The Hacker News
North Korean Hackers Deploy New Golang Malware 'Durian' Against Crypto Firms
North Korean hackers have unleashed a new Golang malware called "Durian" in targeted attacks against South Korean crypto firms.
The Hacker News
North Korean hackers have unleashed a new Golang malware called "Durian" in targeted attacks against South Korean crypto firms.
The Record
The former U.S. Cyber Command and National Security Agency chief will be the founding director of a national security-focused hub at the Nashville-based campus.
The Record
The campaign by Chinese hackers to target U.S. critical infrastructure is intended to “cause disruption and sow societal panic,” a senior cybersecurity official said Tuesday.
SecurityWeek
United States Cyber Command (USCYBERCOM) has named Ms. Morgan M. Adamski as Executive Director effective June 2024.
Security Affairs
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Cyber Security News
The weekly news summary keeps you up to date with what’s happening in cybersecurity, including developments, vulnerabilities, breaches, threats, and defensive strategies. Knowing about new cyber risks and attack vectors helps you put up safeguards and preventive measures as soon as possible to protect your systems. Remaining constantly aware gives you a holistic view of […]
Bleeping Computer
The NSA and FBI warned that the APT43 North Korea-linked hacking group exploits weak email Domain-based Message Authentication Reporting and Conformance (DMARC) policies to mask spearphishing attacks.
Security Affairs
The Ubiquiti EdgeRouter botnet is still used by Russia-linked group APT28 and cybercriminals organizations.
Infosecurity News
The US warns that the North Korea-linked Kimsuky group is exploiting poorly configured DMARC protocols to spoof legitimate domains in espionage phishing campaigns
SecurityWeek
The US government warns of a North Korean threat actor abusing weak email DMARC settings to hide spear-phishing attacks.
SecurityWeek
4,000 take part in Locked Shields 2024 exercise, Qantas and JP Morgan hit by data exposure bugs, NVIDIA patches critical flaw.
The Hacker News
U.S. government warns of North Korean hackers sending spoofed emails to gather intelligence.
The Record
The FBI, NSA are warning that the group labeled Kimsuky is exploiting improperly configured instances of DMARC, an email security tool, to send messages intended to trick recipients into thinking they came from legitimate sources.
SC Magazine
The state-sponsored group is exploiting weak DMARC policies to impersonate legitimate domains.
DarkReading
Organizations can go a long way toward preventing spoofing attacks by changing one basic parameter in their DNS settings.
Security Affairs
Government agencies from the US, Canada and the UK warn of Russian threat actors targeting critical infrastructure in North America and Europe
CyberNews
Independent and ideologically motivated pro-Russian hacktivists can physically threaten insecure and misconfigured operational technology devices.
Bleeping Computer
The US government is warning that pro-Russian hacktivists are seeking out and hacking into unsecured operational technology (OT) systems used to disrupt critical infrastructure operations.
Security Affairs
A former U.S. NSA employee has been sentenced to nearly 22 years in prison for attempting to sell classified documents to Russia.
The Hacker News
Former NSA employee sentenced to nearly 22 years in prison for attempting to sell classified documents to Russia.
Cyber Security News
Jareh Sebastian Dalke, 32, sentenced today to 262 months in prison for attempted espionage in connection to transmit classified NDI
CSO
In the written testimony before the House Energy and Commerce Committee, CEO Andrew Witty said after gaining access, the threat actor moved laterally within the systems using sophisticated methods and exfiltrated data.
The Record
The number of FBI searches of the database of a warrantless surveillance program was cut more than in half last year, according to a U.S. intelligence report.
SecurityWeek
Noteworthy stories that might have slipped under the radar: Volkswagen hacked by Chinese threat group, DDoS service shut down, Rubrik IPO.
CSO
Hackers exploited previously undetected vulnerabilities in Cisco’s Adaptive Security Appliances — a product that combines multiple cybersecurity functions.
Infosecurity News
Microsoft has warned of a long-running credential stealing campaign from Russia’s APT28
Cyber Security News
FBI Director Christopher Wray highlighted the severe and ongoing cyber threats posed by the Chinese government to U.S. national.
The Hacker News
Hackers linked to Russia have been exploiting a Windows bug for YEARS to deploy GooseEgg malware for escalating attack access.
Ars Technica
Microsoft didn't disclose the in-the-wild exploits by Kremlin-backed group until now.
Bleeping Computer
Microsoft warns that the Russian APT28 threat group exploits a Windows Print Spooler vulnerability to escalate privileges and steal credentials and data using a previously unknown hacking tool called GooseEgg.
Bleeping Computer
Microsoft warns that the Russian APT28 threat group exploits a Windows Print Spooler vulnerability to escalate privileges and steal credentials and data using a previously unknown hacking tool called GooseEgg.
