[HackerNews] Israeli Firm Helped Governments Target Journalists, Activists with 0-Days and Spyware

Two of the zero-day Windows flaws patched by Microsoft as part of its Patch Tuesday update earlier this week were weaponized by an Israel-based company called Candiru in a series of “precision attacks” to hack more than 100 journalists, academics, activists, and political dissidents globally.
The spyware vendor was also formally identified as the commercial surveillance company that Google’s

Source: Read More (The Hacker News)

You might be interested in …

[ZDNet] Neiman Marcus says May 2020 breach includes millions of payment card numbers and expiration dates

All posts, ZDNet

The company admitted that the breach occurred more than a year ago but noted that they only discovered it in September 2021. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ZDNet] The Chris Krebs case for including election systems as critical infrastructure

All posts, ZDNet

The cybersecurity expert has told an Australian Parliamentary committee there are elements of the election administration function that should ‘absolutely’ be considered critical infrastructure. Source: Read More (Latest topics for ZDNet in Security)

Read More

Daily NCSC-FI news followup 2021-11-20

Updated: APT Exploitation of ManageEngine ADSelfService Plus Vulnerability us-cert.cisa.gov/ncas/current-activity/2021/11/19/updated-apt-exploitation-manageengine-adselfservice-plus The Federal Bureau of Investigation (FBI), CISA, and Coast Guard Cyber Command (CGCYBER) have updated the Joint Cybersecurity Advisory (CSA) published on September 16, 2021, which details the active exploitation of an authentication bypass vulnerability (CVE-2021-40539) in Zoho ManageEngine ADSelfService Plusa self-service password management and single […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.