Cybersecurity
Category Added in a WPeMatico Campaign
Fraud Management & Cybercrime , Ransomware Ongoing Innovation and Sophistication Drive Unparalleled Profits Mathew J. Schwartz (euroinfosec) • February 7, 2024 Happy days are here again – if you’re a ransomware hacker. (Image: Shutterstock) Unwelcome news from the ransomware frontlines: Attackers are continuing to innovate and have launched more sophisticated attacks, collectively storming […]
Google fixed an Android critical remote code execution flaw Pierluigi Paganini February 06, 2024 Google released Android ’s February 2024 security patches to address 46 vulnerabilities, including a critical remote code execution issue. Google released Android February 2024 security patches to address 46 vulnerabilities, including a critical remote code execution flaw tracked as CVE-2024-0031. The […]
The vulnerabilities impact devices with default configurations and can lead to system configuration modifications, creation of privileged accounts, and denial of service conditions.
Feb 08, 2024NewsroomCyber Espionage / Malware The North Korea-linked nation-state actor known as Kimsuky is suspected of using a previously undocumented Golang-based information stealer called Troll Stealer. The malware steals “SSH, FileZilla, C drive files/directories, browsers, system information, [and] screen captures” from infected systems, South Korean cybersecurity company S2W said in a new technical report. […]
Feb 08, 2024NewsroomCyber Threat / Network Security Cisco, Fortinet, and VMware have released security fixes for multiple security vulnerabilities, including critical weaknesses that could be exploited to perform arbitrary actions on affected devices. The first set from Cisco consists of three flaws – CVE-2024-20252 and CVE-2024-20254 (CVSS score: 9.6) and CVE-2024-20255 (CVSS score: 8.2) – […]
Malware-as-a-Service (MaaS) infections were the biggest threat to organizations in the second half of 2023, according to a new Darktrace report. The 2023 End of Year Threat Report highlighted the cross-functional adaption of many of the malware strains. This includes malware loaders like remote access trojans (RATs) being combined with information-stealing malware. Through reverse engineering […]
Governance & Risk Management , Healthcare , Industry Specific HHS OCR Says a Malicious Worker Stole and Sold Patient Information in 2013 Marianne Kolbasuk McGee (HealthInfoSec) • February 6, 2024 Montefiore Medical Center in New York is paying HHS OCR $4.75 million to settle a HIPAA breach investigation. (Image: Montefiore) Federal regulators fined […]
Nearly two million Brits may have had their identity stolen and used by fraudsters to open a financial account in 2023, according to FICO’s new Fraud, Identity and Digital Banking Report. The analytics firm found that 4.3% of respondents had their identity abused in this way, which would equate to 1.9 million people if extrapolated […]
Critical shim bug impacts every Linux boot loader signed in the past decade Pierluigi Paganini February 07, 2024 The maintainers of Shim addressed six vulnerabilities, including a critical flaw that could potentially lead to remote code execution. The maintainers of ‘shim’ addressed six vulnerabilities with the release of version 15.8. The most severe of these […]