Cybersecurity

Category Added in a WPeMatico Campaign

Cybersecurity

‘Virtual Wild, Wild West’: Cybercriminals use Wyoming shell companies for global hacks

Estimated read time: 4-5 minutes WASHINGTON — Digital sabotage had knocked a Somalian news website and email accounts offline in August. “I can still feel the frustration,” reporter Abdalle Ahmed Mumin told Reuters. “Our link to the outside world, to the international media, is our website.” It was only after getting help from Qurium, a […]

Cybersecurity

MITRE Launches Critical Infrastructure Threat Model Framework

The cyber threat to critical infrastructure is increasing, prompting cyber government agencies to issue more warnings and advisories for industrial businesses. Against this backdrop, MITRE has launched EMB3D, a new threat model framework for defenders tasked with protecting operational technology (OT) and industrial control systems (ICS). EMB3D provides a knowledge base of cyber threats to […]

Cybersecurity

Google’s New Tracking Protection in Chrome Blocks Third-Party Cookies

Dec 15, 2023NewsroomPrivacy / User Tracking Google on Thursday announced that it will start testing a new feature called “Tracking Protection” starting January 4, 2024, to 1% of Chrome users as part of its efforts to deprecate third-party cookies in the web browser. The setting is designed to limit “cross-site tracking by restricting website access […]

Cybersecurity

More than 45,000 affected by cyberattack on Idaho nuclear research lab

The information of more than 45,000 people was leaked because of a cyberattack late last month at a federally run nuclear research lab. In filings with regulators in [Maine](https://apps.web.maine.gov/online/aeviewer/ME/40/ff925db5-9987-4a47-a5bc-a89c94f794f5.shtml, Montana and Oregon, the Idaho National Laboratory (INL), said 45,047 employees, former employees, spouses and dependents had sensitive information stored on an “off-site data center” that […]

Cybersecurity

New NKAbuse Malware Exploits NKN Blockchain Tech for DDoS Attacks

Dec 15, 2023NewsroomBlockchain / Internet of Things A novel multi-platform threat called NKAbuse has been discovered using a decentralized, peer-to-peer network connectivity protocol known as NKN (short for New Kind of Network) as a communications channel. “The malware utilizes NKN technology for data exchange between peers, functioning as a potent implant, and equipped with both […]

Cybersecurity

116 Malware Packages Found on PyPI Repository Infecting Windows and Linux Systems

Dec 14, 2023NewsroomMalware / Supply Chain Attack Cybersecurity researchers have identified a set of 116 malicious packages on the Python Package Index (PyPI) repository that are designed to infect Windows and Linux systems with a custom backdoor. “In some cases, the final payload is a variant of the infamous W4SP Stealer, or a simple clipboard […]

Cybersecurity

New Pierogi++ Malware by Gaza Cyber Gang Targeting Palestinian Entities

Dec 14, 2023NewsroomMalware / Threat Analysis A pro-Hamas threat actor known as Gaza Cyber Gang is targeting Palestinian entities using an updated version of a backdoor dubbed Pierogi. The findings come from SentinelOne, which has given the malware the name Pierogi++ owing to the fact that it’s implemented in the C++ programming language unlike its […]

Cybersecurity

Iranian State-Sponsored OilRig Group Deploys 3 New Malware Downloaders

Dec 14, 2023NewsroomMalware / Cyber Espionage The Iranian state-sponsored threat actor known as OilRig deployed three different downloader malware throughout 2022 to maintain persistent access to victim organizations located in Israel. The three new downloaders have been named ODAgent, OilCheck, and OilBooster by Slovak cybersecurity company ESET. The attacks also involved the use of an […]

Cybersecurity

Russian Foreign Intelligence Service (SVR) Exploiting JetBrains TeamCity CVE Globally | CISA

SUMMARY The U.S. Federal Bureau of Investigation (FBI), U.S. Cybersecurity & Infrastructure Security Agency (CISA), U.S. National Security Agency (NSA), Polish Military Counterintelligence Service (SKW), CERT Polska (CERT.PL), and the UK’s National Cyber Security Centre (NCSC) assess Russian Foreign Intelligence Service (SVR) cyber actors—also known as Advanced Persistent Threat 29 (APT 29), the Dukes, CozyBear, […]