August 12, 2024 at 02:39PM Ukraine’s CERT-UA discovered malicious software being distributed through emails impersonating the country’s Security Service. The emails contain a link to download a file triggering the ANONVNC malware, allowing attackers to access victims’ devices. More than 100 government devices have been affected, and users are advised to contact CERT-UA if suspicious. … Read more
April 22, 2024 at 07:03AM The UK government is criticized for its weak response to cyber-attacks by APT31, with concerns raised about the country’s critical infrastructure resilience. It’s essential to enhance cybersecurity defenses to combat ransomware and data breaches from organized criminal groups. Join the live webinar on April 29 to learn about mitigating cyberattacks’ … Read more
February 8, 2024 at 11:40AM “Ov3r_Stealer” is a novel malware targeting Facebook users through job ads. It steals various data types including geolocation, passwords, and credit card information. The malware uses multiple execution methods and its origin involves complex communication channels and pseudonyms. As a modular tool, it can facilitate other malware and pose a … Read more
January 18, 2024 at 06:12AM In 2024, the cybersecurity landscape faces evolving challenges, particularly from ransomware. Cybercriminals are adopting a new strategy of data theft and extortion, bypassing traditional encryption-based attacks. Encrypted data offers legal protection in the event of a breach, but widespread encryption deployment lags. Proactive security management and asset enumeration are critical … Read more
December 1, 2023 at 10:07AM The U.S. is facing increasing cyber threats and needs a comprehensive cybersecurity approach like Germany’s IT-SiG 2.0, emphasizing real-time detection, visibility into vulnerabilities, and proactive strategies. With the Biden administration’s National Cybersecurity Strategy and CISA’s Strategic Plan aiming for similar goals, the U.S. is taking steps towards improving its cyber … Read more
November 27, 2023 at 11:23AM Slovenian power company Holding Slovenske Elektrarne (HSE) experienced a ransomware attack that affected its systems and encrypted files. However, the attack did not disrupt electric power production. HSE, the country’s largest power generation company, is considered critical infrastructure. The organization has taken measures to contain the attack, inform authorities, and … Read more