March 14, 2024 at 01:21AM Fortinet warns of critical flaw (CVE-2023-48788) in FortiClientEMS and two other bugs in FortiOS and FortiProxy, with a 9.3 CVSS score. Exploitation could result in unauthorized code execution. Upgrade affected versions as per the advisory. No current active exploitation, but immediate patching is crucial due to prior abuse of unpatched … Read more
March 14, 2024 at 01:05AM The UAE’s increasing adoption of IT and operational technology has expanded its attack surface, leading to nearly 155,000 vulnerable assets due to misconfigurations and insecure applications. CPX’s “State of the UAE Cybersecurity Report 2024” emphasizes the need for a unified approach to improve national infrastructure and cybersecurity, amidst growing threats … Read more
March 12, 2024 at 02:37PM President Joe Biden has proposed a $103 million increase in funding for the Cybersecurity and Infrastructure Security Agency (CISA), as part of the $7.3 trillion spending plan for fiscal year 2025. The plan also allocates $13 billion for improving cybersecurity across government agencies. Additionally, the budget includes cybersecurity funding for … Read more
March 12, 2024 at 09:51AM A new annual report from the Office of the Director of National Intelligence outlines cyber threats to US national interests from Russia, China, and Iran, highlighting concerns about disruption to the US elections. The report suggests that China and Russia are threats at a global scale, while Iran remains a … Read more
March 11, 2024 at 01:52PM Roku disclosed a data breach affecting 15,363 customer accounts, with hacked accounts used for fraudulent purchases and sold for as little as $0.50 each. The breach involved credential stuffing, allowing threat actors to change account information and make illegal purchases with stored credit card details. Roku is addressing the issue … Read more
March 11, 2024 at 10:51AM The significance of robust Privileged Access Management (PAM) in the face of cyber threats is emphasized. One Identity PAM Essentials, a SaaS-based solution, prioritizes security, manageability, and compliance. It offers a user-centric design, simplified approach, cost-effectiveness, cloud-native architecture, and seamless integration with OneLogin. This represents a shift in PAM tools, … Read more
March 11, 2024 at 02:45AM Magnet Goblin, a financially motivated threat actor, rapidly exploits newly disclosed vulnerabilities to breach public-facing servers and edge devices. The group deploys malware, including a remote access trojan (RAT) called Nerbian and MiniNerbian, to execute arbitrary commands and steal credentials. Their campaigns are financially motivated and target areas previously left … Read more
March 8, 2024 at 12:32PM The Russian APT group Midnight Blizzard has gained access to Microsoft’s source code and internal systems, posing a serious threat. The attackers, also known as APT29, Cozy Bear, Nobelium, and UNC2452, are escalating their efforts and targeting password-spraying attempts. The breach could lead to zero-day vulnerability exploitation, highlighting the critical … Read more
March 8, 2024 at 08:03AM Cybersecurity firm ESET reports that a Chinese APT group known as Evasive Panda has been targeting Tibetans through watering hole and supply chain attacks. The group has a history of cyberespionage operations primarily targeting government entities in China, India, and other Asian countries. Evasive Panda has been leveraging compromised websites … Read more
March 7, 2024 at 04:26PM Nation-state cyber threat groups are using USBs to infiltrate government and critical infrastructure. Check Point’s Maya Horowitz highlighted USBs as the primary infection vector for major threats, including China’s Camaro Dragon and Russia’s Gamaredon. Instances of USB attacks at a power company and a UK hospital underscore the danger. Organizations … Read more