Recent Security News

  • Pan-African Financial Apps Leak Encryption, Authentication Keys

    October 12, 2023 at 06:26AM Researchers at Approov have discovered that encryption, authentication, and signing keys are frequently exposed in mobile fintech apps used in Africa. The study found that when the top 10 revenue and download-generating apps were reverse-engineered, passwords, API keys, and private keys for cryptography were exposed. The researchers also identified that…

    Read More

  • HM Government has partnered with SANS to train cyber security experts

    October 12, 2023 at 04:51AM According to the Cyber Security Breaches Survey, a significant percentage of medium businesses, large businesses, and high-income charities have experienced cyber crime in the past year. To address the need for cyber security experts, the Upskill in Cyber programme trains graduates to become certified in globally recognized cyber security qualifications.…

    Read More

  • Researchers Uncover Ongoing Attacks Targeting Asian Governments and Telecom Giants

    October 12, 2023 at 03:42AM A cyber attack campaign named Stayin’ Alive is targeting government and telecom entities in Asia using basic backdoors and loaders for delivering malware. The campaign’s infrastructure is similar to that used by ToddyCat, a China-linked threat actor known for cyber assaults in Europe and Asia. The attacks start with a…

    Read More

  • Two High-Risk Security Flaws Discovered in Curl Library – New Patches Released

    October 12, 2023 at 01:01AM Patches have been released for two security flaws in the Curl data transfer library. The more severe vulnerability, labeled CVE-2023-38545, allows for code execution and is considered one of the worst security flaws in Curl in a long time. The other vulnerability, CVE-2023-38546, enables cookie injection. Both flaws have been…

    Read More

  • How to Prevent Ransomware as a Service (RaaS) Attacks

    October 11, 2023 at 09:44PM Ransomware as a Service (RaaS) attacks are on the rise, with a significant increase in the number of victim organizations. RaaS operators recruit affiliates to carry out the attacks, split the ransom amounts, and provide sophisticated tools and interfaces. To prevent ransomware attacks, companies should leverage cybersecurity frameworks, use a…

    Read More