August 14, 2024 at 11:16AM Email attacks have dramatically increased, with Abnormal Security’s H1 2024 analysis showing a 50% rise from H2 2023. CISO Mike Britton discusses the limitations of Multi-Factor Authentication (MFA), reasons for email attacks’ popularity, and the potential impact of AI on phishing. The report also highlights the surge in file-sharing attacks … Read more
August 2, 2024 at 05:00AM In July 2024, 25 cybersecurity-related merger and acquisition (M&A) deals were announced. Notable acquisitions include 360 Advanced acquiring Aberrant, Arieli EL’s majority stake in Elron Ventures, and Exiger’s acquisition of aDolus. These deals reflect a trend of consolidation and expansion in the cybersecurity sector amid a relatively quiet half-year for … Read more
July 19, 2024 at 10:05AM APT41, a Chinese threat group, has launched a cyber espionage campaign targeting organizations in shipping, logistics, media, entertainment, technology, and automotive industries across multiple countries. The group, known for supply chain attacks, has successfully infiltrated and maintained access to victim networks. APT41 is using custom cyber espionage tools and has … Read more
July 17, 2024 at 11:36AM “BadPack,” a set of maliciously packaged APK files, creates challenges for analysts trying to detect and analyze malware in Android applications. The altered header information in BadPack files hampers reverse-engineering tools and has contributed to the rise of Android banking Trojans. Unit 42 researchers have developed methods to detect and … Read more
May 23, 2024 at 01:27PM Security researchers reverse-engineered Apple’s iOS 17.5.1 update, revealing a bug causing deleted images to reappear. Despite widespread concerns, Apple remained silent. The update fixed the bug, easing privacy worries. Researchers identified changes in the update, which revealed the bug’s cause. Apple’s silence prompted speculation about data policies. BleepingComputer’s attempts to … Read more
March 6, 2024 at 10:39AM Sygnia’s prompt intervention prevented a potentially devastating ransomware attack on a company’s network by disconnecting it from the internet. The attackers, BlackCat, had penetrated the system through a compromised vendor. While some data was exfiltrated, encryption was thwarted, and the victim’s decisive action and Sygnia’s expertise proved pivotal in mitigating … Read more