October 20, 2023 at 08:50AM LinkedIn users are being targeted by a threat actor spreading malware through fake job posts at Corsair. The cybercriminal group responsible for the attacks, believed to be Vietnamese, is linked to previous campaigns targeting Facebook business accounts. The malware, including DarkGate and RedLine, is distributed through malicious files downloaded from … Read more
October 20, 2023 at 07:57AM The Internet of Things (IoT) is revolutionizing business operations worldwide, but its full potential can only be realized with strong cyber security. IoT adoption faces challenges like security concerns, privacy issues, interoperability, and lack of standards. Addressing these factors and integrating cyber security into IoT design and development can unlock … Read more
October 20, 2023 at 05:57AM ExelaStealer, a new information stealer, has emerged in the crowded world of off-the-shelf malware. It is an open-source infostealer with customizable features, capable of stealing various types of sensitive data from compromised Windows systems. ExelaStealer is sold on cybercrime forums and a dedicated Telegram channel for as low as $20 … Read more
October 19, 2023 at 05:09PM Leading cybersecurity firm, Spec, has successfully closed a $15M Series A funding round led by SignalFire, with participation from Legion Capital and Rally Ventures. The funding will support Spec’s continued growth and innovation, including advancing their platform, expanding their threat labs, and co-developing specialized products. Spec is dedicated to providing … Read more
October 19, 2023 at 05:09PM SailPoint Technologies, in collaboration with Accenture, released the findings from their annual research report, ‘The Horizons of Identity Security.’ The report revealed that 44% of companies are still in the early stages of their identity security journeys, and only 70% of identities in mature companies are covered by foundational governance … Read more
October 19, 2023 at 04:47PM A threat actor known as Golem has released a new dataset containing the records of over 4 million people’s genetic ancestry, including information on wealthy individuals in the US and Western Europe, after compromising the 23AndMe site. 23andMe is still verifying the authenticity of the leaked data. The breach was … Read more
October 19, 2023 at 04:33PM North Korean state-backed threat groups, Diamond Sleet and Onyx Sleet, are exploiting a critical vulnerability in JetBrains TeamCity server to carry out cyber espionage, data theft, and other malicious activities. Over 30,000 organizations, including Citibank, Nike, and Ferrari, use TeamCity. The vulnerability allows attackers to gain administrative privileges and execute … Read more
October 19, 2023 at 04:27PM Microsoft is extending Purview Audit log retention following the breach of Exchange and Microsoft 365 accounts by the Chinese hacking group Storm-0558. The affected organizations included government agencies, with the US State and Commerce Departments among them. The changes will roll out to customers with Standard licenses, providing longer retention … Read more
October 19, 2023 at 03:53PM Japanese electronics company Casio announced that their ClassPad server was breached, resulting in the theft of a database containing personal information of customers from 149 countries. The data includes names, email addresses, purchasing information, and service usage details. Casio has blocked outside access to the affected databases and is working … Read more
October 19, 2023 at 01:18PM Harmonic Security has raised $7 million in seed funding to develop technology that protects generative AI in businesses. The startup aims to address the lack of regulation in AI apps that collect company data. The financing round was led by Ten Eleven Ventures, with participation from Storm Ventures and other … Read more