record
Former NSA head Paul Nakasone to helm national security institute at Vanderbilt
The former U.S. Cyber Command and National Security Agency chief will be the founding director of a national security-focused hub at the Nashville-based campus.
The Record
Any number given of Volt Typhoon victims ‘likely an underestimate,’ CISA says
The campaign by Chinese hackers to target U.S. critical infrastructure is intended to “cause disruption and sow societal panic,” a senior cybersecurity official said Tuesday.
SecurityWeek
US Cyber Command Appoints Morgan Adamski as Executive Director
United States Cyber Command (USCYBERCOM) has named Ms. Morgan M. Adamski as Executive Director effective June 2024.
Security Affairs
Security Affairs newsletter Round 470 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
.png)
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
The weekly news summary keeps you up to date with what’s happening in cybersecurity, including developments, vulnerabilities, breaches, threats, and defensive strategies. Knowing about new cyber risks and attack vectors helps you put up safeguards and preventive measures as soon as possible to protect your systems. Remaining constantly aware gives you a holistic view of […]
Bleeping Computer
NSA warns of North Korean hackers exploiting weak DMARC email policies
The NSA and FBI warned that the APT43 North Korea-linked hacking group exploits weak email Domain-based Message Authentication Reporting and Conformance (DMARC) policies to mask spearphishing attacks.
Security Affairs
Russia-linked APT28 and crooks are still using the Moobot botnet
The Ubiquiti EdgeRouter botnet is still used by Russia-linked group APT28 and cybercriminals organizations.
Infosecurity News
North Korean Hackers Spoofing Journalist Emails to Spy on Experts
The US warns that the North Korea-linked Kimsuky group is exploiting poorly configured DMARC protocols to spoof legitimate domains in espionage phishing campaigns
SecurityWeek
US Says North Korean Hackers Exploiting Weak DMARC Settings
The US government warns of a North Korean threat actor abusing weak email DMARC settings to hide spear-phishing attacks.
SecurityWeek
In Other News: Locked Shields 2024, Data Exposure Bugs, NVIDIA Patches
4,000 take part in Locked Shields 2024 exercise, Qantas and JP Morgan hit by data exposure bugs, NVIDIA patches critical flaw.
The Hacker News
NSA, FBI Alert on N. Korean Hackers Spoofing Emails from Trusted Sources
U.S. government warns of North Korean hackers sending spoofed emails to gather intelligence.
The Record
Email security loopholes are latest path for North Korean social engineering attacks
The FBI, NSA are warning that the group labeled Kimsuky is exploiting improperly configured instances of DMARC, an email security tool, to send messages intended to trick recipients into thinking they came from legitimate sources.
SC Magazine
FBI warns of email spoofing by North Korean threat actor Kimsuky
The state-sponsored group is exploiting weak DMARC policies to impersonate legitimate domains.
DarkReading
DPRK's Kimsuky APT Abuses Weak DMARC Policies, Feds Warn
Organizations can go a long way toward preventing spoofing attacks by changing one basic parameter in their DNS settings.
Security Affairs
Pro-Russia hackers target critical infrastructure in North America and Europe
Government agencies from the US, Canada and the UK warn of Russian threat actors targeting critical infrastructure in North America and Europe
CyberNews
Authorities urging immediate action against pro-Russian hacktivist attacks
Independent and ideologically motivated pro-Russian hacktivists can physically threaten insecure and misconfigured operational technology devices.
Bleeping Computer
US govt warns of pro-Russian hacktivists targeting water facilities
The US government is warning that pro-Russian hacktivists are seeking out and hacking into unsecured operational technology (OT) systems used to disrupt critical infrastructure operations.
Security Affairs
Ex-NSA employee sentenced to 262 months in prison for attempting to transfer classified documents to Russia
A former U.S. NSA employee has been sentenced to nearly 22 years in prison for attempting to sell classified documents to Russia.
The Hacker News
Ex-NSA Employee Sentenced to 22 Years for Trying to Sell U.S. Secrets to Russia
Former NSA employee sentenced to nearly 22 years in prison for attempting to sell classified documents to Russia.
