July 5, 2024 at 01:16PM Europol announced the arrest of 54 individuals involved in a vishing scam targeting elderly Spanish citizens, using social engineering and physical threats. The criminals impersonated bank employees, extracted personal information, then physically targeted victims for payment and personal possessions. The unique approach of physically visiting victims adds complexity and danger … Read more
May 16, 2024 at 09:38AM Microsoft Threat Intelligence revealed that a financially motivated threat actor, Storm-1811, is conducting a vishing campaign using Quick Assist for remote access, posing as trusted contacts. The attacker delivers Black Basta ransomware and additional malware through various means, emphasizing the need for vigilance and user education to combat social engineering … Read more
May 6, 2024 at 10:36AM The Complete 2024 Cyber Security Expert Certification Training Bundle offers five self-paced courses by IDUNOVA, providing over 120 hours of lessons to prepare for cybersecurity exams. The NIST Cybersecurity and Risk Management Frameworks form the foundation, followed by certifications from ISACA, CompTIA, and CISSP. Available for $49.99, it’s an essential … Read more
April 23, 2024 at 04:59PM CompTIA announced that eight of its IT certifications are now part of the U.S. Department of Defense’s Cyber Workforce Qualification Program, aiming to develop a diverse workforce to safeguard the nation’s interests. These certifications cover 31 different roles within the cyber workforce, supporting a targeted and role-based approach to qualifying … Read more
April 17, 2024 at 10:14AM The conflict in Ukraine enters its third year, with cyber operations emerging as a pivotal battleground. Recent cyberattacks have targeted state agencies and financial institutions, underscoring the severity of the digital onslaught. Organizations must prioritize disaster recovery preparedness, personnel safety, backup strategies, cybersecurity training, defense mechanisms, incident response planning, and … Read more
April 8, 2024 at 05:16PM Home Depot confirmed employee data compromise via a third-party software vendor, with a “small sample” of employees’ names, corporate IDs, and email addresses exposed. The incident underlines the importance of choosing SaaS vendors with robust cybersecurity measures. Experts recommend testing vendors’ workflows with non-production data and conducting regular security best … Read more
April 6, 2024 at 12:04PM The U.S. Department of Health and Human Services warns of hackers using social engineering to target IT help desks in the Healthcare and Public Health sector. They gain access by enrolling their own MFA devices and using AI voice cloning. Similar tactics are used by the Scattered Spider threat group. … Read more
February 22, 2024 at 04:44PM Leaked documents expose collaboration between the Chinese government and the private sector firm iSoon in conducting cyber espionage on foreign entities, domestic dissidents, and ethnic minorities. The company’s operations, target list, rates charged, and use of known malware have been revealed. The documents also shed light on internal dynamics and … Read more
January 23, 2024 at 11:25AM Reichman Tech School, in partnership with PwC Next, has initiated a cyber-analyst training program to address the surge in cyberattacks on Israel. The program equips participants with information systems, operating systems, network expertise, and international standards. With tailored classes, CEO Talya Gazit underscores the importance of preparing the future workforce … Read more
December 26, 2023 at 07:06AM African nations are striving to bolster their cyber capabilities amid growing cybersecurity threats. In Nigeria, initiatives like the Cyber Hub and partnerships with the US aim to train a new generation of cybersecurity professionals and develop indigenous solutions. However, challenges persist, including a lack of specialized training programs and skilled … Read more