Investigations Uncover CIA Hacking Tools Linked to Global Cyber Attacks Recent analyses have confirmed that the CIA hacking tools revealed by WikiLeaks have been deployed against a range of targets, specifically 40 governments and private organizations across 16 countries. This unsettling revelation comes from ongoing investigations into the documents leaked…
Nigeria Police Crack Down on High-Profile Internet Fraud Syndicate Authorities in Nigeria have apprehended three individuals connected to a sophisticated internet fraud operation, potentially linked to phishing attacks targeting major corporations, including the prominent RaccoonO365 phishing-as-a-service (PhaaS) scheme. The arrests were made by the Nigeria Police Force National Cybercrime Centre…
Governance & Risk Management, Identity & Access Management, Identity Governance & Administration Presented by CyberArk & Accenture 60 mins The evolving landscape of digital responsibility has seen privilege across networks extend to administrators, cloud controls, service accounts, automated workflows, and AI agents. As a result, this broadening scope has become…
Apple Inc. has recently released critical updates addressing a zero-day vulnerability identified in iOS and iPadOS that has reportedly been exploited in active cyberattacks. The flaw, tracked as CVE-2022-42827, pertains to an out-of-bounds write issue within the Kernel. This type of vulnerability can empower malicious applications to execute arbitrary code…
A prominent Russian hacker was apprehended in Barcelona over the weekend, reportedly for orchestrating a significant computer botnet rather than being linked to last year’s U.S. presidential election hacking as initially suggested by Russian media outlets. The suspect, Peter Yuryevich Levashov, a 32-year-old computer programmer, is believed to have managed…
Recently, Iran has emerged as a consistent threat in the realm of cybersecurity. Although its capabilities may not match those of countries like Russia or China, experts note that Iran excels at amplifying the impact of its operations. Jeff Greene, the former executive assistant director of cybersecurity at CISA, indicates…
The past week underscored a critical evolution in cyber threats, illustrating that attackers no longer require large-scale hacks to unleash significant damage. Instead, they are targeting essential tools that organizations rely on, including firewalls, browser extensions, and even smart devices. These seemingly minor vulnerabilities can become gateways to severe breaches.…
Topics of interest include 3rd Party Risk Management, Governance & Risk Management, and IT Risk Management. Presented by Optiv + CyberArk 60 Minutes With certificate lifetimes diminishing to as short as 47 days, traditional manual processes can no longer meet the demands of modern machine identity management. What was once…
A recently disclosed vulnerability in the SQLite database library raises significant concerns within the cybersecurity community. This high-severity flaw, tracked under the identifier CVE-2022-35737, dates back over two decades to a code update from October 2000, and it poses a risk that could allow attackers to crash or gain control…