.webp)
Cyber Security News
Ex-Infosec Designer Sentenced to Over 21 Years in Prison
Jareh Sebastian Dalke, 32, sentenced today to 262 months in prison for attempted espionage in connection to transmit classified NDI
CSO
UnitedHealth hackers exploited Citrix vulnerabilities, CEO to testify
In the written testimony before the House Energy and Commerce Committee, CEO Andrew Witty said after gaining access, the threat actor moved laterally within the systems using sophisticated methods and exfiltrated data.
The Record
FBI searched Section 702 database half as much in 2023, Biden administration says
The number of FBI searches of the database of a warrantless surveillance program was cut more than in half last year, according to a U.S. intelligence report.
SecurityWeek
In Other News: China Hacked Volkswagen, DDoS Service Shutdown, Rubrik IPO
Noteworthy stories that might have slipped under the radar: Volkswagen hacked by Chinese threat group, DDoS service shut down, Rubrik IPO.
CSO
Cisco urges immediate software upgrade after state-sponsored attack
Hackers exploited previously undetected vulnerabilities in Cisco’s Adaptive Security Appliances — a product that combines multiple cybersecurity functions.
Infosecurity News
Russian APT28 Group in New “GooseEgg” Hacking Campaign
Microsoft has warned of a long-running credential stealing campaign from Russia’s APT28
.webp)
Cyber Security News
FBI Director Wray Issues Warning on Chinese Cyber Attacks
FBI Director Christopher Wray highlighted the severe and ongoing cyber threats posed by the Chinese government to U.S. national.
The Hacker News
Russia's APT28 Exploited Windows Print Spooler Flaw to Deploy 'GooseEgg' Malware
Hackers linked to Russia have been exploiting a Windows bug for YEARS to deploy GooseEgg malware for escalating attack access.
Ars Technica
Kremlin-backed hackers exploit critical Windows vulnerability reported by the NSA
Microsoft didn't disclose the in-the-wild exploits by Kremlin-backed group until now.
Bleeping Computer
Microsoft: APT28 hackers exploit Windows flaw reported by NSA
Microsoft warns that the Russian APT28 threat group exploits a Windows Print Spooler vulnerability to escalate privileges and steal credentials and data using a previously unknown hacking tool called GooseEgg.
Bleeping Computer
Microsoft: APT28 hackers exploit Windows flaw reported by NSA
Microsoft warns that the Russian APT28 threat group exploits a Windows Print Spooler vulnerability to escalate privileges and steal credentials and data using a previously unknown hacking tool called GooseEgg.
Infosecurity News
NSA Launches Guidance for Secure AI Deployment
The new document is the first release from NSA’s Artificial Intelligence Security Center (AISC), in partnership with other government agencies in the US and other Five Eyes countries
Security Affairs
FBI chief says China is preparing to attack US critical infrastructure
China-linked threat actors are preparing cyber attacks against U.S. critical infrastructure warned FBI Director Christopher Wray.
CyberSecurity Dive
NSA sounds alarm on AI’s cybersecurity risks
Attack vectors unique to AI may attract malicious actors on the hunt for sensitive data or intellectual property, the NSA warned.
DarkReading
Cisco Warns of Massive Surge in Password Spraying Attacks on VPNs
Attackers are indiscriminately targeting VPNs from Cisco and several other vendors in what may be a reconnaissance effort, company says.
SecurityWeek
Five Eyes Agencies Release New AI Security Guidance
Five Eyes cybersecurity agencies have released joint guidance on securely deploying and operating AI systems.
DarkReading
Dangerous New ICS Malware Targets Orgs in Russia and Ukraine
"Kapeka" and "Fuxnext" are the latest examples of malware to emerge from the long-standing conflict between the two countries.
Cyber Security News
NSA, CISA Released Guidance And Best Practices To Secure The AI
In an era where artificial intelligence (AI) systems are becoming increasingly integral to our daily lives, the National Security
Infosecurity News
LeakyCLI Flaw Exposes AWS and Google Cloud Credentials
Orca Security said the issue mirrors a previously identified vulnerability in Azure CLI
SecurityWeek
Hacker Conversations: Kevin O’Connor, From Childhood Hacker to NSA Operative
SecurityWeek interviews Kevin O’Connor, a high school hacker who went on to work for NSA. He is now director of threat research at Adlumin.
