Ukrainian security researchers have uncovered a significant cyber-espionage campaign conducted by APT29, also known as Cozy Bear or Nobelium, targeting embassies and international institutions, utilizing spear-phishing emails with malicious RAR attachments and exploiting a vulnerability to execute arbitrary code.
Silverfort’s vendor-agnostic and agentless platform integrates with existing identity and access management solutions to protect organizations from identity-based attacks, addressing security gaps and providing comprehensive protection for sensitive data and systems.
LummaC2 v4.0, an advanced malware, introduces an innovative anti-sandbox technique using trigonometry to analyze cursor positions, allowing it to evade detection and steal sensitive information.
Threat actors are utilizing NetSupport RAT to target education, government, and business sectors, posing significant risks and requiring robust cybersecurity measures.
The UK’s National Cyber Security Centre (NCSC) has collaborated with industry experts to author an IETF RFC on Indicators of Compromise (IoCs), providing valuable information on their lifecycle, the “pyramid of pain” concept, real examples of their use, and considerations for implementation, aiming to educate those working at the IETF on the importance of IoCs in cybersecurity.
The US Cybersecurity and Infrastructure Security Agency (CISA) has released a comprehensive cybersecurity guide tailored for the Healthcare and Public Health (HPH) sector, addressing vulnerabilities and providing best practices for mitigating healthcare IT security risks.
