Cybersecurity
Category Added in a WPeMatico Campaign
Authorised push payment (APP) fraud continues to be a major headache for the UK banking industry and its customers, contributing to almost half a billion pounds in losses in the first half of 2023, according to UK Finance. The banking body’s 2023 Half Year Fraud Update noted that although the headline figure for fraud losses […]
A leading US cybersecurity agency has published a new set of online resources designed to help IT security leaders in the healthcare sector to improve their organization’s security posture. The Cybersecurity Toolkit for Healthcare and Public Health features a range of information, guidance and practical tooling to help reduce cyber-risk and the “likelihood of successful cyber-incursions” […]
The newly released Security and Exchange Commission (SEC) cyber incident disclosure rules have been met with mixed reviews. Of particular concern is whether public companies who own and operate industrial control systems and connected IoT infrastructure are prepared to fully define operational risk, and therefore are equipped to fully disclose material business risk from cyber […]
Mozilla and Google this week announced software updates for Firefox and Chrome that address multiple high-severity vulnerabilities, including memory safety bugs. On Tuesday, Mozilla released Firefox 119 with patches for 11 vulnerabilities, including three high-severity issues. The first of the flaws, CVE-2023-5721, is an insufficient activation-delay bug that could result in the user unintentionally activating […]
Oct 26, 2023NewsroomData Security / Vulnerability A group of academics has devised a novel side-channel attack dubbed iLeakage that exploits a weakness in the A- and M-series CPUs running on Apple iOS, iPadOS, and macOS devices, enabling the extraction of sensitive information from the Safari web browser. “An attacker can induce Safari to render an […]
This attack bypasses standard side-channel protections implemented by browser vendors and can retrieve data from Safari, as well as other browsers like Firefox, Tor, and Edge on iOS.
Critical Infrastructure Security , Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime New Standards to Target Security of Connected Rooftop Systems, Solar Inverters Jayant Chakravarti (@JayJay_Tech) • October 25, 2023 Solar panel farm on a rooftop in Adelaide, Australia (Image: Shutterstock) The Australian government is close to introducing standards to shore up […]
Cisco Talos has disclosed 17 vulnerabilities over the past two weeks, including nine that exist in a popular VPN software. Attackers could exploit these vulnerabilities in the SoftEther VPN solution for individual and enterprise users to force users to drop their connections or execute arbitrary code on the targeted machine. Talos’ Vulnerability Research team […]
Microsoft has been closely monitoring the activities of a threat group known as Octo Tempest. This group has emerged as a major concern for businesses across a variety of sectors due to its financially driven motives and sophisticated tactics. Octo Tempest is notorious for its broad social engineering campaigns, aiming to compromise organizations worldwide with […]