Recent Security News
-
CACTUS Ransomware Exploits Qlik Sense Vulnerabilities in Targeted Attacks
November 30, 2023 at 06:30AM A CACTUS ransomware campaign is exploiting vulnerabilities in Qlik Sense, noted by Arctic Wolf researchers. These exploits allow attackers to gain initial access and establish persistence through various means, including disabling security software. The broader ransomware landscape continues to adapt and prove lucrative despite crackdowns, with groups like Black Basta…
-
Google’s RETVec Open Source Text Vectorizer Bolsters Malicious Email Detection
November 30, 2023 at 06:06AM Google’s new RETVec, a multilingual text vectorizer, has improved Gmail’s spam detection by 38%, reducing false positives/negatives while enhancing performance. RETVec, efficient and resilient, requires no text preprocessing, works with all languages, and is now open source with a tutorial available. Takeaways from the Meeting Notes: 1. Google has developed…
-
Hundreds of Malicious Android Apps Target Iranian Mobile Banking Users
November 30, 2023 at 06:06AM A mobile security firm discovered a malicious campaign using over 285 Android apps to steal bank credentials and credit card information from Iranian users. The malware, targeting at least 12 banking apps, uses phishing and evasion techniques, with plans to expand to cryptocurrency wallets. Attackers use Telegram and GitHub for…
-
Locking down Industrial Control Systems
November 30, 2023 at 03:53AM Global industrial automation spending hit $172.26 billion in 2022, with expected annual growth of 10.5% through 2030. As ICS deployments surge, security risks follow. SANS offers comprehensive ICS security training and resources to bolster defenses against these emerging threats, as per CISA’s call for collective cyber-defense action. Meeting Takeaways: 1.…