- Details
- Written by: Merticaru Dorin Nicolae
- Category: Cyber Security News
- Hits: 89
- Hybrid commerce: Blurring the lines between business and pleasure. (to the original material)
- Avast researchers released a free BianLian ransomware decryptor for some variants of the malware. (to the original material)
- Experts spotted a backdoor that borrows code from CIA’s Hive malware. (to the original material)
- T95 Android TV Box sold on Amazon hides sophisticated malware. (to the original material)
- Europol arrested cryptocurrency scammers that stole millions from victims. (to the original material)
- Major security breach exposes usernames and passwords of Norton Password Manager customers. (to the original material)
- Microsoft releases a script to restore a 'subset' of shortcuts deleted by rogue Defender ASR rule. (to the original material)
- Doxing - another online danger for women. (to the original material)
- US Copyright Term Extensions Have Stopped, But the Public Domain Still Faces Threats. (to the original material)
- It’s Copyright Week 2023: Join Us in the Fight for Better Copyright Law and Policy. (to the original material)
- Lateral movement: The key to identity-based attacks. (to the original material)
- US to Launch Third Iteration of 'Hack the Pentagon' Bug Bounty Program. (to the original material)
- CircleCI Confirms Data Breach Was Caused By Infostealer on Employee Laptop. (to the original material)
- Qbot Overtakes Emotet in December 2022's Most Wanted Malware List. (to the original material)
- Hackers Hijack NortonLifeLock Customer Accounts. (to the original material)
- US Court Orders $17m Be Given to BitConnect Victims. (to the original material)
- TikTok Fined Over $5m for Cookie Violations. (to the original material)
- Rapid7 CEO Corey Thomas on Targeting Phishing Infrastructure. (to the original material)
- New Technologies to Tackle Authorized Payment, Zelle Scams. (to the original material)
- Attacks on 2 Specialty Care Providers Affect Nearly 600,000. (to the original material)
- Norton Password Manager Accounts at Risk After Attack. (to the original material)
- Hypr CEO Bojan Simic on Bringing Passwordless to Edge Cases. (to the original material)
- How FIDO2 Can Streamline Passwordless Tech, Account Recovery. (to the original material)
- Ransomware Attack Affects 1,000 Vessels Worldwide. (to the original material)
- Phishing 101: How to Not Fall for a Phishing Attack. (to the original material)
- Profit at Any Cost: Why Ransomware Gangs Such as LockBit Lie. (to the original material)
- CircleCI breach post-mortem: Attackers got in by stealing engineer’s session cookie. (to the original material)
- Cacti servers under attack by attackers exploiting CVE-2022-46169. (to the original material)
- 10 data security enhancements to consider as your employees return to the office. (to the original material)
- Post-quantum cybersecurity threats loom large. (to the original material)
- Researchers to release PoC exploit for critical ManageEngine RCE bug, patch now. (to the original material)
- MSI breaks Secure Boot for hundreds of motherboards. (to the original material)
- Vice Society ransomware leaks University of Duisburg-Essen’s data. (to the original material)
- Datadog rotates RPM signing key exposed in CircleCI hack. (to the original material)
- Malicious ‘Lolip0p’ PyPi packages install info-stealing malware. (to the original material)
- Avast releases free BianLian ransomware decryptor. (to the original material)
- Details
- Written by: Merticaru Dorin Nicolae
- Category: Cyber Security News
- Hits: 73
- 1.7 TB of data stolen from digital intelligence firm Cellebrite leaked online. (to the original material)
- Hacker stole credit cards from the website of Canada’s largest alcohol retailer LCBO (Canadian Liquor Control Board of Ontario). (to the original material)
- Security Affairs newsletter Round 402 by Pierluigi Paganini. (to the original material)
- Meta Sues Scraping-for-Hire Provider, Closes 60,000 Accounts. (to the original material)
- Week in review: ChatGPT as an infosec assistant, Google offers help to EU cybersecurity startups. (to the original material)
- Hackers exploit Cacti critical bug to install malware, open reverse shells. (to the original material)
- TikTok slapped with $5.4 million fine over cookie opt-out feature. (to the original material)
- Details
- Written by: Merticaru Dorin Nicolae
- Category: Cyber Security News
- Hits: 77
