The American Israel Public Affairs Committee (AIPAC) has reported a data breach stemming from a compromise of an external system managed by an unidentified third-party service provider. This breach was publicly disclosed in a notification to the Maine attorney general’s…
Palo Alto Networks has disclosed a significant security vulnerability affecting PAN-OS that is currently under active exploitation by cybercriminals. This flaw, designated as CVE-2024-3400 with a CVSS score of 10.0, is characterized as “intricate,” arising from the combination of two…
The cybersecurity landscape was profoundly impacted by the SolarWinds attack, a sophisticated breach facilitated by the infamous Sunburst malware. This incident highlighted the vulnerability of various sectors, as attackers exploited the far-reaching SolarWinds ecosystem to access critical source code and…
A hacking group, active in the Middle East since at least 2017, has been detected impersonating popular messaging applications like Telegram and Threema. This tactic is part of their strategy to deploy a new variant of malware targeting Android devices,…
Live Webinar: Navigating the Challenges of Multi-Cloud Environments In a rapidly evolving digital landscape, businesses are increasingly turning to multi-cloud environments to meet their diverse operational needs. However, this shift introduces several cybersecurity challenges that organizations must navigate to protect…
Cybersecurity Breach in Somalia Compromises E-Visa System, Key Official Dismissed MOGADISHU – In a significant cybersecurity incident, Somalia’s Security Minister, Abdullahi Sheikh Ismail Fartag, announced the dismissal of Mohamed Kasim, the deputy director of the Immigration and Citizenship Agency, following…
Recent research reveals that the conversion process from DOS to NT paths in Windows represents a potential exploitation vector for threat actors, enabling rootkit-like functionality that could hide and impersonate files, directories, and processes. According to Or Yair, a security…
On Thursday, the U.S. and U.K. governments officially attributed the supply chain breach of SolarWinds, an IT infrastructure management firm, to Russian government operatives from the Foreign Intelligence Service (SVR). This attribution was made with “high confidence,” acknowledging the complexity…
On Tuesday, cybersecurity giant FireEye confirmed it has suffered a significant breach, falling victim to a sophisticated state-sponsored attack that resulted in the theft of its Red Team penetration testing tools. These tools are integral for evaluating the security measures…
A New Era of Email Defense: The Synergy of KnowBe4 and Microsoft Defender for Office 365 As the frequency and complexity of cyberattacks continue to escalate, organizations are increasingly targeted by malicious actors seeking to exploit vulnerabilities in their systems.…
