Recent Security News
-
Drivers: We’ll take that plain dumb car over a flashy data-spilling internet one, thanks
January 12, 2024 at 02:34AM Most people at CES are uncomfortable with car manufacturers sharing their data with third parties, with 72% expressing discomfort. Many are unaware of the extent of data collection by their cars. However, there is a willingness to trade personal data for driver personalization and better insurance rates, suggesting a need…
-
Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability
January 12, 2024 at 02:03AM The U.S. CISA added a critical security vulnerability in Microsoft SharePoint Server to its catalog, noting evidence of active exploitation and the availability of patches from Microsoft. Security researcher Nguyễn Tiến Giang demonstrated an exploit at a hacking contest, with federal agencies advised to apply the patches by January 31,…
-
Trend Micro Defends FIFA World Cup from Cyber Threats
January 12, 2024 at 12:11AM Trend Micro collaborated with INTERPOL to defend the FIFA World Cup, monitoring and reporting on potential cyber threats. They proactively identified and shared detections of malicious websites and scams, such as fake ticket sales, streaming sites, survey scams, and crypto scamming. Trend Micro aims to continue making the digital world…
-
Black Basta-Affiliated Water Curupira’s Pikabot Spam Campaign
January 12, 2024 at 12:11AM Pikabot malware, associated with the Water Curupira intrusion set, was used in phishing campaigns through 2023. Similar to Qakbot, it consists of a loader and core module enabling unauthorized access. The campaigns targeted victims via spam emails with malicious attachments, evolving to include a PDF file delivery method. Organizations are…
-
Cyber insurance requirements: What’s in store for 2024
January 12, 2024 at 12:11AM In 2024, cyber insurance requirements are set to evolve, reflecting the changing threat landscape and increasing data breach costs. Predictions include a shift towards modern attack surface management, prioritization of vulnerabilities, limited coverage for manufacturing breaches, and mandatory incident response plans. Providers emphasize adaptability in the face of evolving regulations…