- Most internet-exposed Cacti servers exposed to hacking. (to the original material)
- French CNIL (Commission Nationale de l’Informatique et des Libertés) fined Tiktok $5.4 Million for violating cookie laws. (to the original material)
- EFF-Austin: Digital Privacy At The Texas Legislature. (to the original material)
- CircleCI's hack caused by malware stealing engineer's 2FA-backed session. (to the original material)
- Brave browser’s new Snowflake feature help bypass Tor blocks. (to the original material)
- Canada's largest alcohol retailer's site hacked to steal credit cards. (to the original material)
- Details
- Written by: Merticaru Dorin Nicolae
- Category: Cyber Security News
- Hits: 83
- World's Weakest Passwords: What to do if your password is on this list? (to the original material)
- APT group trojanizes Telegram app – Week in security with Tony Anscombe. (to the original material)
- NortonLifeLock: threat actors breached Norton Password Manager accounts. (to the original material)
- Pro-Russia group NoName057(16) targets Ukraine and NATO countries. (to the original material)
- LockBit ransomware operation behind the Royal Mail cyberattack. (to the original material)
- Threat actors target govt networks exploiting Fortinet SSL-VPN CVE-2022-42475 bug. (to the original material)
- Below the Surface: Cybersecurity trends to watch in 2023. (to the original material)
- Webinar: Simplify Zero Trust Deployment in AWS. (to the original material)
- Open banking remains a closed book for most consumers. (to the original material)
- Addressing the challenge of cybersecurity infrastructure fragmentation [Q&A]. (to the original material)
- Threema vulnerabilities, and which instant messenger has the best protection? (to the original material)
- Threat Round up for January 6 to January 13. (to the original material)
- Vulnerability Spotlight: Integer and buffer overflow vulnerabilities found in QT QML. (to the original material)
- Database encryption takes work, but it’s achievable. (to the original material)
- Old Intel driver vulnerability exploited to evade security systems. (to the original material)
- Cyberattack link to FAA outage dismissed by White House. (to the original material)
- Energy infrastructure cybersecurity legislation introduced. (to the original material)
- Critical flaws found in Cisco small business routers. (to the original material)
- Royal Mail disrupted by ‘cyber incident’. (to the original material)
- Bay Bridge Administrators data breach hits more than 251K individuals. (to the original material)
- Pro-Russian Hacktivist Group Targets Czech Presidential Election. (to the original material)
- Russian Hackers Try to Bypass ChatGPT's Restrictions For Malicious Purposes. (to the original material)
- Cisco Warns of Critical Vulnerability in End-of-Life Routers. (to the original material)
- Royal Mail's Attackers Linked to Russia-Backed LockBit. (to the original material)
- Euro Police Bust Multimillion-Dollar Crypto Fraud Gang. (to the original material)
- Illegal Crypto Transaction Volumes Hit All-Time High. (to the original material)
- Millions of Insurance Customers Compromised Via Supplier. (to the original material)
- Patched Chromium Vulnerability Allowed File Theft. (to the original material)
- Medical Imaging Firm Faces 2 Class Actions in 2022 Breach. (to the original material)
- Preparing for the 'Fifth Generation of Ransomware'. (to the original material)
- French CNIL Fines TikTok 5 Million Euros for Cookie Policies. (to the original material)
- Contrast CEO on Why It's Tough to Guard Open-Source Software. (to the original material)
- ISMG Editors: Impact of Fragmented Russian Darknet Market. (to the original material)
- LockBit Tries to Distance Itself From Royal Mail Attack. (to the original material)
- 3 Cyber Risks in the Era of Musk and Twitter. (to the original material)
- LockBit Tries to Distance Itself From Royal Mail Attack. (to the original material)
- Vulnerabilities in cryptographic libraries found through modern fuzzing. (to the original material)
- FortiOS flaw was exploited to compromise governmental targets (CVE-2022-42475). (to the original material)
- 70% of apps contain at least one security flaw after 5 years in production. (to the original material)
- The Week in Ransomware - January 13th 2023 - LockBit in the spotlight. (to the original material)
- PoC exploits released for critical bugs in popular WordPress plugins. (to the original material)
- NortonLifeLock warns that hackers breached Password Manager accounts. (to the original material)