The Cyber Express
NSA Issues Cybersecurity Guidance for Secure AI Deployment
The National Security Agency (NSA) is taking a proactive stance in cybersecurity with the release of a Cybersecurity Information Sheet
DarkReading
CISO Corner: AI Supply Chain; AI Security Platforms; Cyber Awareness
Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: facing hard truths in software security, and the latest guidance from NSA.
SecurityWeek
In Other News: Moscow Sewage Hack, Women in Cybersecurity Report, Dam Security Concerns
Moscow sewage system hacked, a new women in cybersecurity report, PasteHub domain seized by law enforcement.
SecurityWeek
Knostic Emerges From Stealth With Enterprise Gen-AI Access Controls
Startup Knostic emerges from stealth mode with $3.3 million in funding and a gen-AI access control product for enterprises.
SecurityWeek
US Cyber Force Assisted Foreign Governments 22 Times in 2023
USCYBERCOM said its Cyber National Mission Force participated in 22 foreign hunt forward operations in 2023.
DarkReading
NSA Updates Zero-Trust Advice to Reduce Attack Surfaces
Agency encourages broader use of encryption, data loss, and prevention, as well as data rights management, to safeguard data, networks, and users.
The Record
22 ‘hunt forward’ missions deployed overseas in 2023, Cyber Command leader says
Gen. Timothy Haugh told senators that personnel from the Cyber National Mission Force (CNMF) were assigned to watch foreign networks nearly two dozen times in 2023, with permission of the host country.
.webp)
Cyber Security News
CISA Released Advisories to Mitigate Living Off the Land Attack Techniques
The CISA, in collaboration with international partners, has released comprehensive advisories aimed at mitigating LOTL attack techniques.
SecurityWeek
NSA Appoints Dave Luber as Cybersecurity Director
US National Security Agency appoints Dave Luber as its new cybersecurity director following the retirement of Rob Joyce.
CyberScoop
Chinese hackers turn to AI to meddle in elections
Beijing’s influence operations are experimenting with synthetically generated content to carry out influence operations, per Microsoft report.
Bleeping Computer
US State Department investigates alleged theft of government data
The U.S. Department of State is investigating claims of a cyber incident after a threat actor leaked documents allegedly stolen from a government contractor.
Ars Technica
Microsoft blamed for “a cascade of security failures” in Exchange breach report
Summer 2023 intrusion pinned to corporate culture, "avoidable errors."
SecurityWeek
Heartbleed is 10 Years Old – Farewell Heartbleed, Hello QuantumBleed!
Quantum decryption will make all certificates and everything else using RSA encryption vulnerable to everyone.
The Record
Exclusive: A high-level election security group is back. NSA and Cyber Command want to keep it under the radar
The two agencies' joint election security task force has convened every election year for the last several campaign cycles. For 2024, the NSA and Cyber Command aren't identifying who's in charge.
The Record
Insurer unveils policy covering drivers from connected car hacks and data leaks
A specialty insurer on Tuesday unveiled a new product offering cyber insurance for automobiles, providing coverage protecting drivers from cyberattacks, ransomware and identity theft.
Bleeping Computer
Finland confirms APT31 hackers behind 2021 parliament breach
The Finnish Police confirmed on Tuesday that the APT31 hacking group linked to the Chinese Ministry of State Security (MSS) was behind a breach of the country's parliament disclosed in March 2021.
Security Affairs
US Treasury Dep announced sanctions against members of China-linked APT31
US Treasury announced sanctions on two APT31 Chinese hackers linked to attacks against organizations in the US critical infrastructure sector
The Cyber Express
US Military’s Cyber Force “Broken”: Report Calls for Dedicated Service
The Pentagon and Congress are at a crucial point in tackling deficiencies in the US military's cyber operations. There's a
.png)
Cyber Security News
Cyber Security News Weekly Round-Up : Cyber Attacks, Vulnerabilities, Threats & New Cyber Stories
cybersecurity news will keep you posted on the latest developments, exposures, advances, occurrences, threats, and narratives in this field.
