-
Android Banking Trojan SOVA Comes Back With New Features Including Ransomware
PRIVACY PRIVACY SOVA v4 features new capabilities and is reportedly targeting more than 200 mobile applications Read More
-
Years after claiming DogWalk wasn’t a vulnerability, Microsoft confirms flaw is being exploited and issues patch
PRIVACY PRIVACY This week Microsoft finally released a patch for a zero-day security flaw being exploited by hackers, that the company had claimed since 2019 was not actually a vulnerability. Read more in my article on the Hot for Security blog. Read More
-
What happened to the Lapsus$ hackers?
PRIVACY PRIVACY [Editor’s note: This article originally appeared on the CSO Germany website on July 29.] Claire Tills, senior research engineer at Tenable, describes the methods of the hacking group Lapsus$ as bold, illogical and poorly thought out. The criminals attacked renowned companies such as Microsoft, Samsung, Nvidia, Vodafone, Ubisoft and Okta. They stole data and sometimes used ransomware to extort their victims.…
-
#BHUSA: The Cyber Safety Review Board Outlines Log4j Lessons
PRIVACY PRIVACY The CSRB concluded that the initial disclosure on Log4j was done right, but there is still much to improve Read More
-
Hacking Starlink
PRIVACY PRIVACY This is the first—of many, I assume—hack of Starlink. Leveraging a string of vulnerabilities, attackers can access the Starlink system and run custom code on the devices. Read More
-
#BHUSA: Russia’s Wiper Attacks Against Ukraine Detailed
PRIVACY PRIVACY According to researchers, Russia is rolling out a growing list of wiper attacks against Ukraine Read More
-
#BHUSA: New Open Source Group Set to Streamline Threat Detection
PRIVACY PRIVACY New open source project set to reduce operational pain for SecOps analysts Read More
-
#BHUSA: Chris Krebs Explains How Cybersecurity Can Improve
PRIVACY PRIVACY Former US CISA Director Chris Krebs opens Black Hat USA detailing the state of cybersecurity today Read More
-
Cisco admits hack on IT network, links attacker to LAPSUS$ threat group
PRIVACY PRIVACY IT, networking, and cybersecurity solutions giant Cisco has admitted suffering a security incident targeting its corporate IT infrastructure in late May 2022. On August 10, the firm stated that an employee’s credentials were compromised after an attacker gained control of a personal Google account where credentials saved in the victim’s browser were being…
-
Ransomware Data Theft Epidemic Fuelling BEC Attacks
PRIVACY PRIVACY Accenture warns that stolen data is flooding the cybercrime underground Read More