Infosecurity News
The new document is the first release from NSA’s Artificial Intelligence Security Center (AISC), in partnership with other government agencies in the US and other Five Eyes countries
Security Affairs
China-linked threat actors are preparing cyber attacks against U.S. critical infrastructure warned FBI Director Christopher Wray.
CyberSecurity Dive
Attack vectors unique to AI may attract malicious actors on the hunt for sensitive data or intellectual property, the NSA warned.
DarkReading
Attackers are indiscriminately targeting VPNs from Cisco and several other vendors in what may be a reconnaissance effort, company says.
SecurityWeek
Five Eyes cybersecurity agencies have released joint guidance on securely deploying and operating AI systems.
DarkReading
"Kapeka" and "Fuxnext" are the latest examples of malware to emerge from the long-standing conflict between the two countries.
Cyber Security News
In an era where artificial intelligence (AI) systems are becoming increasingly integral to our daily lives, the National Security
Infosecurity News
Orca Security said the issue mirrors a previously identified vulnerability in Azure CLI
SecurityWeek
SecurityWeek interviews Kevin O’Connor, a high school hacker who went on to work for NSA. He is now director of threat research at Adlumin.
The Cyber Express
The National Security Agency (NSA) is taking a proactive stance in cybersecurity with the release of a Cybersecurity Information Sheet
DarkReading
Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: facing hard truths in software security, and the latest guidance from NSA.
SecurityWeek
Moscow sewage system hacked, a new women in cybersecurity report, PasteHub domain seized by law enforcement.
SecurityWeek
Startup Knostic emerges from stealth mode with $3.3 million in funding and a gen-AI access control product for enterprises.
SecurityWeek
USCYBERCOM said its Cyber National Mission Force participated in 22 foreign hunt forward operations in 2023.
DarkReading
Agency encourages broader use of encryption, data loss, and prevention, as well as data rights management, to safeguard data, networks, and users.
The Record
Gen. Timothy Haugh told senators that personnel from the Cyber National Mission Force (CNMF) were assigned to watch foreign networks nearly two dozen times in 2023, with permission of the host country.
Cyber Security News
The CISA, in collaboration with international partners, has released comprehensive advisories aimed at mitigating LOTL attack techniques.
SecurityWeek
US National Security Agency appoints Dave Luber as its new cybersecurity director following the retirement of Rob Joyce.
CyberScoop
Beijing’s influence operations are experimenting with synthetically generated content to carry out influence operations, per Microsoft report.
Bleeping Computer
The U.S. Department of State is investigating claims of a cyber incident after a threat actor leaked documents allegedly stolen from a government contractor.
Ars Technica
Summer 2023 intrusion pinned to corporate culture, "avoidable errors."
SecurityWeek
Quantum decryption will make all certificates and everything else using RSA encryption vulnerable to everyone.
The Record
The two agencies' joint election security task force has convened every election year for the last several campaign cycles. For 2024, the NSA and Cyber Command aren't identifying who's in charge.
The Record
A specialty insurer on Tuesday unveiled a new product offering cyber insurance for automobiles, providing coverage protecting drivers from cyberattacks, ransomware and identity theft.
Bleeping Computer
The Finnish Police confirmed on Tuesday that the APT31 hacking group linked to the Chinese Ministry of State Security (MSS) was behind a breach of the country's parliament disclosed in March 2021.
Security Affairs
US Treasury announced sanctions on two APT31 Chinese hackers linked to attacks against organizations in the US critical infrastructure sector
The Cyber Express
The Pentagon and Congress are at a crucial point in tackling deficiencies in the US military's cyber operations. There's a
Cyber Security News
cybersecurity news will keep you posted on the latest developments, exposures, advances, occurrences, threats, and narratives in this field.
Infosecurity News
SentinelLabs researchers identified the malware as a new variant of AcidRain
SecurityWeek
Praefortis is a new company pushing ethical and transparent recovery of lost or forgotten crypto wallet passwords.
DarkReading
The White House urged operators of water and wastewater systems to review and beef up their security against attacks by Iran- and China-based groups.
Infosecurity News
The agency has issued a fact sheet about the threat actor, emphasizing the importance of cyber-risk as a core business concern
The Cyber Express
CISA, alongside key partners such as the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), and various U.S.
CyberSecurity Dive
Officials are pushing tips to help potential victims detect and mitigate Volt Typhoon’s evasive techniques as the was warnings take on urgency.
Cyber Security News
CISA, along with the NSA, the FBI, & international partners, have issued a stark warning about a cyber threat group known as "Volt Typhoon."
