Recent Security News
-
LabHost cybercrime service lets anyone phish Canadian bank users
February 27, 2024 at 02:23PM The Phishing as a Service (PhaaS) platform ‘LabHost’ has become a major concern, aiding cybercriminals in targeting North American banks, particularly Canadian institutions. LabHost offers customizable phishing kits, infrastructure, and a real-time phishing management tool for a monthly fee. Their new SMS spamming tool, ‘LabSend,’ further extends their reach in…
-
Black Basta, Bl00dy ransomware gangs join ScreenConnect attacks
February 27, 2024 at 01:54PM Black Basta and Bl00dy ransomware gangs are targeting unpatched ScreenConnect servers with a critical vulnerability (CVE-2024-1709), allowing admin account creation and takeovers. Exploited since last Tuesday, alongside a path traversal vulnerability (CVE-2024-1708). CISA added CVE-2024-1709 to exploited vulnerabilities, with Trend Micro observing attacks and deployment of ransomware by the gangs.…
-
NIST updates Cybersecurity Framework after a decade of lessons
February 27, 2024 at 01:50PM NIST has released version 2.0 of its Cybersecurity Framework (CSF), expanding its scope to offer security tips for all organizations. Newly introduced resources include quick-start guides, implementation examples, and a new core risk management function called “govern.” NIST plans to continue enhancing the framework and encourages users to share feedback…
-
4 Ways Organizations Can Drive Demand for Software Security Training
February 27, 2024 at 01:06PM Summary: The cybersecurity landscape for organizations creating their own software is increasingly risky due to various forces. There is a shortage of skilled cybersecurity personnel, a worsening threat landscape, and potential legislative changes. Companies can address this by empowering their developers through secure coding, security training, identifying champions, offering incentives,…
-
Russian hackers hijack Ubiquiti routers to launch stealthy attacks
February 27, 2024 at 12:27PM Russian military hackers, tracked as APT28 and Fancy Bear, are using compromised Ubiquiti EdgeRouters to build botnets for cyber espionage. They target militaries, governments, and organizations worldwide by stealing credentials, hosting malicious tools, and phishing landing pages. The FBI advises performing a factory reset, upgrading firmware, changing credentials, and implementing…