- Details
- Written by: Merticaru Dorin Nicolae
- Category: Cyber Security News
- Hits: 85
- Juniper Networks Releases Security Updates for Multiple Products. (to the original material)
- Drupal Releases Security Update to Address Vulnerability in Private Taxonomy Terms. (to the original material)
- CISA Releases Twelve Industrial Control Systems Advisories. (to the original material)
- CloudSek launches free security tool that helps users win bug bounty. (to the original material)
- Cybersecurity spending and economic headwinds in 2023. (to the original material)
- Meta’s Tracking Woes Confirmed As It Intensifies Its Battle For Control Of The EU’s GDPR. (to the original material)
- Reading Is Cool Again. The Reason? Social Media. (to the original material)
- How to instrument system applications on Android stock images. (to the original material)
- Global Risks Report: Understand the risk landscape in 2023 and beyond. (to the original material)
- Cisco won’t fix router flaws even though PoC exploit is available (CVE-2023-20025, CVE-2023-20026). (to the original material)
- 6 oversights that enable data breaches. (to the original material)
- Threat actors actively exploit Control Web Panel RCE following PoC release. (to the original material)
- Threat actors claim access to Telegram servers through insiders. (to the original material)
- Twitter: 200M dataset was not obtained through the exploitation of flaws in its systems. (to the original material)
- Social marketplace Trustanduse exposes nearly half a million users. (to the original material)
- LockBit Ransomware Group Reportedly Behind Royal Mail Attack. (to the original material)
- Giving Patients Easy Access to Health Info: A Balancing Act. (to the original material)
- Gootkit Malware Found Targeting Australian Healthcare Sector. (to the original material)
- US and Japan Pledge Deepened Cyberspace Collaboration. (to the original material)
- Healthcare CISO Group Focuses on Third-Party Risk Challenges. (to the original material)
- Twitter: Latest Dump Has 'Already Publicly Available' Data. (to the original material)
- Cloudflare integration with Microsoft focuses on zero trust for remote environments. (to the original material)
- A third of companies don’t offer cybersecurity training to remote workers. (to the original material)
- There’s no such thing as ‘100% security’. (to the original material)
- Critical vulnerabilities in Siemens PLC devices could allow bypass of protected boot features (CVE-2022-38773). (to the original material)
- Global Risks Report: Understand the risk landscape in 2023 and beyond. (to the original material)
- Cisco won’t fix router flaws even though PoC exploit is available (CVE-2023-20025, CVE-2023-20026). (to the original material)
- 6 oversights that enable data breaches. (to the original material)
- Hackers exploit Control Web Panel flaw to open reverse shells. (to the original material)
- Royal Mail cyberattack linked to LockBit ransomware operation. (to the original material)
- RAT malware campaign tries to evade detection using polyglot files. (to the original material)
- Microsoft: Exchange Server 2013 reaches end of support in 90 days. (to the original material)
- Android TV box on Amazon came pre-installed with malware. (to the original material)
- Microsoft: Cuba ransomware hacking Exchange servers via OWASSRF flaw. (to the original material)
- MetaMask warns of new 'Address Poisoning' cryptocurrency scam. (to the original material)
- European police takes down call centers behind cryptocurrency scams. (to the original material)
- Vice Society ransomware claims attack on Australian firefighting service. (to the original material)
- Fortinet: Govt networks targeted with now-patched SSL-VPN zero-day. (to the original material)
- Introducing IPyIDA: A Python plugin for your reverse‑engineering toolkit. (to the original material)
- How to Fix “There Has Been a Critical Error on This Website” in WordPress. (to the original material)
- Almost half of people think cyberattackers shouldn't be prosecuted -- provided they hand back some of their proceeds. (to the original material)
- New Year’s resolutions for a secure 2023. (to the original material)
- Threat Source newsletter (Jan. 12, 2023): Did ChatGPT write our newsletter? (to the original material)
- How to Stay Safe When Working Remotely. (to the original material)
- Can Websites & Apps Track Your Phone? (to the original material)
