US Department of Justice Indicts Two RT Employees for Funding Disinformation Campaign
Two employees of Russian state media group RT are accused of funneling $10 million to spread disinformation on social media platforms in the US.
View full story…
CISOs Facing Budget Challenges Amid Global Uncertainties
Chief Information Security Officers are reporting stagnant or slightly increasing security budgets in 2024, with certain sectors witnessing increases while others face declines, impacting recruitment and strategic spending to combat sophisticated threats.
View full story…
Kara Sprague Named CEO of HackerOne, Succeeding Marten Mickos
Kara Sprague, a seasoned technology executive, will take over as CEO of HackerOne, succeeding Marten Mickos, with plans to enhance platform capabilities and expand the community of security researchers.
View full story…
Latest Cybernews
Revival Hijack Attack Targets PyPI Repository, Poses Significant Risk
A new threat known as ‘Revival Hijack’ exploits a vulnerability in PyPI to re-register removed legitimate packages with malicious ones, potentially infecting users who download them.
View full story…
FBI Warns of North Korean State-Sponsored Hackers Targeting Cryptocurrency Organizations
Sophisticated social engineering campaigns by North Korean hackers pose a significant threat to cryptocurrency organizations, with attackers using advanced tactics to steal funds and deploy malware.
View full story…
Arrest of Telegram CEO Pavel Durov Sparks Debate on Online Privacy and Social Media Responsibilities
The recent arrest of Pavel Durov, founder and CEO of Telegram, has raised concerns about the platform’s involvement in illicit activities and its impact on digital freedom and cybersecurity.
View full story…
Google Releases September 2024 Android Security Update to Address Critical Vulnerabilities
Google’s September 2024 Android security update addresses a zero-day vulnerability in the Android Framework component, actively exploited and requiring physical access to the device for privilege escalation.
View full story…
Organizations Urged to Prioritize Browser Security to Prevent Account Takeover Attacks
Cybercriminals exploit browsers to gain unauthorized access to user accounts in cloud-based SaaS environments, emphasizing the need for a comprehensive browser security platform to mitigate risks and safeguard sensitive data.
View full story…
Cybercriminals Impersonate Palo Alto Networks GlobalProtect VPN Sellers to Spread WikiLoader Malware
A recent malware campaign involves threat actors impersonating sellers of Palo Alto Networks GlobalProtect VPN software to distribute a new variant of the WikiLoader downloader malware through SEO poisoning.
View full story…
Threat Actors Exploit MacroPack Tool to Distribute Malicious Payloads
Threat actors have been using MacroPack to distribute malicious payloads such as the Brute Ratel and Havoc frameworks, as well as a new variant of the PhantomCore RAT, with sophisticated obfuscation techniques to avoid detection.
View full story…
US Government Introduces Roadmap to Enhance Internet Routing Security
US government, through the Office of the National Cyber Director, introduces comprehensive plan to strengthen Border Gateway Protocol against vulnerabilities.
View full story…
Latest Cybernews
Eight Security Vulnerabilities Found in Microsoft Applications for macOS
Researchers from Cisco Talos have identified vulnerabilities in popular Microsoft applications for macOS that could allow attackers to gain elevated privileges and access sensitive data.
View full story…
New Mobile Malware Rocinante Targets Banking Customers in Brazil and Spanish-Speaking Regions
A new strain of mobile malware known as Rocinante, distributed by threat actors under the alias DukeEugene, targets mobile users in Brazil and Spanish and Portuguese-speaking regions with sophisticated banking trojan capabilities.
View full story…