Infosecurity News
New AcidPour Wiper Targeting Linux Devices Spotted in Ukraine
SentinelLabs researchers identified the malware as a new variant of AcidRain
SecurityWeek
Lost Crypto Wallet? New Firm Promises Ethical, Transparent and Inexpensive Recovery
Praefortis is a new company pushing ethical and transparent recovery of lost or forgotten crypto wallet passwords.
DarkReading
Feds Warn About Vulnerability of US Water Systems
The White House urged operators of water and wastewater systems to review and beef up their security against attacks by Iran- and China-based groups.
Infosecurity News
CISA Warns Critical Infrastructure Leaders of Volt Typhoon
The agency has issued a fact sheet about the threat actor, emphasizing the importance of cyber-risk as a core business concern
The Cyber Express
Critical Infrastructure Alert: CISA Releases Fact Sheet on Volt Typhoon Cyber Threats
CISA, alongside key partners such as the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), and various U.S.
CyberSecurity Dive
Five Eyes implores critical infrastructure execs to take China-linked threats seriously
Officials are pushing tips to help potential victims detect and mitigate Volt Typhoon’s evasive techniques as the was warnings take on urgency.
.webp)
Cyber Security News
CISA, NSA & FBI Warns of Volt Typhoon Attacking Targeting Critical Infrastructure
CISA, along with the NSA, the FBI, & international partners, have issued a stark warning about a cyber threat group known as "Volt Typhoon."
SC Magazine
Open-source ransomware, RATs deployed on compromised TeamCity servers
Jasmin ransomware, SparkRAT and XMRig cryptominers were dropped post-exploitation of CVE-2024-27198.
Bleeping Computer
CISA shares critical infrastructure defense tips against Chinese hackers
CISA, the NSA, the FBI, and several other agencies in the U.S. and worldwide warned critical infrastructure leaders to protect their systems against the Chinese Volt Typhoon hacking group.
CyberNews
Mark Zuckerberg trashes Grok in hyperrealistic deepfake
The deepfake of Mark Zuckerberg is just one of several published online by an AI startup bent on making video cameras a thing of the past.
The Record
US is still chasing down pieces of Chinese hacking operation, NSA official says
Federal agencies are “not done with efforts to uncover or eradicate” threats created by the Chinese group known as Volt Typhoon, says Rob Joyce, the outgoing director of the NSA’s Cybersecurity Directorate.
The Record
New Zealand media company: Hackers directly targeting individuals after alleged data breach
MediaWorks says it is investigating after a hacker claimed to have stolen the data of just over 2.4 million people and began targeting individuals for extortion payments.
DarkReading
6 CISO Takeaways from the NSA's Zero-Trust Guidance
All companies — and not just federal agencies — should aim to adopt the "network and environment" pillar of the National Security Agency's zero-trust guidelines.
DarkReading
Fortinet Warns of Yet Another Critical RCE Flaw
CVE-2024-48788, like many other recent Fortinet flaws, will likely be an attractive target, especially for nation-state backed actors.
Infosecurity News
NSA Launches Top 10 Cloud Security Mitigation Strategies
The advisory is associated with ten companion cybersecurity information sheets detailing how to implement each strategy
Cyber Security News
NSA Releases Top 10 Cloud Security Mitigation Strategies - 2024
NSA and CISA released "Top Ten Cloud Security Mitigation Strategies" to advise cloud users on critical security practices for migrating data.
The Record
ODNI appoints new election security leader ahead of presidential race
Jessica Brandt, who previously held a variety of prominent research roles at Washington think tanks, is now in charge of the Foreign Malign Influence Center.
Cyber Security News
Cyber Security News Weekly Round-Up : Vulnerabilities, Cyber Attacks, Threats & New Cyber Stories
Stay updated with the most recent advancements in the cybersecurity industry with our weekly recap of cybersecurity news.
DarkReading
CISO Corner: NSA Guidelines; a Utility SBOM Case Study; Lava Lamps
Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps.
SecurityWeek
In Other News: Google AI Hacking, Font Vulnerabilities, IBM Training Facility
Noteworthy stories that might have slipped under the radar: Google AI bug bounties, font vulnerabilities, IBM opens new training facility.
DarkReading
NSA's Zero-Trust Guidelines Focus on Segmentation
Zero-trust architectures are essential protective measures for the modern enterprise. The latest NSA guidance provides detailed recommendations on how to implement the networking angle of the concept.
