Recent Security News
-
MySQL Servers, Docker Hosts Infected With DDoS Malware
November 14, 2023 at 11:39AM Researchers from AhnLab Security Emergency Response Center have warned that attackers are targeting MySQL servers and Docker hosts to infect them with malware capable of launching distributed denial-of-service (DDoS) attacks. The malware, known as Ddostf, is a DDoS-capable botnet of Chinese origin. Attackers scan for vulnerable MySQL servers and upload…
-
Make Changes to be Ready for the New SEC Cybersecurity Disclosure Rule
November 14, 2023 at 11:18AM The Securities and Exchange Commission (SEC) has implemented a new rule requiring companies to file a Form 8-K within four business days of determining that a cybersecurity incident is material. This rule also mandates annual disclosure of material cybersecurity incidents and information on cybersecurity risk management, strategy, and governance. Jill…
-
Royal Ransom Demands Exceed $275M, Rebrand in Offing
November 14, 2023 at 10:56AM The Royal ransomware gang is potentially preparing for a rebrand or spinoff, as their ransom demands have already exceeded $275 million. The group has targeted over 350 victims worldwide, demanding between $1 million and $12 million in ransom. They primarily gain access through phishing emails and employ partial encryption and…
-
Meet the Unique New “Hacking” Group: AlphaLock
November 14, 2023 at 10:23AM “AlphaLock” is a Russian hacking group that operates as a “pentesting training organization,” training hackers and monetizing their services through an affiliate program. They offer a course called Bazooka Code Pentest Training, which costs $185 and provides knowledge and tools for work. They also plan to launch the ALPentest Hacking…
-
Steps CISOs Should Take Before, During & After a Cyberattack
November 14, 2023 at 10:05AM In today’s complex threat landscape, organizations must have a detailed cyber playbook outlining actions to take in the event of an attack. CISOs should educate stakeholders, build a comprehensive framework, and test plans regularly. During an attack, effective and empathetic communication is crucial. Afterward, reflection without blame should occur to…