Recent Security News
-
Mandiant’s brute-forced X account exposes perils of skimping on 2FA
January 11, 2024 at 12:35PM Mandiant’s investigation of the takeover of its X account revealed a successful brute-force attack due to a change in two-factor authentication policy. The use of SMS-based 2FA was removed, leaving accounts vulnerable. The compromise led to a scam pushing CLICKSINK drainer-as-a-service, highlighting the rise of such attacks targeting valuable cryptocurrency…
-
Anonymous Sudan Launches Cyberattack on Chad Telco
January 11, 2024 at 11:07AM Anonymous Sudan launched a “massive cyberattack” on Sudachad, a telecommunications provider in Chad. The attack targeted critical infrastructure, leading to a collapse in Internet connectivity on Jan. 10. The group cited Chad’s support for the paramilitary group Rapid Support Forces as the motive. Sudachad holds a 20-year concession agreement for…
-
Threat Actors Increasingly Abusing GitHub for Malicious Purposes
January 11, 2024 at 10:53AM GitHub’s widespread usage in IT has made it an attractive option for threat actors to host and deliver malicious content, acting as dead drop resolvers, command-and-control, and data exfiltration points. The platform is used for various malicious activities, including payload delivery and phishing, presenting challenges for traditional security defenses. Recorded…
-
Coming Soon to a Network Near You: More Shadow IoT
January 11, 2024 at 10:41AM Former Microsoft product head Panos Panay has left to lead Amazon’s product division, aiming to enhance their device ecosystem, including Alexa, Echo, and Fire TV. The rising number of IoT devices presents security concerns, especially as consumer devices infiltrate commercial networks. Amazon’s plans to expand its device range could compound…
-
China-Linked Volt Typhoon Hackers Possibly Targeting Australian, UK Governments
January 11, 2024 at 10:41AM Chinese state-sponsored hackers are targeting government entities in the US, UK, and Australia by exploiting old vulnerabilities in Cisco routers, reports SecurityScorecard. The actors likely compromised one-third of observed vulnerable devices and may operate a much larger botnet than previously believed, as indicated by connections to government sites. The attacks…