Nation State Hackers Exploiting Zero-Day in Roundcube Webmail Software

October 25, 2023 at 09:45AM The Winter Vivern threat actor has been using a zero-day vulnerability in Roundcube webmail software to access victim’s email accounts. Winter Vivern has previously targeted Ukraine, Poland, and government entities in Europe and India. The newly discovered vulnerability, CVE-2023-5631, allows for the injection of arbitrary JavaScript code. Attackers employ a … Read more

Malicious Apps Spoof Israeli Attack Detectors: Conflict Goes Mobile

October 23, 2023 at 02:36PM A genuine app called RedAlert – Rocket Alerts, which provides timely alerts about incoming airstrikes in the Israel and Gaza region, was recently spoofed and used to collect personal information from users. This incident highlights the extension of cybercrimes during the Israel-Hamas conflict. Another case involved a pro-Palestinian hacktivist group … Read more

Microsoft opens early access to AI assistant for infosec, Security Copilot

October 23, 2023 at 09:08AM Microsoft is launching the early access program for Security Copilot, an AI cybersecurity tool embedded in the Microsoft 365 Defender XDR platform. The tool aims to save time for security teams by providing step-by-step instructions on managing incidents and offering insights to upskill existing staff. It can generate natural language … Read more

Microsoft announces Security Copilot early access program

October 22, 2023 at 01:42PM Microsoft has launched its early access program for Security Copilot, an AI assistant that helps security teams detect and counter threats more efficiently. The assistant, similar to ChatGPT, offers features such as instant incident summaries, simplified language queries, and real-time malware analysis. It integrates with Microsoft’s 365 Defender XDR platform … Read more

Ducktail Infostealer, DarkGate RAT Linked to Same Threat Actors

October 20, 2023 at 02:18PM DarkGate, a remote access trojan (RAT), has been linked to the Vietnamese financial cybercrime operation behind the Ducktail infostealer. Researchers have found similarities in the lure documents and targeting used by both malware. DarkGate is a multifunctional malware that can steal information, distribute malware, and mine cryptocurrency. Understanding connections between … Read more

AI-Powered Israeli ‘Cyber Dome’ Defense Operation Comes to Life

October 19, 2023 at 01:42PM Israel is developing a cyber defense system called Cyber Dome, incorporating generative AI platforms to filter threats. It will employ practitioners from various governmental departments, including IDF and intelligence agencies. Private companies and research organizations will also participate. The development of Cyber Dome has been expedited due to the recent … Read more

Cybersecurity M&A Roundup for First Half of October 2023

October 18, 2023 at 07:00AM In the first half of October 2023, there were over a dozen cybersecurity-related merger and acquisition (M&A) deals announced. Some notable acquisitions include Arctic Wolf’s acquisition of Revelstoke to enhance their security orchestration capabilities, KPMG’s acquisition of IMagosoft to expand their identity and access management services, and Okta’s acquisition of … Read more

Ransomware attacks doubled year on year. Are organizations equipped to handle the evolution of Ransomware in 2023?

October 13, 2023 at 07:48AM Ransomware attacks have become more sophisticated and adaptable, using new techniques and targeting vulnerabilities in networking devices. The healthcare sector has become a significant target, with a focus on stealing sensitive data. High-income organizations are preferred targets due to their ability to pay ransoms and the potential damage to their … Read more