Recent Surge in Cybersecurity Incidents Raises Alarms in India In recent months, a worrying series of cybersecurity incidents has highlighted vulnerabilities affecting millions of users in India. Among the most severe breaches are those involving Bharat Sanchar Nigam Limited (BSNL) and Star Health and Allied Insurance Co. Ltd., both of…
RedTail Malware Targets Palo Alto Networks Firewalls in Latest Cyber Attack Recently, cybersecurity analysts have identified an alarming development involving the RedTail cryptocurrency mining malware, which has integrated a newly disclosed vulnerability affecting Palo Alto Networks firewalls into its repertoire of exploits. This vulnerability, cataloged as CVE-2024-3400, has received a…
In a revealing report, UK cybersecurity firm Sophos has highlighted a prolonged and intricate battle with a group of hackers based in Chengdu, China. This confrontation, which has persisted for over five years, underscores a troubling reality in the cybersecurity landscape: devices that are designed to shield organizations from cyber…
Topics: Cybercrime, Fraud Management & Cybercrime, Governance & Risk Management Also: Recent Breaches at OnePoint Patient Care and French ISP Free Anviksha More (@AnvikshaMore) • October 31, 2024 Image: Shutterstock / ISMG Each week, ISMG compiles notable cybersecurity incidents and data breaches from across the globe. This week, S&P Global…
The Importance of Effective Offboarding Practices in Mitigating Insider Risks A recent analysis by Wing Security has revealed a concerning trend in corporate data security: approximately 63% of businesses might have former employees still authorized to access sensitive organizational data. This statistic underscores the pressing need for businesses to automate…
Illumio Advocates for Zero Trust Approach Amid Rising Cybersecurity Threats In the evolving landscape of cybersecurity, Illumio, a leading vendor specializing in zero trust segmentation, emphasizes the necessity of adopting an “assumed breach” mindset. This approach posits that organizations should act as if a breach has already occurred, regardless of…
Cloudflare Disrupts Phishing Campaign Targeting Ukrainian Entities On Thursday, Cloudflare announced that it has taken measures to disrupt an extensive phishing campaign that has been ongoing for a month. This operation is attributed to a Russia-aligned threat actor known as FlyingYeti, which has specifically targeted Ukraine amidst ongoing tensions in…
The cyber threat group known as Arid Viper, also referred to as APT-C-23 or Desert Falcon, has emerged as the perpetrator behind a recent Android spyware campaign aimed at Arabic-speaking individuals. This sophisticated operation involves the distribution of a fake dating application that is designed to infiltrate users’ devices, extracting…
Cybersecurity experts at Netcraft have identified a sophisticated phishing kit named “Xiū gǒu,” which has been active since September 2024 and is specifically targeting users in multiple countries, including the UK, US, Spain, Australia, and Japan. This malicious toolkit exploits a range of public and private sector services, such as…
