The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced on Thursday the inclusion of a significant security vulnerability associated with the Oracle WebLogic Server in its Known Exploited Vulnerabilities (KEV) catalog. This action follows compelling evidence that the flaw is actively being exploited in the wild, raising concerns for organizations…
Israeli Higher Education and Tech Sectors Targeted in Sophisticated Cyber Attacks Israeli higher education and technology institutions have faced a wave of cyber attacks that began in January 2023, with attackers aiming to deploy previously unknown wiper malware. These targeted breaches included attempted data theft and the installation of malware…
A recent analysis by Zimperium has revealed sophisticated evasion techniques utilized by a new variant of the FakeCall Trojan, which complicate the identification of its malicious code. Originally, researchers believed these apps might belong to a previously undiscovered malware family. However, further investigation revealed that the obfuscation involved concealing harmful…
Cyber Threat Landscape Intensifies: Notable Breaches Target Major Organizations in the UK In recent months, there has been a noticeable uptick in significant cybersecurity breaches targeting well-known organizations, indicative of the escalating cyber threat landscape. In September, Transport for London (TfL) experienced a major data breach that led to disruptions…
United States Cyber Defense Agency Launches National Election Support Center The Cybersecurity and Infrastructure Security Agency (CISA), the preeminent cybersecurity agency in the United States, has inaugurated an election operations war room designed to bolster defenses against potential threats as the nation approaches the 2024 presidential election deadline. With increasing…
In a concerning scenario highlighting the persistent vulnerabilities in password security, an employee at a reputable financial institution, identified as Tom, has unwittingly exposed himself to potential cyber threats. Tom utilizes a long, complex password that he has memorized; however, he has started employing the same password across various platforms,…
Star Health’s Communications Criticized for Emphasizing Data Leak Distribution Over Vulnerability Addressing In a recent cybersecurity incident, Star Health has come under fire for its handling of a significant data leak. The critiques have focused on the company’s communication strategy, which appears to prioritize information dissemination regarding the breach rather…
Cybersecurity experts have recently identified a shift in the tactics employed by the DarkGate malware-as-a-service (MaaS) operation, which is now utilizing AutoHotkey scripts instead of the previously favored AutoIt scripts. This adaptation, observed in version 6 of DarkGate released in March 2024 by the developer known as RastaFarEye, marks a…
ChatGPT: A Dual-Edged Sword in Cybersecurity As one of the fastest-growing consumer applications to date, ChatGPT has emerged as a powerful generative AI chatbot, capable of crafting human-like and contextually aware text responses. Its rapid popularity extends across a variety of applications, including content creation, programming, education, customer support, and…