Bleeping Computer
CISA, NSA share best practices for securing cloud services
The NSA and the Cybersecurity and Infrastructure Security Agency (CISA) have released five joint cybersecurity bulletins containing on best practices for securing a cloud environment.
The Cyber Express
Audacious Attacks, Evading Answers: Why LockBit, BlackCat Targeting US Healthcare?
In a world where technology and healthcare collide, a disturbing pattern has emerged: cyberattacks on hospitals in the United States
Infosecurity News
FBI Issues Alert on Russian Threats Targeting Ubiquiti Routers
The routers were hijacked to steal credentials, proxy traffic, and host phishing pages and custom tools
Cyber Security News
Russian Hackers Hijack Ubiquiti Routers To Proxy Network
Threat actors hijack routers to gain unauthorized access to network traffic. This enables them to monitor, manipulate, or intercept sensitive
SecurityWeek
US Government Urges Cleanup of Routers Infected by Russia's APT28
The US government says Russia’s APT28 group compromised Ubiquiti EdgeRouters to run cyberespionage operations worldwide.
HACKRead
FBI Alert: Russian Hackers Target Ubiquiti Routers for Data, Botnet Creation
Russian hackers from APT28 are using hacked Ubiquiti EdgeRouters to build extensive botnets, steal credentials and other malicious activities.
Security Affairs
Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations
Russian cyberspies are compromising Ubiquiti EdgeRouters to evade detection, warns a joint advisory published by authorities.
SC Magazine
Ubiquiti router users urged to secure devices targeted by Russian hackers
The routers’ utility makes them “popular for both consumers and malicious cyber actors,” security agencies warn.
Bleeping Computer
Russian hackers hijack Ubiquiti routers to launch stealthy attacks
Russian APT28 military hackers are using compromised Ubiquiti EdgeRouters to evade detection, the FBI says in a joint advisory issued with the NSA, the U.S. Cyber Command, and international partners.
SecurityWeek
Cyber Insights 2024: Quantum and the Cryptopocalypse
Quantum Computing Insights: The quantum debate is full of questionable cybersecurity assumptions circling around the cryptopocalypse.
SC Magazine
Russian cyberespionage group APT29 targeting cloud vulnerabilities
The Russian hacking group switched to attacking cloud-hosted networks to gain initial access.
Bleeping Computer
White House urges devs to switch to memory-safe programming languages
The White House Office of the National Cyber Director (ONCD) urged tech companies today to switch to memory-safe programming languages, such as Rust, to improve software security by reducing the number of memory safety vulnerabilities.
Bleeping Computer
Russian hackers shift to cloud attacks, US and allies warn
Members of the Five Eyes (FVEY) intelligence alliance warned today that APT29 Russian Foreign Intelligence Service (SVR) hackers are now switching to attacks targeting their victims' cloud services.
The Record
After decades of memory-related software bugs, White House calls on industry to act
The Biden administration is continuing to pressure the tech industry to make products that are secure from the outset, issuing a call on Monday for greater use of memory-safe programming languages.
Security Affairs
Security Affairs newsletter Round 460 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
DarkReading
NSA Cybersecurity Director Rob Joyce to Retire
His retirement will go into effect on March 31, concluding 34 years of service to the National Security Agency.
SecurityWeek
US Government Issues Guidance on Securing Water Systems
CISA, FBI and EPA release guidance on how Water and Wastewater Systems Sector entities can secure their environments.
Cyber Security News
NSA Announces Retirement of Cybersecurity Director Rob Joyce
Rob Joyce, the esteemed Director of Cybersecurity, is set to retire on March 31, 2024, after a distinguished 34-year career with the agency.
The Cyber Express
NSA Cyber Director Rob Joyce Retires After 34 Years of Service
NSA veteran Rob Joyce retires from the post of director, scheduled for the end of March, marking the culmination of
CyberSecurity Dive
NSA Cyber Director Rob Joyce to retire
The NSA veteran is retiring at the end of March after 34 years with the agency. David Luber, deputy director of the Cybersecurity Directorate, will succeed Joyce.
Loading more articles....