Nov 14, 2023NewsroomCyber Espionage / Threat Intelligence Government entities in the Middle East are the target of new phishing campaigns that are designed to deliver a new initial access downloader dubbed IronWind. The activity, detected between July and October 2023, has been attributed by Proofpoint to a threat actor it tracks under the name TA402, […]
Certain devices’ SSH connections can be snooped on, allowing attackers to impersonate the equipment and observe users’ login details and activities. The vulnerability is caused by errors in signature generation.
A class-action complaint was filed against Intel this week over its handling of data-leaking bugs in its CPUs. In a 112-page filing with the San Jose Division of the United States District Court’s Northern District of California, five representative plaintiffs are alleging that the chip giant knew about faulty instructions which enabled such issues as […]
The data wiping malware overwrites files, deletes system snapshots, and disables recovery options, making data recovery difficult and rendering affected systems unusable.
Dragos says it has found no evidence of a data breach after a known ransomware group claimed to have hacked the industrial cybersecurity company’s systems through a third party. “Dragos is asked to reach out within 24 hours, or we will begin the publication of both the facts and the data of executive members. This […]
Cybercriminals have devised a creative way to attempt to scam money from people: They use a feature of Google Forms quizzes to generate spam messages, researchers found. Abuse of Google Forms — part of the company’s free Workspace suite — has been tracked for several years, but the use of a specific feature within quizzes […]
Nov 14, 2023NewsroomChatGPT / Malware The Vietnamese threat actors behind the Ducktail stealer malware have been linked to a new campaign that ran between March and early October 2023, targeting marketing professionals in India with an aim to hijack Facebook business accounts. “An important feature that sets it apart is that, unlike previous campaigns, which […]
Dive Brief: Henry Schein, a medical and dental supplies company, is still recovering from a cybersecurity incident last month that took some of its systems offline. In a letter to its customers, the company disclosed on Monday that a data breach occurred, but “we do not have all the details of what data may have been […]
Nov 14, 2023NewsroomCyber Attack / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given a November 17, 2023, deadline for federal agencies and organizations to apply mitigations to secure against a number of security flaws in Juniper Junos OS that came to light in August. The agency on Monday added five vulnerabilities to […]