April 10, 2024 at 04:47AM Join Silobreaker’s webinar on April 18th to learn from CISO Andy Grayland about using threat intelligence to minimize third-party security risks. With 29% of incursions originating from third parties, the webinar will provide insights into identifying and mitigating these risks. Sign up and receive a reminder for the webinar. Sponsored … Read more
April 9, 2024 at 12:40PM A critical flaw in several end-of-life models of D-Link NAS devices, tracked as CVE-2024-3273, allows attackers to backdoor the devices, potentially accessing sensitive information and enabling other nefarious activities. D-Link advises retiring and replacing affected devices as they will no longer receive updates or support. Use unique passwords and enable … Read more
April 9, 2024 at 11:54AM Cyera, a data security company, raised $300 million in a Series C funding round, bringing its valuation to $1.4 billion. It previously raised $160 million and emerged from stealth mode in 2022 with $60 million in funding. The round was led by Coatue, with participation from several venture capital firms. … Read more
April 8, 2024 at 10:51AM Veterinary services provider CVS Group suffered a cyberattack disrupting IT services at its UK and international practices. The company responded by isolating and shutting down affected IT systems causing operational disruption. The incident led to the acceleration of migrating infrastructure to the cloud for enhanced security. The cyber-attack has not … Read more
April 8, 2024 at 02:36AM A top Israeli spy, Yossi Sariel, was exposed after a basic error, revealing him as the author of a book. Meanwhile, multiple security vulnerabilities have been reported, including issues in Android Pixel devices, IOSix’s devices, and Ivanti Secure Connect. Additionally, Jackson County, Missouri suffered a ransomware attack, and Kaspersky reported … Read more
April 5, 2024 at 07:33AM Compliance requirements continuously evolve to address cybersecurity threats. CISOs’ perceptions of compliance vary based on factors like organization size, industry, and legal requirements. They seek strategies to mitigate the burden of compliance, but emphasize that being compliant does not guarantee security. Compliance can also serve as a business enabler, enabling … Read more
April 5, 2024 at 07:06AM Tech firm Acuity experienced a cybersecurity incident, claimed IntelBroker, a known hacker. The stolen data includes personal information and alleged classified communications from the ‘Five Eyes Intelligence Group’. Majority of the compromised email addresses are associated with the State Department. Acuity deemed the compromised data as non-sensitive and has taken … Read more
April 4, 2024 at 07:03PM Visa issued a security alert warning about increased detections of the JsOutProx malware targeting financial institutions in South and Southeast Asia, the Middle East, and Africa. The malware provides remote access and can execute various malicious activities. Mitigation actions and indicators of compromise were recommended, and the campaign involved phishing … Read more
April 4, 2024 at 02:44PM The latest campaign demonstrates the extensive capabilities and long-lasting presence of a decade-old information-stealing malware. Based on the meeting notes, it seems that the latest campaign highlights the extensive functionality and longevity of a piece of information-stealing malware that is a decade old. Full Article
April 4, 2024 at 12:57PM City of Hope, a renowned cancer treatment and research center, disclosed a data breach compromising sensitive information of over 820,000 patients. The breach occurred between September and October last year, involving unauthorized access to systems and potential exposure of personal data. The organization is taking steps to address the incident … Read more