October 17, 2023 at 10:04AM Threat actors are constantly finding new ways to trick end-users into giving up their credentials, leading to a rise in credential theft. Cybercriminals target credentials because people often reuse the same login information across multiple sites, giving hackers access to sensitive accounts. They use social engineering tactics like tailgating, spear … Read more
October 17, 2023 at 10:03AM A tabletop exercise is a discussion-based practice that simulates a cybersecurity incident response. It is important to take a social approach during the exercise and include various participants from different teams. It is also crucial to vary the threat types used in the exercise to ensure preparedness. The scenario should … Read more
October 17, 2023 at 09:30AM Anonybit, a provider of biometric authentication and data protection solutions, has raised $3 million in a seed extension round, bringing its total funding to $8 million. The funding was led by Jam Fintop, with additional investment from Connecticut Innovations. Anonybit’s technology uses distributed storage and processing of biometrics to securely … Read more
October 17, 2023 at 09:30AM Weintek’s cMT HMI product has been found to have critical vulnerabilities that could be exploited by attackers. The vulnerabilities allow anonymous users to bypass authentication and execute arbitrary commands. If all vulnerabilities are combined, an attacker could gain full control of the HMI system. Weintek has released patches for affected … Read more
October 17, 2023 at 07:12AM The National Security Agency has released a repository called Elitewolf on GitHub, which contains intrusion detection signatures and analytics for hunting malicious activity in industrial control systems and operational technology environments. The release is in response to increased cyber activity targeting critical infrastructure and aims to help organizations implement continuous … Read more
October 17, 2023 at 07:12AM Cisco has issued a warning about a zero-day vulnerability, CVE-2023-20198, affecting its IOS XE software. The vulnerability allows remote attackers to gain privileged access and take control of devices, potentially modifying network routing rules and exfiltrating data. Cisco has observed active exploitation of the vulnerability and is working on a … Read more
October 17, 2023 at 01:03AM Cisco has issued a warning about a critical security flaw in its IOS XE software that is being actively exploited. The vulnerability, assigned as CVE-2023-20198, allows remote attackers to create an account with high-level access and gain control of affected systems. The flaw only affects enterprise networking gear with the … Read more
October 16, 2023 at 06:27PM Kaspersky has launched Kaspersky Container Security (KCS), a full-featured solution for containerized environments. KCS provides security for containerized applications during development and runtime, offering protection from cyber incidents. It consists of three main components: KCS scanner, KCS agent, and KCS server. KCS easily integrates into DevSecOps frameworks and helps ensure … Read more
October 16, 2023 at 11:23AM Security researchers have discovered a backdoor called “BLOODALCHEMY” that targets x86 systems and is being used in attacks against governments and organizations in the Association of Southeast Asian Nations (ASEAN). The backdoor is part of the REF5961 intrusion set, which is believed to be linked to a group with ties … Read more
October 16, 2023 at 11:23AM A malicious version of the ‘RedAlert – Rocket Alerts’ app is targeting Israeli Android users. The fake app, distributed from the website “redalerts[.]me,” appears legitimate but installs spyware on the device. It requests additional permissions and collects data from the user, encrypting and uploading it to a hardcoded IP address. … Read more