Recent ransomware attacks have escalated, impacting organizations across the globe and leaving no sector untouched. A report from Trustwave SpiderLabs reveals a substantial uptick in attacks, particularly in the United States, where the financial sector, including banks and credit unions, has experienced an alarming concentration of incidents. This year alone…
23andMe has announced a settlement of $30 million to resolve a lawsuit linked to a significant data breach that has raised serious concerns within the tech community. The lawsuit was triggered by a data breach that exposed sensitive user information, impacting numerous individuals who had entrusted their genetic and health…
A new side-channel attack method has been uncovered, utilizing radio signals emitted from a device’s random access memory (RAM) to extract sensitive data, thereby posing significant risks to air-gapped networks. This technique, referred to as RAMBO—short for “Radiation of Air-gapped Memory Bus for Offense”—was developed by Dr. Mordechai Guri, the…
A recent report from Group-IB has drawn attention to the ongoing cyber campaign led by North Korea’s Lazarus Group, referred to as the “Eager Crypto Beavers” initiative. This group utilizes advanced strategies, including deceptive job postings and malicious video conferencing software, to spread malware effectively. The Lazarus Group, infamous for…
In a recent disclosure, the Feeld dating app has come under scrutiny due to significant vulnerabilities that have compromised the privacy of its users. Reports indicate that sensitive user data has become unexpectedly accessible, raising alarms about the app’s security protocols. As a platform designed to facilitate connections between individuals…
Ivanti has announced the release of critical software updates aimed at addressing numerous security vulnerabilities within its Endpoint Manager (EPM) software. Among these flaws, 10 have been classified as critical, posing significant risks that could potentially lead to remote code execution. The updates are particularly crucial for users of EPM…
New Surge in Malware Infections Linked to FakeBat Loader Cybersecurity experts have reported a notable increase in malware infections attributable to malvertising campaigns that deploy a loader known as FakeBat. This malicious software targets individuals seeking popular business applications, a strategy that appears to be opportunistically designed to ensnare unsuspecting…
The perception of cybersecurity threats often conjures images of shadowy figures hunched over screens, orchestrating complex attacks from afar. While external hackers are frequently in the spotlight, internal threats, including employees or contractors, pose a significant challenge. Surprisingly, individuals within your organization can be among the most considerable risk factors…
Microsoft Addresses Critical Vulnerabilities in September 2024 Patch Tuesday Update On Tuesday, September 10, 2024, Microsoft announced the identification of three significant security vulnerabilities affecting the Windows operating system, which are now under active exploitation. This disclosure was part of the company’s monthly Patch Tuesday update, highlighting the urgent need…
