SentinelOne analysts were able to recreate the July 9 attack and identify the threat actor behind it. Source: Read More (Latest topics for ZDNet in Security)
All posts
[ZDNet] Mozilla adds new features to its VPN service, raises prices for some users
Mozilla’s VPN gains split tunneling and says customers demanded more flexible pricing options. Source: Read More (Latest topics for ZDNet in Security)
[ZDNet] McAfee: Babuk ransomware decryptor causes encryption ‘beyond repair’
Babuk announced earlier this year that it would be targeting Linux/UNIX and ESXi or VMware systems with ransomware. Source: Read More (Latest topics for ZDNet in Security)
[HackerNews] New Ransomware Gangs — Haron and BlackMatter — Emerge on Cybercrime Forums
Two new ransomware-as-service (RaaS) programs have appeared on the threat radar this month, with one group professing to be a successor to DarkSide and REvil, the two infamous ransomware syndicates that went off the grid following major attacks on Colonial Pipeline and Kaseya over the past few months. “The project has incorporated in itself the best features of […]
[SecurityWeek] eCommerce Fraud Prevention Firm Riskified Prices IPO at $21 Per Share
Israel-based ecommerce fraud prevention company Riskified has announced the pricing of its initial public offering (IPO) as it prepares to start trading publicly on the New York Stock Exchange. read more Source: Read More (SecurityWeek RSS Feed)
[ZDNet] Microsoft: Zero Trust security just hit the mainstream
If you work in cybersecurity and you don’t know about Zero Trust, you’re among a very small minority, according to a Microsoft survey. Source: Read More (Latest topics for ZDNet in Security)
[HackerNews] Best Practices to Thwart Business Email Compromise (BEC) Attacks
Business email compromise (BEC) refers to all types of email attacks that do not have payloads. Although there are numerous types, there are essentially two main mechanisms through which attackers penetrate organizations utilizing BEC techniques, spoofing and account take-over attacks. In a recent study, 71% of organizations acknowledged they had seen a business email compromise (BEC) […]
[HackerNews] New Android Malware Uses VNC to Spy and Steal Passwords from Victims
A previously undocumented Android-based remote access trojan (RAT) has been found to use screen recording features to steal sensitive information on the device, including banking credentials, and open the door for on-device fraud. Dubbed “Vultur” due to its use of Virtual Network Computing (VNC)’s remote screen-sharing technology to gain full visibility on targeted users, the […]
[SecurityWeek] Serious Vulnerabilities Found in Firmware Used by Many IP Camera Vendors
IP cameras offered by a dozen vendors are exposed to remote attacks due to several serious vulnerabilities found in the firmware they all share, according to France-based cybersecurity firm RandoriSec. read more Source: Read More (SecurityWeek RSS Feed)
[HackerNews] Top 30 Critical Security Vulnerabilities Most Exploited by Hackers
Intelligence agencies in Australia, the U.K., and the U.S. issued a joint advisory on Wednesday detailing the most exploited vulnerabilities in 2020 and 2021, once again demonstrating how threat actors are able to weaponize publicly disclosed flaws to their advantage swiftly. “Cyber actors continue to exploit publicly known—and often dated—software vulnerabilities against broad target sets, […]