September 26, 2024 at 12:35AM A threat actor known as “SloppyLemming,” identified as an advanced persistent threat (APT) by Crowdstrike, is conducting espionage against government and law enforcement targets in the Indian subcontinent. They utilize Cloudflare Worker cloud services and various tools in phishing attack chains for credential harvesting and email compromise, targeting sensitive organizations … Read more
September 23, 2024 at 05:51PM Microsoft’s Secure Future Initiative (SFI) aims to enhance security by eliminating 730,000 unused apps, 5.75 million inactive cloud tenants, and deploying 15,000 secure devices. Video-based identity verification for most production staff and updated processes further strengthen security. The initiative also focuses on reducing attack surface, enhancing authentication mechanisms, and improving … Read more
September 19, 2024 at 05:30PM CrowdStrike announced the launch of its annual Cybersecurity Startup Accelerator with AWS and NVIDIA, targeting disruptors in the U.S. and EMEA. Selected startups will receive mentorship, technical expertise, and funding. Participants can present at a Demo Day in San Francisco, with a chance to receive funding from the CrowdStrike Falcon® … Read more
September 19, 2024 at 10:30AM A recent report by Group-IB researchers reveals that the cryptojacking operation TeamTNT has reappeared, targeting Virtual Private Server infrastructures using CentOS. The attack involves SSH brute force, malicious script uploads, and deploying the Diamorphine rootkit for concealing processes and establishing remote access. TeamTNT, active since 2019, has unveiled a new … Read more
September 18, 2024 at 03:31PM The Federal Communications Commission fined AT&T $13 million and ordered it to tighten privacy and security practices following a third-party compromise. The commission extended consumer protections to the cloud and found AT&T responsible for failing to oversee third-party provider Snowflake, which was compromised, exposing sensitive data. AT&T must improve security … Read more
September 18, 2024 at 02:32AM Hydden, a new identity management startup, has secured $4.4 million seed funding. It provides visibility and management of an organization’s entire identity environment, including access to on-premises and cloud applications. Hydden aims to simplify identity management for security teams, acknowledging the complexities and risks associated with modern identity landscapes. From … Read more
September 17, 2024 at 11:33AM Google has patched a vulnerability in its Google Cloud Platform (GCP) that could have led to supply chain attacks on customer cloud servers. Researchers discovered the flaw, dubbed “CloudImposer,” in GCP’s Cloud Composer service, posing a dependency confusion risk. Google addressed the issue by fixing the vulnerable script and updating … Read more
September 17, 2024 at 09:15AM Element Security, an Israeli startup founded in 2021 by Daniel Lublin and Omer Cohen, has raised $5 million in funding. The company has launched a cloud-based Continuous Threat Exposure Management (CTEM) platform and attracted global companies in finance, aviation, and automotive sectors. Element’s platform aims to identify and mitigate risks … Read more
September 16, 2024 at 09:27AM A critical security flaw in Google Cloud Platform Composer, now patched, could have allowed remote code execution via a supply chain attack called dependency confusion. This could have led to a large-scale supply chain attack by tricking the package manager into downloading a malicious package. The issue was fixed by … Read more
September 13, 2024 at 03:56PM Fortinet confirms data compromise by hacker “Fortibitch” leaking 440GB of data via BreachForums. The breach impacted less than 0.3% of its customers worldwide. CloudSEK observed leaked customer, financial, and HR data. Incident highlights cloud data exposure risks. Experts suggest rethinking cloud security with multifactor authentication, monitoring, and encryption. The incident … Read more