The North Korean state-sponsored hacking organization Lazarus Group has initiated “Operation 99,” a cyber attack campaign that exploits software developers through fraudulent job postings on LinkedIn, aiming to steal data and cryptocurrency.
A newly identified vulnerability in the UEFI Secure Boot mechanism, tracked as CVE-2024-7344, allows privileged attackers to execute untrusted code during the boot process, potentially impacting various real-time system recovery software.
President Joe Biden has signed a comprehensive Executive Order aimed at enhancing national cybersecurity in response to recent cyberattacks from foreign adversaries, including China, Iran, Russia, and North Korea, by establishing stricter standards and leveraging advanced technologies.
Cybercriminals are increasingly employing advanced techniques, including embedding malicious code in image files and utilizing Generative AI, to bypass email security measures and enhance the effectiveness of their attacks.
The US Federal Trade Commission has ordered GoDaddy to implement a comprehensive information security program to address significant security failures that led to multiple customer data breaches.
The Belsen Group has leaked sensitive configuration data and VPN credentials from more than 15,000 FortiGate firewall devices, linked to a critical zero-day vulnerability, posing significant security risks to organizations worldwide.
