Recent Security News
-
FjordPhantom Android malware uses virtualization to evade detection
November 30, 2023 at 10:17AM Promon discovered the FjordPhantom malware, which uses virtualization to conceal its activities as it targets banking apps in Southeast Asia. It spreads via communication platforms and tricks users into downloading fake banking apps, enabling it to steal credentials and manipulate transactions. The malware breached Android’s security concept, posing a high…
-
8 Tips on Leveraging AI Tools Without Compromising Security
November 30, 2023 at 10:07AM AI and ML technologies offer substantial productivity gains but carry risks like data misuse and inaccurate results. To use AI securely, companies must examine legal agreements, guard sensitive data, validate vendor security, use local open-source tools, track AI usage, and create tailored AI policies. Meeting Takeaways: 1. **AI/ML Benefits and…
-
Qlik Sense Vulnerabilities Exploited in Ransomware Attacks
November 30, 2023 at 09:42AM Arctic Wolf has linked three critical vulnerabilities in Qlik’s analytics products to ransomware attacks, notably Cactus ransomware. The vulnerabilities, reported by Praetorian and patched by Qlik, allow remote code execution and admin access, with over 17,000 internet-exposed instances. The same threat actor seems responsible for multiple intrusions. Meeting Takeaways: 1.…
-
Black Basta Ransomware Group Received Over $100 Million From 90 Victims
November 30, 2023 at 09:42AM Since early 2022, the Black Basta ransomware group has extorted over $100 million from victims. Linked to the defunct Conti group, Black Basta employs double extortion tactics, targeting diverse industries, primarily in the US. Analysis by Elliptic ties them to Conti and shows a significant portion of victims pay ransoms,…