-
Small Business Interest in Cyber-Hygiene is Waning
PRIVACY PRIVACY UK government survey finds they are prioritizing other things Read More
-
Global intelligence assessments: you are the target
PRIVACY PRIVACY The duty and responsibility of every intelligence service is to collect, analyze, and disseminate intelligence information to its country’s policymakers. In a prior piece, we discussed the US Office of the Director of National Intelligence (ODNI) global threat assessment in the cyber domain. What follows is the perspective from other countries’ intelligence services…
-
Smashing Security podcast #318: Tesla workers spy on drivers, and Operation Fox Hunt scams
PRIVACY PRIVACY Graham wonders what would happen if his bouncing buttocks were captured on camera by a Tesla employee, and we take a look at canny scams connected to China’s Operation Fox Hunt. All this and more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and…
-
Russian cyber spy group APT28 backdoors Cisco routers via SNMP
PRIVACY PRIVACY APT28, the hacking arm of Russia’s GRU military intelligence agency has been backdooring Cisco routers by exploiting a remote code execution vulnerability in the Cisco IOS implementation of the simple network management protocol (SNMP), according to a statement by Western security agencies. The malware deployed on compromised routers patches the router’s authentication mechanism…
-
BrandPost: The status quo for DNS security isn’t working
PRIVACY PRIVACY The Domain Name System (DNS) is often referred to as the phone book of the internet. DNS translates web addresses, which people use, into IP addresses, which machines use. But DNS was not designed with security in mind. And even though companies have invested incredible amounts of money into their security stack (and…
-
Iranian Nation-State Actor “Mint Sandstorm” Weaponizes N-day Flaws
PRIVACY PRIVACY Since 2023, Microsoft observed a decrease in the time required for the group to adopt public POCs Read More
-
#CYBERUK23: Threat Posed by ‘Irresponsible’ Use of Commercial Hacking Tools Increasing, NCSC Warns
PRIVACY PRIVACY Spyware and hackers-for-hire will almost certainly expand in the next five years, warned the British cybersecurity agency Read More
-
Raspberry Robin Adopts Unique Evasion Techniques
PRIVACY PRIVACY Security researchers at Check Point published a new advisory on Tuesday describing the new malware Read More
-
Nurse Call Systems, Infusion Pumps Riskiest Connected Medical Devices
PRIVACY PRIVACY The findings come from a new report by asset visibility and security company Armis Read More
-
Lacework adds vulnerability risk management to its flagship offering
PRIVACY PRIVACY Cloud security provider Lacework has added a new vulnerability risk management capability to its cloud-native application protection (CNAPP) offering. The SaaS capability will combine active package detection, attack path analysis, and in-house data on active exploits to generate personalized vulnerability risk scores. “Lacework takes a risk-based approach that goes beyond a common vulnerability…