Recent Security News
-
White House to Issue Executive Order on Personal Information Protection
February 28, 2024 at 10:51AM The White House is preparing a new Executive Order to safeguard personal information by preventing mass transfer of sensitive data to countries of concern. It aims to protect against surveillance, scams, and privacy violations. The order also focuses on safeguarding sensitive government-related data and commercial means of accessing Americans’ data.…
-
Cyber Insights 2024: APIs – A Clear, Present, and Future Danger
February 28, 2024 at 10:51AM The annual Cyber Insights series by SecurityWeek discusses pressing cybersecurity issues. The 2024 edition addresses the evolving role of CISOs, the dilemma of API security, and the expanding attack surface. It includes perspectives from industry experts and highlights the growing need for proactive security measures. The threats to APIs are…
-
Iran-Linked UNC1549 Hackers Target Middle East Aerospace & Defense Sectors
February 28, 2024 at 10:45AM Iran-nexus threat actor UNC1549 attributed to cyber attacks in Middle East, including Israel and U.A.E. Also targeting Turkey, India, and Albania. Suspected activity ongoing since June 2022, using Microsoft Azure infrastructure, spear-phishing emails, and custom backdoors MINIBIKE and MINIBUS for intelligence collection and network access. Evasion methods make detection challenging.…
-
Japan warns of malicious PyPi packages created by North Korean hackers
February 28, 2024 at 10:08AM JPCERT/CC warns of North Korean hacker group Lazarus uploading four malicious PyPI packages to infect developers with malware. These packages allow access to developer networks, enabling financial fraud and supply chain attacks. The malware, named “Comebacker,” connects to the attacker’s server and executes further Windows malware. Previous attacks by Lazarus…
-
Need to Know: Key Takeaways from the Latest Phishing Attacks
February 28, 2024 at 10:08AM The article discusses the rising threat of phishing attacks, including recent high-profile incidents and actionable tips to mitigate risks. It emphasizes the importance of employee training, advanced email filtering, and multi-factor authentication to bolster defense. Additionally, it advocates for security automation to streamline incident response and proactively address potential threats.…