Month: August 2024
Attackers impersonating the Security Service of Ukraine (SSU) have used malicious spam emails to target and compromise systems belonging to the country’s government agencies. On Monday, the Computer Emergency Response Team of Ukraine (CERT-UA) disclosed that the attackers successfully infected over 100 computers with AnonVNC malware. Some samples were signed using the code signing certificate…
Read MoreEvolution Mining has informed that it has been targeted by a ransomware attack on August 8, 2024, which impacted its IT systems. The company has contracted external cybersecurity experts to help with the remediation efforts, and based on the current information, the attack is now fully contained. Evolution Mining is one of Australia’s largest gold…
Read MoreSteven Sim has more than 25 years’ experience in cybersecurity with large end-user enterprises and critical infrastructure. He has undertaken a global CISO role and driven award-winning security governance and management initiatives. He leads cybersecurity across a multinational firm with operations in 42 countries. He oversees Governance, Technology Management and Incident Response as…
Read MoreMicrosoft has shared a temporary fix for a known issue preventing Microsoft 365 customers from signing in or adding Gmail accounts using classic Outlook. When attempting to synchronize Gmail accounts with their Outlook profile or add a new Gmail account, affected users may encounter the following errors: “This browser or app may not be secure”…
Read More10web–Slider by 10Web Responsive Image Slider The Slider by 10Web – Responsive Image Slider plugin for WordPress is vulnerable to time-based SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.2.57 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This…
Read MoreGoogle is notifying Russian YouTubers, bloggers, and publishers that their Adsense accounts are being deactivated and can no longer be used for advertising. Google AdSense is an online advertising platform developed by Google that allows website owners, bloggers, and YouTube creators to monetize their content by displaying targeted advertisements. As reported by Habr earlier today,…
Read MoreAI, cloud, Splunk and security are among the subjects expected to come up. Artificial intelligence opportunities. An update on Splunk and the security portfolio. And the effects of cloud demand. These are some of the subjects likely to come up Wednesday during the latest quarterly earnings report from networking giant Cisco Systems. The San Jose,…
Read MoreCriminal IP, a rapidly growing Cyber Threat Intelligence (CTI) search engine developed by AI SPERA, recently completed its technology integration with Maltego, a global all-in-one investigation platform that specializes in visualized analysis of combined cyber data. This partnership embeds Criminal IP’s extensive database on malicious IPs, domains, and CVEs into Maltego’s unified user interface and…
Read MoreDuring this time, among many other efforts, Mandiant reported that the news site EvenPolitics, a Tehran-controlled disinformation site, had published articles covering the 2022 US midterm elections. An inauthentic amplification network promoting the site was taken down by the X platform that same year, yet EvenPolitics continues to operate, releasing approximately ten articles per week.…
Read MoreIn 2023, no fewer than 94 percent of businesses were impacted by phishing attacks, a 40 percent increase compared to the previous year, according to research from Egress. What’s behind the surge in phishing? One popular answer is AI – particularly generative AI, which has made it trivially easier for threat actors to craft content…
Read MoreRecent Posts
- Bob Sullivan Discovers a Scam That Strikes Twice
- A Vulnerability in Apache Struts2 Could Allow for Remote Code Execution
- CISA Adds One Known Exploited Vulnerability to Catalog | CISA
- Xerox To Buy Lexmark For $1.5B In Blockbuster Print Deal
- Vulnerability Summary for the Week of December 16, 2024 | CISA