-
Smashing Security podcast #284: The Most Wanted Missing CryptoQueen
PRIVACY PRIVACY In this special edition of the “Smashing Security” podcast, computer security veterans Graham Cluley and Carole Theriault welcome back author and journalist Jamie Bartlett – host of “The Missing CryptoQueen” podcast. Jamie tells us about his new book, which shares more details about the disappearance of cryptocurrency scammer Dr Ruja Ignatova, and the…
-
Sophos unifies threat analysis and response units into X-Ops team
PRIVACY PRIVACY UK-based cybersecurity vendor Sophos announced today that it had reorganized its SophosLabs, Sophos SecOps and Sophos AI teams into an umbrella group called Sophos X-Ops, in order to provide a more unified response to advanced threats. The company said that while its security teams routinely share information among themselves, the creation of the…
-
Orca adds detection and response capabilities to its agentless cloud security solution
PRIVACY PRIVACY Orca Security has added cloud detection and response (CDR) capabilities to its cloud security platform, the company announced Tuesday. The new feature expands the platform’s ability to detect, investigate, and respond to in-progress attacks. “What we’re adding with the CDR capability is the ability to have full visibility for governance of the cloud…
-
Unpatched Flaws in Popular GPS Devices Allow Adversaries to Disrupt and Track Vehicles
PRIVACY PRIVACY BitSight described six ‘severe’ vulnerabilities in the MiCODUS MV720 GPS tracker Read More
-
Oracle July 2022 Critical Patch Update Addresses 188 CVEs
PRIVACY PRIVACY Oracle July 2022 Critical Patch Update Addresses 188 CVEs Oracle addresses 188 CVEs in its third quarterly update of 2022 with 349 patches, including 66 critical updates. Background On July 19, Oracle released its Critical Patch Update (CPU) for July 2022, the third quarterly update of the year. This CPU contains fixes for…
-
More malware-infested apps, downloaded millions of times, found in the Google Play store
PRIVACY PRIVACY Three million Android users may have lost money and had their devices infected by spyware, after the discovery that the official Google Play store has been distributing apps infected by a new family of malware. Read more in my article on the Tripwire State of Security blog. Read More
-
Clunk flush! Bexplus cryptocurrency exchange closes suddenly, giving its users only 24 hours to withdraw funds
PRIVACY PRIVACY Bexplus gave its users only 24 hours to withdraw their funds. Can you imagine a traditional financial institution treating its customers in such a slipshod fashion? Read More
-
Russia Creates Malware False-Flag App
PRIVACY PRIVACY The Russian hacking group Turla released an Android app that seems to aid Ukrainian hackers in their attacks against Russian networks. It’s actually malware, and provides information back to the Russians: The hackers pretended to be a “community of free people around the world who are fighting russia’s aggression”—much like the IT Army.…
-
Romanian Man Accused of Distributing Gozi Virus Extradited to US
PRIVACY PRIVACY First discovered in 2007, the Gozi virus was able to go undetected as it stole bank account information from computers Read More
-
Threat Integration: Lessons of Indicator & Incident Exchange
PRIVACY PRIVACY Threat integration of a shared IoC is difficult when the responsibility is distributed out to organizations to create defensive actions. Read More