August 30, 2024 at 12:31AM Iranian government-backed actors were reportedly using fake recruiting websites and social media accounts to target Farsi speakers suspected of collaborating with Iran’s enemies, including Israel. Google’s Mandiant team uncovered the operation, linking it to Iran’s regime and cyber unit APT42. The campaign’s purpose was to gather personal information and potentially … Read more
August 29, 2024 at 12:24PM A non-profit supporting Vietnamese human rights has been targeted by a multi-year cyber espionage campaign attributed to APT32. The group uses various malware delivery methods, including spear-phishing and watering hole attacks. The intrusion has resulted in the compromise of several hosts and the theft of sensitive information, with a focus … Read more
August 29, 2024 at 11:49AM The Corona Mirai-based malware botnet is exploiting a 5-year-old remote code execution zero-day vulnerability in AVTECH IP cameras, impacting models no longer supported by the vendor. The flaw has a high-severity score and allows unauthenticated attackers to inject commands, potentially leading to distributed denial of service (DDoS) attacks. Users are … Read more
August 27, 2024 at 05:13PM Netwrix released findings from a survey on cybersecurity in the education sector. The study shows a 77% increase in cyberattacks from 2023, with common vectors being phishing and ransomware. Nearly half of organizations faced unplanned expenses due to security breaches, with some also incurring compliance fines and leadership changes. Remediation … Read more
August 27, 2024 at 01:38PM China’s Volt Typhoon exploited a critical bug affecting Versa’s SD-WAN customers using Versa Director, planting custom web shells to harvest credentials on networks. Lumen Technologies linked this to the new malware, VersaMem. Versa has issued a patch and recommends customers to upgrade, but the vulnerability was already exploited, attributed to … Read more
August 25, 2024 at 11:36PM Cyberattacks on critical infrastructure sectors are on the rise in India, with a significant increase in incidents against finance and government systems. The banking and financial sectors consider cybersecurity a top challenge, with concerns about financial stability, data breaches, and the speed of information flow. India is urged to strengthen … Read more
August 23, 2024 at 03:51PM Pluralsight unveiled an expert-led course series targeting the sophisticated and persistent state-sponsored cyber group, Volt Typhoon. Directed towards cybersecurity professionals, the series equips learners with tactics and skills to detect and defend against cyberattacks on critical infrastructure. The course path includes seven expert-led courses and six hands-on lab experiences. Sign … Read more
August 23, 2024 at 12:33PM A series of attacks since July 2024 have utilized a less common method known as AppDomain Manager Injection to exploit Microsoft .NET applications on Windows, posing a significant security threat. It seems like you’ve provided the introductory part of the meeting notes. How can I assist you with this information? … Read more
August 20, 2024 at 08:01AM The U.S. government warns of Iran’s increased cyber operations targeting Presidential campaigns, seeking to influence the American public and access sensitive election-related information. Iran aims to sow doubts about U.S. democratic institutions and has engaged in aggressive cyber activities and misinformation spreading. Authorities encourage reporting suspicious activity and assure the … Read more
August 16, 2024 at 01:54PM Cyber threats to the 2024 US elections have recently surged, posing a significant risk. Incidents include a Telegram bot targeting Democratic party credentials, false accusations involving AI, and phishing emails sent to presidential campaigns. Campaigns face similar security risks to other organizations, but new finance rules allow for external cybersecurity … Read more