January 18, 2024 at 06:12AM In 2024, the cybersecurity landscape faces evolving challenges, particularly from ransomware. Cybercriminals are adopting a new strategy of data theft and extortion, bypassing traditional encryption-based attacks. Encrypted data offers legal protection in the event of a breach, but widespread encryption deployment lags. Proactive security management and asset enumeration are critical … Read more
January 18, 2024 at 06:12AM Foxsemicon, a subsidiary of Foxconn, was reportedly attacked by LockBit ransomware. 5 Tb of data was claimed to be stolen and encrypted, including personal data of customers and employees. The cybercriminals demanded a ransom and threatened to make the data public. Although Foxsemicon believes the impact won’t be significant, the … Read more
January 18, 2024 at 05:21AM Security researchers have traced a DDoS botnet infecting millions of smart TVs and set-top boxes to the Bigpanzi cybercrime syndicate. At its peak, 170,000 bots were running daily and were used for cybercrimes such as DDoS attacks and hijacking broadcasts. The researchers aim to combat Bigpanzi and seek collaboration from … Read more
January 18, 2024 at 05:03AM Multiple security vulnerabilities in the TCP/IP network protocol stack of an open-source UEFI firmware are collectively dubbed PixieFail. These issues could be exploited to achieve remote code execution, denial-of-service, DNS cache poisoning, and leakage of sensitive information. Various firms’ UEFI firmware are impacted, and the CERT Coordination Center provided advisory … Read more
January 18, 2024 at 04:48AM Multiple Atlassian Jira products are experiencing an ongoing outage. Users of Jira Work management, Jira Software, Jira Service Management, and Jira Product Discovery are facing connection issues. Atlassian is investigating the cause, and error messages such as HTTP 503 (Service Unavailable) have been observed. This is a developing story. (Summary: … Read more
January 18, 2024 at 04:38AM Forward-looking organizations are switching from legacy point-based cloud security to integrated platforms for improved app security and reduced management overheads. Cybersecurity Insiders notes the trend of replacing piecemeal security solutions with all-in-one platforms, like Trend Vision One, offering integrated cloud security features for operational efficiency and comprehensive protection across different … Read more
January 17, 2024 at 05:06PM ESET, a leading cybersecurity company, has launched ESET MDR, an innovative solution tailored for SMBs to address evolving cybersecurity challenges. The service combines AI-powered automation, human expertise, and comprehensive threat intelligence to provide unmatched threat detection and incident response. This offering will help SMBs enhance their security postures and meet … Read more
January 17, 2024 at 04:59PM Intel 471, a leading cyber threat intelligence solutions provider, appoints Sonja Tsiridis as its new Chief Technology Officer. With over 20 years of experience, Sonja will lead the Global Engineering Organization, driving innovation in product and platform technology to further expand Intel 471’s unparalleled CTI capabilities worldwide. Learn more about … Read more
January 17, 2024 at 04:30PM The “Inferno Drainer” phishing campaign siphoned over $80 million in cryptocurrency over a year. Using 100 cryptocurrency brands, the attackers lured victims into authorizing fund siphoning, gaining scale from an innovative “drainer-as-a-service” model. The attackers used brand impersonation and social media lures, and the infrastructure was available to rent. Vigilance … Read more
January 17, 2024 at 04:23PM Google has patched a high-severity zero-day bug in Chrome Web browser (CVE-2024-0519) actively exploited by attackers, enabling code execution and other cyberattacks. This is the first Chrome zero-day in 2024 and the second in less than a month. Chrome’s vulnerability disclosures increased over the years, making it a prime target … Read more