March 28, 2024 at 09:12AM Cisco announced patches for multiple high-severity vulnerabilities in IOS and IOS XE software, including denial-of-service risks, privilege escalation, command injection, and protection bypass issues. The flaws could be exploited without authentication, potentially leading to serious consequences if not addressed promptly. Additional details can be found on Cisco’s security advisories page. … Read more
March 28, 2024 at 06:06AM The US Cybersecurity and Infrastructure Security Agency (CISA) is seeking input on the implementation of the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA), estimated to impact 316,000 entities. The proposed rules’ costs are estimated at $2.6 billion over 11 years, with reporting requirements and the creation of … Read more
March 28, 2024 at 03:53AM The German Federal Office for Information Security (BIS) has issued an urgent alert regarding the poor state of Microsoft Exchange Server patching in Germany. Around 12 percent of the public-facing servers in the country are running unsupported versions of Exchange Server, with around a quarter lacking vital patches, making them … Read more
March 27, 2024 at 01:01PM Threat actors are increasingly using the inexpensive and rapidly expanding phishing-as-a-service (PhaaS) platform, available for purchase through Telegram. Certainly! The takeaway from the meeting notes is that threat actors are increasingly utilizing the inexpensive and rapidly expanding phishing-as-a-service (PhaaS) platform, which is being distributed through Telegram. This insight highlights the … Read more
March 27, 2024 at 12:21PM Indian government entities and energy companies were targeted by unknown threat actors using a modified version of the HackBrowserData malware, exfiltrating sensitive information through Slack. The operation, codenamed FlightNight, impacted multiple government entities and harvested 8.81 GB of data, including confidential documents and financial records. The attackers repurposed legitimate tools … Read more
March 27, 2024 at 10:10AM Google’s Threat Analysis Group and Mandiant reported a notable increase in zero-day vulnerabilities exploited in 2023, with 97 instances, mostly linked to spyware vendors and their clients. Enterprise and end-user platforms were targeted, with an increase in government-backed attacks and commercial surveillance vendors responsible for half of the exploits. Google … Read more
March 27, 2024 at 07:03AM As SaaS applications become prevalent in business, the need for optimized network speed and strong security measures grows. However, a new report challenges SASE’s ability to provide comprehensive security against web-based threats. Secure browser extensions are presented as a solution to complement SASE and address its limitations in real-time protection … Read more
March 26, 2024 at 10:03AM Staying informed on threat-actor group behavior is crucial for navigating the dynamic security landscape. This is key for both organizations and individuals. Based on the meeting notes, a clear takeaway would be the importance of staying informed about threat-actor group behavior in order to effectively navigate the ever-changing security landscape … Read more
March 25, 2024 at 12:11PM The StrelaStealer malware has impacted over 100 organizations in the U.S. and Europe, targeting email account credentials. Originally targeting Spanish-speaking users, it now targets U.S. and European individuals. Its distribution through phishing campaigns has substantially increased, with evolved infection methods. The malware’s primary goal remains stealing email login information and … Read more
March 25, 2024 at 02:36AM The United Nations Panel of Experts’ annual report on sanctions against North Korea reveals that North Korea operates restaurants in several countries to launder approximately $700 million per year. The report also highlights the country’s involvement in cyber attacks and crypto heists, urging stricter compliance activities and international info-sharing to … Read more