Law enforcement officers in Zambia have arrested 77 people at a call centre company they allege had employed local school-leavers to engage in scam internet users around the world. According to Zambian authorities, Chinese-run Golden Top Support Services, based in an upmarket area of capital city Lusaka, recruited Zambian youths between the ages of 20-25,…
Read MoreApr 15, 2024NewsroomSpyware / Mobile Security Cybersecurity researchers have discovered a “renewed” cyber espionage campaign targeting users in South Asia with the aim of delivering an Apple iOS spyware implant called LightSpy. “The latest iteration of LightSpy, dubbed ‘F_Warehouse,’ boasts a modular framework with extensive spying features,” the BlackBerry Threat Research and Intelligence Team said…
Read Moreffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt ffrt…
Read MoreIt’s All About the Data The healthcare industry has proven an irresistible target for cyberattacks. In 2023, there were 136 publicized attacks, a 134% increase from the year before. But why is the healthcare industry targeted so frequently? This is driven by the sensitive data it maintains and its large attack surface. At the most…
Read MoreOne of the researchers that recently compiled a knowledge base of common misconfigurations and attack techniques impacting Microsoft System Center Configuration Manager (SCCM), has developed an open-source scanner to help administrators more easily identify those weaknesses in their SCCM environments. “Although we detailed how to carry out, mitigate, and detect each of these attacks in…
Read MoreApr 15, 2024NewsroomFirewall Security / Vulnerability Palo Alto Networks has released hotfixes to address a maximum-severity security flaw impacting PAN-OS software that has come under active exploitation in the wild. Tracked as CVE-2024-3400 (CVSS score: 10.0), the critical vulnerability is a case of command injection in the GlobalProtect feature that an unauthenticated attacker could weaponize…
Read MoreThere are some sobering statistics on the impact of an attack. US small businesses paid over $16,000 in ransoms last year, according to the Hiscox Cyber Readiness 2023 report. “Ransomware is costing small businesses in a big way,” says Christopher Hojnowski, VP and product head of technology and cyber at Hiscox insurers, who works with…
Read MoreUpcoming Speaking Engagements This is a current list of where and when I am scheduled to speak: I’m speaking twice at RSA Conference 2024 in San Francisco. I’ll be on a panel on software liability on May 6, 2024 at 8:30 AM, and I’m giving a keynote on AI and democracy on May 7, 2024…
Read MoreElon Musk, the tech magnate behind Tesla and SpaceX, is facing legal challenges in Brazil. The Brazilian Supreme Court is investigating Musk for failing to comply with court orders. The nature of these court orders is not entirely clear, but they are likely connected to the January 8th mob attacks on Brazilian government buildings. This…
Read MoreDuckDuckGo, the search engine known for its commitment to user privacy, has recently launched a new subscription service called Privacy Pro. Priced at $10 per month, Privacy Pro offers a comprehensive suite of privacy protection features designed to shield users from online tracking and data collection. The centerpiece of Privacy Pro is a no-log VPN…
Read More