September 25, 2024 at 10:42AM Google’s AI assistant Gemini is now available to millions of Workspace users, offering convenient features integrated into Gmail, Meet, and Drive. However, security firm HiddenLayer warns of potential risks, as indirect prompt injection flaws could lead to phishing and chatbot takeover attacks. While HiddenLayer reported these issues to Google, the … Read more
September 25, 2024 at 08:48AM A threat actor called SloppyLemming, likely based in India, is using cloud services to target energy, defense, government, telecom, and tech entities in Pakistan and other South and East Asian countries. Cloudflare reports the group’s operations align with Outrider Tiger, known for using Sliver and Cobalt Strike in attacks. SloppyLemming … Read more
September 25, 2024 at 07:57AM Phishing attacks are evolving, making them harder to detect. Here are key signs to identify phishing links: Check URLs for complexity and verify HTTPS. Pay attention to redirect chains, page titles, and missing favicons. Beware of CAPTCHA and Cloudflare abuse. Verify Microsoft domains before entering passwords. Analyze links with familiar … Read more
September 23, 2024 at 08:06AM The past week’s cybersecurity landscape was a rollercoaster ride. Notable events include the dismantling of the Raptor Train botnet, North Korean hackers deploying a new malware, takedown of criminal networks iServer and Ghost, and developments in the Apple vs. NSO Group lawsuit. These incidents underscore the evolving nature of cyber … Read more
September 20, 2024 at 10:04AM The Verizon “Data Breach Investigations Report” (DBIR) is a highly credible annual report providing valuable insights into data breaches and cyber threats. The 2024 report raised questions about the role of generative AI in cyberattacks in contrast to the findings. Six use cases of generative AI in cybercrime were highlighted, … Read more
September 20, 2024 at 08:03AM Law enforcement agencies in Europe and Latin America dismantled the iServer phishing platform as part of Operation Kaerb, targeting over 1.2 million mobile phones and 480,000 victims. The operation resulted in 17 arrests in Argentina, Chile, Colombia, Ecuador, Peru, and Spain, including the platform’s administrator. iServer allowed low-skilled criminals to … Read more
September 20, 2024 at 05:31AM High-end British department store, Harvey Nichols, notifies customers of a recent cyberattack exposing their name, company, phone number, email, and home addresses. The breach, identified on September 16, did not involve passwords or financial information. With limited details provided, customers are cautioned of potential phishing attacks and advised to report … Read more
September 19, 2024 at 12:00PM The article discusses the security risks associated with onboarding new employees and why they are attractive targets for cybercriminals. It highlights how hackers exploit new employees’ lack of familiarity and eagerness to make a positive impression. The article provides best practices for mitigating these risks, including implementing secure password distribution … Read more
September 16, 2024 at 01:21AM Cybersecurity researchers have identified ongoing phishing campaigns using HTTP header refresh entries to deliver fake email login pages, targeting large corporations in South Korea, U.S. government agencies, and schools. These attacks encompass various sectors and are part of a growing trend of sophisticated tactics to trick recipients and steal sensitive … Read more
September 9, 2024 at 09:51AM A pro-democracy NGO in Russia, the Free Russia Foundation, suspects Kremlin-linked group COLDRIVER behind a recent hack that leaked files. Citizen Lab’s report highlighted personalized phishing attacks on non-profits in Russia and Belarus, suggesting COLDRIVER’s involvement. The attacks aim to steal sensitive information and may lead to repression of pro-democracy … Read more