Emerging Threat Actor CeranaKeeper Targets Southeast Asia in Data Exfiltration Campaigns A novel cyber threat actor, dubbed CeranaKeeper, has been implicated in a series of data exfiltration attacks focused on Southeast Asian nations, according to Slovak cybersecurity firm ESET. The firm reported that campaigns aimed at governmental organizations in Thailand…
An analytical review of cyber claims trends from Allianz. Cyber claims have shown a notable rise over the past year, significantly fueled by an increase in incidents related to data and privacy breaches, as stated by Allianz Commercial in its latest annual report on the cyber risk outlook. The frequency…
Emerging Threat: SocGholish Malware Exploits BOINC for Malicious Activities The cybersecurity landscape has recently encountered a troubling update regarding the behavior of the JavaScript downloader malware known as SocGholish (also referred to as FakeUpdates), further exacerbating existing risks for businesses reliant on digital operations. This malware has evolved to deliver…
Palo Alto Networks has issued urgent hotfixes in response to a critical security vulnerability affecting its PAN-OS software that is currently being exploited in live environments. This vulnerability, identified as CVE-2024-3400, has received the highest severity rating with a CVSS score of 10.0. It involves a command injection flaw within…
In recent discussions on the handling of intimate images online, Kate Ruane, director of the Center for Democracy and Technology’s free expression project, highlighted the growing recognition among major technology platforms regarding the need for policies against nonconsensual distribution of intimate content. Yet, she emphasizes ambiguity in Telegram’s terms of…
A hacker operating under the alias USDoD has reportedly gathered and leaked 332 million email addresses from SOCRadar.io, a significant threat intelligence platform. This incident, which was later disseminated by another actor known as Dominatrix, poses serious security threats given the sensitive nature of the dataset. The breach was brought…
A data breach incident involving the UK-based transgender charity Mermaids has attracted significant attention after the Information Commissioner’s Office (ICO) issued a £25,000 fine. The breach occurred due to the charity’s internal email group, which was established several years ago with inadequate security settings, leading to the exposure of hundreds…
Cybersecurity Weekly Recap: Takedowns, DDoS Attacks, and Emerging Threats The realm of cybersecurity continues to evolve with alarming speed, as evidenced by the latest developments in the threat landscape. One significant topic this week is the prevalence of "pig butchering" scams, alongside impactful government interventions and a staggering array of…
Game Freak Confirms Data Breach: An Insider’s Look at the Security Incident In a recent announcement, Game Freak, the acclaimed video game development company known for its work on the Pokémon franchise, has confirmed that it has experienced a significant data breach. This security incident has raised concerns across the…
