-
New Facebook malware targets business accounts
PRIVACY PRIVACY Helsinki-based cybersecurity vendor WithSecure (formerly F-Secure Business) says it has discovered an operation, dubbed “DUCKTAIL,” that uses social media-based spear phishing attacks to gain access to Facebook Business accounts. The company said that it has “high confidence” that a Vietnamese threat actor is behind the attacks, which aim malicious messages at LinkedIn users…
-
Living off the Land: Threats Looming From Within
PRIVACY PRIVACY This blog post analyzes some common instances of living off the land abuse and how organizations can defend themselves accordingly. Read More
-
Phishers Targeted Financial Services Most During H1 2022
PRIVACY PRIVACY The report found Microsoft was the most impersonated brand overall Read More
-
Poor Training and Communications Hindering Cybersecurity Efforts
PRIVACY PRIVACY Over a third (36%) of employees consider security training boring Read More
-
Uber Settles 2016 Hacking Case With DoJ
PRIVACY PRIVACY The ride-sharing giant has agreed to help the DoJ prosecute its former chief security officer in exchange for escaping prosecution itself Read More
-
CrowdStrike enhances container visibility and threat hunting capabilities
PRIVACY PRIVACY Cloud-native security provider CrowdStrike has launched a cloud threat hunting service called Falcon Overwatch, while also adding greater container visibility capabilities to its Cloud Native Application Protection Platform (CNAPP). Falcon Overwatch includes agent and agentless threat hunting Falcon Overwatch is a standalone threat hunting service that uses CrowdStrike’s cloud-oriented indicators of attack to…
-
Testing times for AV-Test as Twitter account hijacked by NFT spammers
PRIVACY PRIVACY An unauthorised party has seized control of the @avtestorg Twitter account, nuked its profile picture and banner, replaced its name and description with a full-stop, and set about retweeting numerous messages about NFTs. Anti-virus testing organisation AV-Test appears to have done nothing wrong, so how was its account hacked? Read More
-
Apple’s Lockdown Mode
PRIVACY PRIVACY I haven’t written about Apple’s Lockdown Mode yet, mostly because I haven’t delved into the details. This is how Apple describes it: Lockdown Mode offers an extreme, optional level of security for the very few users who, because of who they are or what they do, may be personally targeted by some of…
-
The lifecycle of a software vulnerability
PRIVACY PRIVACY This is the second part of a three-blog series on startup security. Please check out part one too. The anatomy of a software vulnerability is a bit like mercury accumulation in seafood. Trace amounts of naturally occurring mercury in seawater is absorbed by algae and bioaccumulates up the food chain. Large fish at…
-
Global Malware Volumes Increase for First Time in Three Years
PRIVACY PRIVACY Ransomware dips worldwide but surges in Europe Read More