Recent investigations have revealed that the threat actor responsible for the SolarWinds supply chain compromise has significantly broadened its malware arsenal. The adversary has employed new tools and techniques dating back to 2019, underscoring its capability to maintain persistent access over prolonged periods. This level of stealth demonstrates the sophistication…
Explore the nuances of Data Loss Prevention (DLP) and Data Security. Presented by Safetica 60 Minutes Join the Discussion In an era where data frequently transcends the boundaries of corporate infrastructures, the traditional model of Data Loss Prevention (DLP) fails to adequately protect sensitive information. Data flows across cloud platforms,…
Qantas Suffers Data Breach, Hackers Release Stolen Information on Dark Web The Australian government has reaffirmed its stance against negotiating with cybercriminals following a significant data breach affecting Qantas. This breach was perpetrated by a hacking group that has released sensitive customer data after their ransom deadline passed, showcasing a…
A critical security vulnerability has been identified in ProjectDiscovery’s Nuclei, a prominent open-source vulnerability scanner. This flaw poses a significant risk, as it may enable attackers to circumvent signature checks and execute harmful code within the system. The vulnerability, designated as CVE-2024-43405, has received a CVSS score of 7.4 out…
A recently reported zero-day vulnerability in the Zimbra open-source email platform is currently under active exploitation, primarily by a threat actor believed to be associated with China. This exploitation is part of a series of targeted spear-phishing campaigns that began in December 2021. The cyber operation, referred to as “EmailThief,”…
Brought to you by Blancco Technology 60 mins Organizations frequently operate under the misapprehension that methods such as encryption, physical destruction of devices, or adhering to outdated chain-of-custody processes adequately safeguard data at the end of an asset’s lifecycle. This misconception can lead to serious vulnerabilities as organizations prepare to…
In recent years, Software as a Service (SaaS) has solidified its position as an essential component of corporate IT infrastructure. Sectors such as healthcare, legal services, and finance have progressively embraced SaaS, while non-service industries like manufacturing and retail now utilize approximately 70% of their software in the cloud. This…
Qantas Cyber Attack: Implications of Recent Data Breach In a developing story, the notorious cyber gang known for its high-profile attacks has unveiled sensitive information in a data breach involving Qantas, Australia’s flagship airline. This incident has raised alarms about the integrity of sensitive corporate data amidst escalating global cybersecurity…
Moxa Issues Warning on Critical Vulnerabilities in Networking Devices Taiwan-based Moxa has recently raised alarms about significant security vulnerabilities affecting its range of cellular routers, secure routers, and network security appliances. These flaws pose serious risks, including potential privilege escalation and unauthorized command execution, which could compromise system integrity and…
