The Russian nation-state group Star Blizzard has launched a new phishing campaign targeting WhatsApp accounts, employing sophisticated methods to exploit the platform following a law enforcement takedown of their previous domains.
The US Supreme Court has unanimously upheld a law mandating ByteDance to divest its ownership of TikTok’s US operations by January 19, 2025, citing national security concerns over data collection practices and potential access by the Chinese government.
President Biden has enacted a comprehensive executive order to enhance national cybersecurity standards in response to significant cyberattacks from foreign adversaries, particularly China and Russia.
The North Korean state-sponsored hacking organization Lazarus Group has initiated “Operation 99,” a cyber attack campaign that exploits software developers through fraudulent job postings on LinkedIn, aiming to steal data and cryptocurrency.
A newly identified vulnerability in the UEFI Secure Boot mechanism, tracked as CVE-2024-7344, allows privileged attackers to execute untrusted code during the boot process, potentially impacting various real-time system recovery software.
President Joe Biden has signed a comprehensive Executive Order aimed at enhancing national cybersecurity in response to recent cyberattacks from foreign adversaries, including China, Iran, Russia, and North Korea, by establishing stricter standards and leveraging advanced technologies.
Cybercriminals are increasingly employing advanced techniques, including embedding malicious code in image files and utilizing Generative AI, to bypass email security measures and enhance the effectiveness of their attacks.
The US Federal Trade Commission has ordered GoDaddy to implement a comprehensive information security program to address significant security failures that led to multiple customer data breaches.
The Belsen Group has leaked sensitive configuration data and VPN credentials from more than 15,000 FortiGate firewall devices, linked to a critical zero-day vulnerability, posing significant security risks to organizations worldwide.
Organizations increasingly adopt hybrid and multi-cloud strategies for scalability and flexibility, yet face significant security and compliance challenges, with a notable skills gap in cloud security expertise.