SC Magazine
Jasmin ransomware, SparkRAT and XMRig cryptominers were dropped post-exploitation of CVE-2024-27198.
Bleeping Computer
CISA, the NSA, the FBI, and several other agencies in the U.S. and worldwide warned critical infrastructure leaders to protect their systems against the Chinese Volt Typhoon hacking group.
CyberNews
The deepfake of Mark Zuckerberg is just one of several published online by an AI startup bent on making video cameras a thing of the past.
The Record
Federal agencies are “not done with efforts to uncover or eradicate” threats created by the Chinese group known as Volt Typhoon, says Rob Joyce, the outgoing director of the NSA’s Cybersecurity Directorate.
The Record
MediaWorks says it is investigating after a hacker claimed to have stolen the data of just over 2.4 million people and began targeting individuals for extortion payments.
DarkReading
All companies — and not just federal agencies — should aim to adopt the "network and environment" pillar of the National Security Agency's zero-trust guidelines.
DarkReading
CVE-2024-48788, like many other recent Fortinet flaws, will likely be an attractive target, especially for nation-state backed actors.
Infosecurity News
The advisory is associated with ten companion cybersecurity information sheets detailing how to implement each strategy
Cyber Security News
NSA and CISA released "Top Ten Cloud Security Mitigation Strategies" to advise cloud users on critical security practices for migrating data.
The Record
Jessica Brandt, who previously held a variety of prominent research roles at Washington think tanks, is now in charge of the Foreign Malign Influence Center.
Cyber Security News
Stay updated with the most recent advancements in the cybersecurity industry with our weekly recap of cybersecurity news.
DarkReading
Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps.
SecurityWeek
Noteworthy stories that might have slipped under the radar: Google AI bug bounties, font vulnerabilities, IBM opens new training facility.
DarkReading
Zero-trust architectures are essential protective measures for the modern enterprise. The latest NSA guidance provides detailed recommendations on how to implement the networking angle of the concept.
Bleeping Computer
The NSA and the Cybersecurity and Infrastructure Security Agency (CISA) have released five joint cybersecurity bulletins containing on best practices for securing a cloud environment.
The Cyber Express
In a world where technology and healthcare collide, a disturbing pattern has emerged: cyberattacks on hospitals in the United States
Infosecurity News
The routers were hijacked to steal credentials, proxy traffic, and host phishing pages and custom tools
Cyber Security News
Threat actors hijack routers to gain unauthorized access to network traffic. This enables them to monitor, manipulate, or intercept sensitive
SecurityWeek
The US government says Russia’s APT28 group compromised Ubiquiti EdgeRouters to run cyberespionage operations worldwide.
HACKRead
Russian hackers from APT28 are using hacked Ubiquiti EdgeRouters to build extensive botnets, steal credentials and other malicious activities.
Security Affairs
Russian cyberspies are compromising Ubiquiti EdgeRouters to evade detection, warns a joint advisory published by authorities.
SC Magazine
The routers’ utility makes them “popular for both consumers and malicious cyber actors,” security agencies warn.
Bleeping Computer
Russian APT28 military hackers are using compromised Ubiquiti EdgeRouters to evade detection, the FBI says in a joint advisory issued with the NSA, the U.S. Cyber Command, and international partners.
SecurityWeek
Quantum Computing Insights: The quantum debate is full of questionable cybersecurity assumptions circling around the cryptopocalypse.
SC Magazine
The Russian hacking group switched to attacking cloud-hosted networks to gain initial access.
Bleeping Computer
The White House Office of the National Cyber Director (ONCD) urged tech companies today to switch to memory-safe programming languages, such as Rust, to improve software security by reducing the number of memory safety vulnerabilities.
Bleeping Computer
Members of the Five Eyes (FVEY) intelligence alliance warned today that APT29 Russian Foreign Intelligence Service (SVR) hackers are now switching to attacks targeting their victims' cloud services.
The Record
The Biden administration is continuing to pressure the tech industry to make products that are secure from the outset, issuing a call on Monday for greater use of memory-safe programming languages.
Security Affairs
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
DarkReading
His retirement will go into effect on March 31, concluding 34 years of service to the National Security Agency.
SecurityWeek
CISA, FBI and EPA release guidance on how Water and Wastewater Systems Sector entities can secure their environments.
Cyber Security News
Rob Joyce, the esteemed Director of Cybersecurity, is set to retire on March 31, 2024, after a distinguished 34-year career with the agency.
The Cyber Express
NSA veteran Rob Joyce retires from the post of director, scheduled for the end of March, marking the culmination of
CyberSecurity Dive
The NSA veteran is retiring at the end of March after 34 years with the agency. David Luber, deputy director of the Cybersecurity Directorate, will succeed Joyce.
Loading more articles....