Recent Security News
-
Swiss Govt Websites Hit by Pro-Russia Hackers After Zelensky Visit
January 17, 2024 at 01:30PM Pro-Russian group “NoName” conducted a cyberattack on Swiss government websites, citing President Zelensky’s Davos visit. National Cyber Security Centre promptly restored access, as expected security measures were in place. The attack used distributed denial-of-service, impacting ministries and offices, but not the main portal. “NoName” group previously targeted Switzerland after Zelensky’s…
-
CISA: AWS, Microsoft 365 Accounts Under Active ‘Androxgh0st’ Attack
January 17, 2024 at 01:21PM The FBI and CISA have issued an alert about a malware campaign targeting Apache webservers and websites using the Laravel Web application framework. The campaign aims to steal credentials for high-profile applications such as AWS, Microsoft 365, Twilio, and SendGrid. The threat actors use a known malware called “Androxgh0st” to…
-
iShutdown scripts can help detect iOS spyware on your iPhone
January 17, 2024 at 01:07PM Security researchers discovered a method to detect spyware infections like Pegasus, Reign, and Predator on compromised Apple mobile devices by analyzing the Shutdown.log file. Kaspersky released Python scripts to automate this process and recommend regular device restarts to capture signs of infection. The method proved reliable in identifying spyware-related behaviors…
-
Q&A: How One Company Gauges Its Employees’ Cybersecurity ‘Fluency’
January 17, 2024 at 12:52PM TAG.Global now mandates all employees to take a cybersecurity fluency assessment to enhance awareness and responsibility for information security. The test, covering various security subjects, aims to build a strong cybersecurity culture. Tawfiq Talhouni plans to extend the program outside the company, contributing to cybersecurity awareness in the Middle East.…
-
US Gov Issues Warning for Androxgh0st Malware Attacks
January 17, 2024 at 11:36AM CISA and FBI have issued a joint advisory warning about Androxgh0st malware creating a botnet to target vulnerable networks. The malware primarily targets .env files containing sensitive information for AWS, Microsoft Office 365, SendGrid, and Twilio. It can abuse SMTP for scanning, exploit stolen credentials and APIs, and deploy web…