-
Stories from the SOC: BlackCat on the prowl
This blog was co-authored with Josue Gomez and Ofer Caspi. Executive summary BlackCat is and has been one of the more prolific malware strains in recent years. Believed to be the successor of REvil, which has links to operators in Russia, it first was observed in the wild back in 2021, according to researchers. BlackCat…
-
NCSC Publishes Practical Security Guidance For SMBs
The UK’s National Cyber Security Centre has launched a new online security guide to help smaller organizations better manage risk Read More
-
Two Ivanti Zero-Days Actively Exploited in the Wild
Ivanti has released mitigation steps after reports of active exploitation of Connect Secure and Policy Secure vulnerabilities Read More
-
Twitter says, It’s not our fault the SEC’s account got hacked
The safety team at Twitter has responded to the high profile hack of the SEC Twitter account, which made headlines around the world. And what do they have to say? Well, in a nutshell – “it’s not our fault. They lost control of their mobile phone number and didn’t have 2FA enabled.” Read More
-
Smashing Security podcast #354: Chuck Norris and the fake CEO, artificial KYC, and an Airbnb scam
Chuck Norris gives a helping hand to a mysterious cryptocurrency CEO who may have separated investors from over a billion dollars, generative AI creates a nightmare for those wanting to Know Their Customer, and a determined journalist finally gets their revenge on a sneaky Airbnb scammer. All this and much more is discussed in the…
-
SEC’s Twitter account hacked to say Bitcoin ETFs approved. Politicians and lawyers demand investigation into security breach
The official Twitter account of the US Securities and Exchange Commission (SEC) was hacked yesterday, with scammers posting an unauthorised message to its 660,000+ followers. The false message – which has since been deleted – claimed that the SEC had approved the listing and trading of spot bitcoin ETFs, and caused the market price of…
-
Malware Takedowns Show Progress, But Fight Against Cybercrime Not Over
Law enforcement operations on cybercriminal infrastructure have proven efficient at hindering malware activity but are far from being a silver bullet, according to Recorded Future Read More
-
Jeffrey Epstein email scams rear their ugly head
Security researchers say that there has been a “resurgence” in email scams related to notorious sex offender Jeffrey Epstein. Read More
-
Cyber Insecurity and Misinformation Top WEF Global Risk List
Cyber-attacks and misinformation top WEF’s list of global risks, with cybercrime poised to exploit tech advancements and AI dominance raising concerns about vulnerability Read More
-
Only 4% of US States Fully Prepared for Cyber-Attacks Targeting Elections
The Arctic Wolf report found that 14.3% of officials believe their state is not prepared at all to deal with election-targeted cyber incidents, including phishing and disinformation campaigns Read More