-
Russian cyberspies hit NATO and EU organizations with new malware toolset
PRIVACY PRIVACY The Polish government warns that a cyberespionage group linked to Russia’s intelligence services is targeting diplomatic and foreign ministries from NATO and EU member states in an ongoing campaign that uses previously undocumented malware payloads. The group, known in the security industry as APT29, Cozy Bear, and NOBELIUM, is believed to be part…
-
Pentagon leak suspect Jack Teixeira arrested at gunpoint
PRIVACY PRIVACY The US Department of Justice has arrested a member of the US Air Force National Guard in connection with a high profile leak of classified Pentagon documents. Here are my thoughts… Read More
-
Over 20,000 Iowa Medicaid Members Affected By Data Breach
PRIVACY PRIVACY The breach was due to an attack on a contractor’s computer systems Read More
-
Pakistan-Aligned Hackers Disrupt Indian Education Sector
PRIVACY PRIVACY APT36 targeted institutions with malicious Office documents distributing Crimson RAT Read More
-
GuLoader Targets US Financial Firms With Tax-Themed Phishing Lures
PRIVACY PRIVACY Security researchers at eSentire shared the findings in an advisory published on Monday Read More
-
Cisco to offer Webex air-gapped cloud system for security, defense work
PRIVACY PRIVACY The upcoming cloud system will provide an added layer of network and data handling security for companies working on national security and defense projects and collaborating through the Webex app. Read More
-
How Private is WhatsApp Really? Staying Safer While Using the App.
PRIVACY PRIVACY It’s important to note that the only time your communications are encrypted is when they’re in transit. They’re otherwise plain as day to see or hear. Thus, anyone who can open your phone can tap the app and access them (provided you don’t lock your phone or the WhatsApp app itself). And like…
-
Microsoft patches vulnerability used in Nokoyawa ransomware attacks
PRIVACY PRIVACY Microsoft has released a patch for a Windows zero day vulnerability that has been exploited by cybercriminals in ransomware attacks. The vulnerability identified as CVE-2023-28252 is a privilege escalation flaw affecting the Windows Common Log File System (CLFS) driver. CLFS is a general purpose logging service that can be used by dedicated client…
-
Bypassing a Theft Threat Model
PRIVACY PRIVACY Thieves cut through the wall of a coffee shop to get to an Apple store, bypassing the alarms in the process. I wrote about this kind of thing in 2000, in Secrets and Lies (page 318): My favorite example is a band of California art thieves that would break into people’s houses by…
-
Cloud forensics – An introduction to investigating security incidents in AWS, Azure and GCP
PRIVACY PRIVACY The content of this post is solely the responsibility of the author. AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article. The cloud has revolutionized the way we do business. It has made it possible for us to store and access data…