Recent Security News
-
Nearly 11 million SSH servers vulnerable to new Terrapin attacks
January 3, 2024 at 10:10AM Nearly 11 million internet-exposed SSH servers are vulnerable to the Terrapin attack, which manipulates sequence numbers during the handshake process to compromise the integrity of SSH channels. This attack affects both clients and servers and was developed by academic researchers from Ruhr University Bochum in Germany. The significance of this…
-
5 Steps for Preventing and Mitigating Corporate Espionage
January 3, 2024 at 10:08AM The rise in corporate espionage underscores the need to safeguard sensitive corporate information. Implementing five key strategies can help prevent and mitigate such risks: insist on nondisclosure agreements, know and control trade secrets, perform due diligence, train employees, and promptly investigate suspected activity. This multifaceted approach enhances protection against corporate…
-
Cybersecurity M&A Roundup: 25 Deals Announced in December 2023
January 3, 2024 at 09:42AM In December 2023, 25 cybersecurity-related merger and acquisition (M&A) deals were announced. Some key acquisitions include ACI Learning acquiring Infosec Learning, DeepSeas acquiring GreyCastle Security, and Entersekt acquiring Modirum 3-D Secure. Additionally, there were several other notable acquisitions in the cybersecurity industry. From the meeting notes, I have gathered the…
-
Palestinian Hackers Hit 100 Israeli Organizations in Destructive Attacks
January 3, 2024 at 09:42AM Cyber Toufan, a hacking group linked to geopolitical tensions, has targeted over 100 public and private organizations in Israel. Suspected to be supported by Iran, the group is known for breaching servers, leaking data, and engaging in digital retaliation. Their victims include high-profile Israeli entities, with some still struggling to…
-
Malware Using Google MultiLogin Exploit to Maintain Access Despite Password Reset
January 3, 2024 at 08:36AM Malware utilizing an undocumented Google OAuth endpoint named MultiLogin to hijack user sessions, allowing continuous access to Google services even after a password reset. Threat actor PRISMA first revealed the technique, which has been incorporated into various malware-as-a-service (MaaS) stealer families. Google acknowledges the attack and advises users to log…