-
YouTube Fraudsters Steal $1.7m in Crypto ‘Giveaway’
PRIVACY PRIVACY Scheme used footage from entrepreneurs and crypto enthusiasts Read More
-
Take LAPSUS$ teens seriously
PRIVACY PRIVACY The ransomware group LAPSUS$, now well-known as the hackers responsible for the recent Okta breach, has returned from what they refer to as a “vacation,” this time with a leak impacting Globant, a large software company based in Luxembourg. The group, who, according to media reports is largely comprised of teens in the…
-
Microsoft: Nearly All Russian State Actors Now Targeting Ukraine
PRIVACY PRIVACY Tech giant disrupts APT28 but warns of all-out cyber-offensive Read More
-
Global Supply Chain Attacks Surge 51% in H2 2021
PRIVACY PRIVACY Few are confident they could respond to quickly to a breach Read More
-
8 Ways to Know If Online Stores Are Safe and Legit
PRIVACY PRIVACY The explosion of e-commerce sites has changed how we shop today, providing access to millions of online stores with almost unlimited selections. Just as you would take basic precautions in a brick-and-mortar store — perhaps hiding your PIN number while paying and making sure the business is legitimate — you should also practice…
-
What is spear phishing? Examples, tactics, and techniques
PRIVACY PRIVACY Spear phishing definition Spear phishing is a targeted email attack purporting to be from a trusted sender. In spear phishing attacks, attackers often use information gleaned from research to put the recipient at ease. The ultimate aim is to either infect devices with malware by convincing the recipient to click a link or…
-
Actions Target Russian Govt. Botnet, Hydra Dark Market
PRIVACY PRIVACY The U.S. Federal Bureau of Investigation (FBI) says it has disrupted a giant botnet built and operated by a Russian government intelligence unit known for launching destructive cyberattacks against energy infrastructure in the United States and Ukraine. Separately, law enforcement agencies in the U.S. and Germany moved to decapitate “Hydra,” a billion-dollar Russian…
-
5 VMware products need patching against serious security vulnerabilities
PRIVACY PRIVACY VMware urges patching Workspace ONE Access and VMware products that include components of VMware Identity Manager. Read More
-
CIS Benchmarks April 2022 Update
PRIVACY PRIVACY The CIS Benchmarks development team has been hard at work preparing several brand new Benchmarks and updates for April 2022. Read More
-
VMware Patches Multiple Vulnerabilities in Workspace ONE, Identity and Lifecycle Manager and vRealize (VMSA-2022-0011)
PRIVACY PRIVACY VMware cautions organizations to patch or mitigate several serious vulnerabilities across multiple products. Background On April 6, VMware published an advisory (VMSA-2022-0011) addressing eight vulnerabilities across a number of VMware products: CVE Description CVSSv3 CVE-2022-22954 Server-side Template Injection Remote Code Execution Vulnerability 9.8 CVE-2022-22955 OAuth2 ACS Authentication Bypass Vulnerability 9.8 CVE-2022-22956 OAuth2 ACS…