As the 2024 presidential election in the United States approaches, recent disclosures by WIRED highlight concerning evaluations from the US government regarding the integrity and security of the electoral process. Information obtained by the nonprofit organization Property of the People indicates that a report from the Department of Homeland Security…
Plastic Surgery Clinic Faces $500K HIPAA Fine Following Ransomware Attack A South Dakota-based plastic surgery clinic has recently found itself at the center of a discussion around cybersecurity and regulatory compliance after paying a ransom of $53,000 to regain access to critical data locked by a ransomware attack. Dr. James…
SolarMarker Malware Continues to Evolve, Targeting Multiple Sectors Recent investigations by Recorded Future have revealed the complex infrastructure behind the SolarMarker malware, a notorious information-stealing threat. The actors responsible for this malware have created a multi-tiered system designed to complicate law enforcement’s efforts to neutralize it. This infrastructure is divided…
The Ministry of Home Affairs (MHA) in India has formed a high-level committee tasked with investigating a troubling rise in digital arrest scams and cyber fraud incidents. This initiative underscores the central government’s ongoing commitment to combat cybercrime, particularly in light of the increasing prevalence of cybercriminals orchestrating “digital arrests”…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a significant security vulnerability affecting Apache Flink to its Known Exploited Vulnerabilities (KEV) catalog. This announcement, made on Thursday, highlights the potential risks associated with an open-source framework widely used for unified stream processing and batch processing, amid reports…
Emergence of ExelaStealer: A New Player in Cybercrime A newly identified information-stealing malware, dubbed ExelaStealer, has emerged in a saturated market already teeming with tools designed to exfiltrate sensitive information from compromised Windows systems. This evolving threat, flagged by FortiGuard Labs, showcases how cybercriminals continually adapt their tactics and tools…
Operation EMERALDWHALE has emerged as a significant cybersecurity threat, compromising over 15,000 cloud credentials by exploiting exposed Git and Laravel files. Attackers have been utilizing compromised Amazon S3 buckets to store the data, thereby heightening the risk of phishing attacks and breaches involving cloud accounts. The Sysdig Threat Research Team…
Governance & Risk Management, Incident & Breach Response, Insider Threat Everfox Acquires Yakabod to Enhance Cyber Incident Response and Insider Risk Management Michael Novinson (@MichaelNovinson) • November 1, 2024 Sean Berg, CEO, Everfox (Image: Everfox) Everfox has announced its acquisition of Yakabod, a company previously led by the former Chief…
In recent developments, a previously unidentified threat actor has been leveraging existing security vulnerabilities in Microsoft Exchange Server to deploy keylogger malware, with targets primarily located in Africa and the Middle East. This alarming trend was highlighted by Positive Technologies, a Russian cybersecurity firm, which reports over 30 victims, including…
