Recent Security News

  • RAC duo busted for stealing and selling crash victims’ data

    October 11, 2024 at 07:54AM Two former RAC employees received suspended sentences for illegally copying and selling personal data from accident victims. Debbie Okparavero and Maliha Islam accessed about 29,500 lines of information, allegedly for profit, resulting in guilty pleas under data protection laws. The ICO commended RAC for reporting the breach promptly. ### Meeting…

    Read More

  • How Hybrid Password Attacks Work and How to Defend Against Them

    October 11, 2024 at 07:39AM Threat actors use hybrid password attacks, combining techniques like brute force and dictionary methods to enhance their effectiveness in stealing credentials. To defend against these attacks, organizations should implement multi-factor authentication, require longer passwords, prevent weak patterns, and audit for compromised passwords through tools like Specops Password Policy. ### Meeting…

    Read More

  • Keir Starmer hands ex-Darktrace boss investment minister gig

    October 11, 2024 at 07:24AM Keir Starmer appoints Poppy Gustafsson as the UK’s new investment minister, receiving widespread praise despite her mixed tenure at Darktrace. Gustafsson, with extensive business experience, aims to enhance the UK’s investment appeal. Her new role includes overseeing the Office for Investment’s expansion and collaboration with government departments to attract investment.…

    Read More

  • CISA Warns of Threat Actors Exploiting F5 BIG-IP Cookies for Network Reconnaissance

    October 11, 2024 at 05:27AM CISA warns of threat actors exploiting unencrypted persistent cookies in F5 BIG-IP Local Traffic Manager for network reconnaissance. Organizations are advised to encrypt these cookies and use the BIG-IP iHealth diagnostic tool. Meanwhile, joint U.S.-U.K. agencies highlight threats from APT29, a Russian military intelligence group targeting various sectors. **Meeting Takeaways…

    Read More

  • Earth Simnavaz Levies Advanced Cyberattacks Against UAE and Gulf Regions

    October 11, 2024 at 03:51AM Trend Micro reports on Earth Simnavaz (APT34), a cyber espionage group targeting UAE government entities, using sophisticated tactics like backdoor malware exploiting CVE-2024-30088. The group steals credentials via Microsoft Exchange servers, employing tools to evade detection. Their activities emphasize threats to critical infrastructure amidst geopolitical tensions in the Gulf region.…

    Read More