July 19, 2024 at 08:28AM The Cloud Security Alliance released CCSK v5, a comprehensive cloud security training and certificate for security professionals. It covers topics like incident response, data encryption, and application security. The program complements other education and provides in-depth information on cloud architecture, workloads, AI, and more. The exam is 120 minutes long … Read more
July 18, 2024 at 04:03PM Ransomware Awareness Month in July raises awareness of ransomware as a top cyber threat. The recent attacks on CDK Global by the BlackSuit group demonstrate the severity, impacting 15,000 auto retailers. There’s been a 29% increase in ransomware attacks in Q1 2024, emphasizing the urgency for organizations to prioritize good … Read more
July 18, 2024 at 09:03AM Researchers from several universities have identified a vulnerability, named Port Shadow (CVE-2021-3773), that allows threat actors to exploit VPNs to launch man-in-the-middle attacks, intercepting and redirecting traffic. This affects OpenVPN, WireGuard, and OpenConnect on Linux or FreeBSD. Mitigation involves specific firewall rules, and end users are advised to connect to … Read more
July 18, 2024 at 06:27AM Unknown threat actors are suspected of conducting a cyber espionage campaign using open-source tools to target government and private sector organizations across at least ten countries. The group has been observed exploiting known security flaws to gain initial access and deploying various open-source remote access capabilities and exploits. The attacks … Read more
July 16, 2024 at 06:27PM Kaspersky is parting ways with the U.S. and is offering its security products free for six months as a farewell gift to U.S. users. This move follows the U.S. government adding Kaspersky to its Entity List due to national security concerns. The company will shut down its U.S. business and … Read more
July 12, 2024 at 02:34PM CISA and the FBI issued a critical “Secure by Design Alert” urging software developers to address OS command-injection vulnerabilities. Recent exploits, such as the CVE-2024-20399 bug in Cisco’s NX-OS software, demonstrate the potential for system takeovers and data leaks. The agencies advocate for a secure-by-design approach and OPSEC principles to … Read more
July 11, 2024 at 08:25PM Hacktivist group SiegedSec claims to disband after leaking files from The Heritage Foundation. Amid disavowing crime, they vow to continue fighting for others’ rights. The leaked information related to Project 2025, a plan outlined by the think tank. The feud escalated, involving contentious messages from the foundation’s executive director, culminating … Read more
July 11, 2024 at 04:53PM Signal is improving its desktop client’s security by changing how it stores plain text encryption keys for the data store. Previously, the keys were stored in a local file, posing a security risk. The company is now implementing Electron’s SafeStorage API to further secure the encryption keys, making it more … Read more
July 11, 2024 at 10:48AM CrystalRay, a threat actor, has expanded their operations since the February attacks. They utilize SSH-Snake, an automated worm-like tool, for hacking purposes and have added mass scanning, open source software exploitation, and credential theft to their arsenal. Their use of open source and penetration testing tools enables them to maintain … Read more
July 11, 2024 at 06:39AM A new email phishing campaign targeting Spanish language victims delivers a remote access trojan called Poco RAT since February 2024. The attacks primarily aim at mining, manufacturing, hospitality, and utilities sectors. The malware uses various tactics such as finance-themed lures and legitimate services abuse to evade detection. Additionally, the article … Read more