NSA Releases Cybersecurity Information Sheet on Event Logging and Threat Detection
The NSA, in collaboration with CISA, FBI, and international partners, releases guidance on best practices for event logging to combat cyber threats, particularly focusing on detecting living-off-the-land techniques utilized by threat groups like Volt Typhoon.
View full story…
Latest Cybernews
Key Points from Andy Hornegold’s Lecture on Exposure Management at Intruder
Intruder’s VP of Product, Andy Hornegold, discusses strategies for reducing attack surfaces in cybersecurity.
View full story…
US Government Files Lawsuit Against Georgia Tech for Alleged Cybersecurity Violations
The US Department of Justice has filed a lawsuit against Georgia Tech and its affiliate GTRC for failing to meet cybersecurity standards in a Department of Defense contract, with whistleblowers claiming a pattern of noncompliance dating back to 2019.
View full story…
New macOS Malware Cthulhu Stealer Targets Apple Users with Deceptive Tactics
Cthulhu Stealer, a new malware-as-a-service targeting Apple macOS users, disguises itself as legitimate software to extract sensitive data and poses a significant threat despite lacking advanced anti-analysis techniques.
View full story…
YouTube Introduces “Hacked Channel Assistant” Tool for Enhanced Security Measures
YouTube creators now have access to a new troubleshooting tool called the “Hacked Channel Assistant” to enhance security measures and recover hacked accounts.
View full story…
Latvian Cybercriminal Charged in US for Extortion and Data Theft
Deniss Zolotarjovs, a member of the cybercriminal organization Karakurt, has been charged in the US for cybercrimes such as data theft, extortion, money laundering, and wire fraud.
View full story…
Qilin Ransomware Steals Google Chrome Credentials in New Attack
Russia-linked cybercrime group Qilin ransomware has been observed stealing Google Chrome credentials as part of their ransomware attacks.
View full story…
Latest Cybernews
Google Releases Emergency Update for Chrome Desktop Users to Address Security Vulnerability
Google has released an emergency update for Chrome desktop users to fix the CVE-2024-7971 vulnerability actively being exploited by remote attackers.
View full story…
Cyberattacks Surge in US Across Multiple Sectors in First Half of 2024
Cyberattacks in the US increase significantly in the first half of 2024, targeting sectors such as manufacturing, professional services, healthcare, and technology, with a focus on ransomware and database leaks.
View full story…
FAA Proposes New Cybersecurity Regulations for Airplanes and Aviation Equipment
The Federal Aviation Administration has proposed new cybersecurity regulations for transport category airplanes, engines, and propellers to enhance safety and protect against unauthorized electronic interactions.
View full story…
GitHub Enterprise Server Addresses Critical Security Vulnerabilities
GitHub Enterprise Server has fixed three security vulnerabilities, including a critical XML signature wrapping issue that could lead to admin privilege escalation.
View full story…
Hardware Backdoor Discovered in Millions of RFID Smart Cards Produced by Shanghai Fudan Microelectronics Group
Security researchers from Quarkslab have found a hardware backdoor in RFID smart cards, compromising user-defined keys and potentially leading to widespread breaches in office buildings and hotels.
View full story…
Newly Discovered Cthulhu Stealer Malware Targets macOS Users
Cthulhu Stealer poses a significant threat to macOS users by disguising itself as legitimate software programs and stealing confidential information, including crypto, game account, and browser credentials.
View full story…