Cybersecurity
Category Added in a WPeMatico Campaign
The US cybersecurity agency CISA is stepping up its efforts to prevent ransomware by making it easier for organizations to learn about vulnerabilities and misconfigurations exploited in these attacks. As part of its Ransomware Vulnerability Warning Pilot (RVWP) program launched in March, the agency has released two new resources to help organizations identify and eliminate […]
In a perfect world, companies would vet the security and compliance of every third-party vendor they use. Sales wouldn’t close until these reviews are complete. The trouble is, security reviews require a massive investment of time — and labor. Questionnaires — the main way companies vet vendors — contain hundreds of questions, covering everything from […]
A security researcher says a bug on an Indian state government website inadvertently revealed documents containing residents’ Aadhaar numbers, identity cards, and copies of their fingerprints. The bug was fixed last week after the security researcher disclosed the bug to local authorities. Sourajeet Majumder found the bug in the West Bengal government’s e-District web portal […]
Oct 13, 2023NewsroomEndpoint Security / Cyber Attack European Union military personnel and political leaders working on gender equality initiatives have emerged as the target of a new campaign that delivers an updated version of RomCom RAT called PEAPOD. Cybersecurity firm Trend Micro attributed the attacks to a threat actor it tracks under the name Void […]
Void Rabisu is an intrusion set associated with both financially motivated ransomware attacks and targeted campaigns on Ukraine and countries supporting Ukraine. Among the threat actor’s previous targets were the Ukrainian government and military, their energy and water utility sectors, EU politicians, spokespersons of a certain EU government, and security conference participants. In campaigns conducted […]
A new vulnerability in the User Submitted Posts WordPress plugin (versions 20230902 and below) has been discovered by the Patchstack team. With over 20,000 active installations, this popular plugin is used for user-generated content submissions and is developed by Plugin Planet. The vulnerability, discussed by Patchstack security researcher Rafie Muhammad in an advisory published today, […]
Cookie List A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. […]
Cyberwarfare / Nation-State Attacks , Endpoint Security , Fraud Management & Cybercrime Social Media Account Used to Spread Links to Commercial Spyware Malware Mihir Bagwe (MihirBagwe) • October 11, 2023 Image: Shutterstock Amnesty International says the Vietnamese government is likely behind a wave of attempted Predator spyware infections against targets including members of […]
Cybersecurity has become a top concern for small and medium enterprises (SMEs) and nearly half (48%) of SMEs have experienced at least one cyber incident in the past year. This is according to a new survey from accounting and payroll software provider Sage. Roche Healthcare, one of Sage’s customers, is one of the SMEs that […]