CrowdStrike is warning that a fake recovery manual to repair Windows devices is installing a new information-stealing malware called Daolpu. Since Friday, when the buggy CrowdStrike Falcon update caused global IT outages, threat actors have quickly begun to capitalize on the news to deliver malware through fake fixes. A new campaign conducted through phishing emails…
Read More
Researchers have linked a previously unattributed Mac backdoor and a new Windows Trojan to a Chinese APT group known as Daggerfly that has been around for over a decade and targets organizations and individuals around the world. The group appears to be using the same modular malware development framework to create threats for Windows, Linux,…
Read More
For those who have machines back up and recovered post-CrowdStrike, there are certain items you should review. First is consider reissuing Bitlocker recovery keys. If you handed out the recovery key manually, consider reissuing and rotating keys. If you are considering changes to your infrastructure, rather than ripping out your technology and replacing it with…
Read More
In a surprising turn of events, Israeli cybersecurity startup Wiz has decided to end its acquisition talks with Google-parent Alphabet, which would have resulted in a $23 billion deal, the largest ever for Google. This decision was communicated through an internal memo from Wiz CEO Assaf Rappaport, who emphasized the company’s renewed focus on pursuing…
Read More
According to the latest reports, the average cost of a data breach rose to 4.45 million USD which is a 15% over the previous three years[1] indicating that potential risks from cyber threats to organizations is only going to rise and business leaders are looking to security teams to make the right choices to reduce…
Read More
Jul 23, 2024NewsroomCyber Espionage / Chinese Hackers Organizations in Taiwan and a U.S. non-governmental organization (NGO) based in China have been targeted by a Beijing-affiliated state-sponsored hacking group called Daggerfly using an upgraded set of malware tools. The campaign is a sign that the group “also engages in internal espionage,” Symantec’s Threat Hunter Team, part…
Read More
In episode eight of “The AI Fix”, our hosts tackle the latest news from the world of AI and learn about two important medical breakthroughs, Mark coughs, Graham ruins “Killing me softly”, and neither shows their junk to an AI. Graham explains humour to Mark and shares a donkey story he learned from a Bulgarian,…
Read More
The discussions have fallen apart as Wiz seeks to remain independent, Wiz’s CEO reportedly told employees Monday. Google’s bid to acquire Wiz has disintegrated as the cloud security vendor seeks to remain independent, Wiz’s CEO reportedly told employees Monday. Last week, multiple media reports pointed to advanced talks around Google parent Alphabet acquiring Wiz for…
Read More
Jul 23, 2024NewsroomCyber Espionage / Malware The Computer Emergency Response Team of Ukraine (CERT-UA) has alerted of a spear-phishing campaign targeting a scientific research institution in the country with malware known as HATVIBE and CHERRYSPY. The agency attributed the attack to a threat actor it tracks under the name UAC-0063, which was previously observed targeting…
Read More
On July 19, 2024, a routine software update from cybersecurity giant CrowdStrike triggered a cascading failure that resulted in one of the largest IT outages in history. This incident affected thousands of businesses and organizations worldwide, causing widespread disruptions across various sectors including aviation, banking, healthcare, and government services. July 19, 2024, 04:09 UTC: CrowdStrike…
Read More