Author: nlqip
DigiCert urges critical infrastructure operators to request a delay if they cannot reissue their certificates, as required by an ongoing certificate mass-revocation process announced on Tuesday. The company is mass-revoking transport layer security (TLS) certificates because of a non-compliance issue with domain control verification (DCV). This procedure required 6,807 impacted customers to reissue 83,267 certificates…
Read More
In November, the Lazarus group, North Korea’s primary cyberespionage and sabotage arm, compromised a Taiwanese multimedia software company called CyberLink and trojanized the installer for one of its commercial applications. In February, Japan’s CERT reported that Lazarus uploaded malicious Python packages to PyPI, the official Python package repository. One of the dangers of campaigns like…
Read More
The cybersecurity industry needs nearly four million professionals to fill vacant roles, and as adversaries advance their tactics, this figure is set to increase. Meanwhile, this skills shortage significantly impacts organizations worldwide, with 70% of IT leaders saying this widening gap creates additional risks for their business. While many organizations are taking creative approaches to…
Read More
OneBlood, a large not-for-profit blood center that serves hospitals and patients in the United States, is dealing with an IT systems outage caused by a ransomware attack. The organization plays a critical role in ensuring a stable blood supply to the Southeastern part of the country, collecting, testing, and distributing a large volume of blood…
Read More
Google has fallen victim to its own ad platform, allowing threat actors to create fake Google Authenticator ads that push the DeerStealer information-stealing malware. For years, malicious advertising (malvertising) campaigns have targeted the Google search platform, where threat actors place ads to impersonate well-known software sites that install malware on visitors’ devices. To make matters…
Read More
CISA and the FBI said today that Distributed Denial of Service (DDoS) attacks targeting election infrastructure will, at most, hinder public access to information but will have no impact on the integrity or security of the 2024 U.S. general election processes. While threat actors have falsely claimed in the past that DDoS attacks compromised voting…
Read More
Fresnillo PLC, the world’s largest silver producer and a top global producer of gold, copper, and zinc, said attackers gained access to data stored on its systems during a recent cyberattack. The mining giant revealed in a Tuesday filing that it was “the subject of a cyber security incident which has resulted in unauthorised access…
Read More
A new Android malware that researchers call ‘BingoMod’ can wipe devices after successfully stealing money from the victims’ bank accounts using the on-device fraud technique. Promoted through text messages, the malware poses as a legitimate mobile security tool and can steal up to 15,000 EUR per transaction. According to researchers analyzing it, BingoMod is currently under…
Read More
‘The significant opportunities within the Mission AI Foundation lie in what comes after they launch an AI application,’ says Ted Stuart, president and COO at Mission Cloud. ‘Many businesses think that launching a service is like crossing the finish line, when in reality they’re just getting started. We help guide customers through that realization.’ Mission…
Read More
CRN looks at new networking products and services that have hit the market in the first half of 2024, including products ranging from Ethernet and PoE extenders, to improved wireless access points, to the latest in AI-focused networking technology. Meeting The Need For New Networking Infrastructure The networking infrastructure market in the U.S. continues to…
Read More