Cyber EspionageLinked to Chinese State Actors Targets Taiwan’s Institutions A cyber espionage campaign, likely orchestrated by a China-linked state-sponsored threat actor, has been reported to target various sectors in Taiwan, including government, academia, technology, and diplomatic organizations, from November 2023 to April 2024. This operation, monitored by Recorded Future’s Insikt…
Recent developments in the landscape of ransomware threats indicate a troubling pivot, as criminals who traditionally targeted Windows and Linux operating systems are now making inroads into Apple’s macOS environment. A survey conducted by SentinelOne highlights this alarming trend, unveiling the emergence of sophisticated ransomware that not only encrypts files…
Cybercrime, Fraud Management & Cybercrime, Incident & Breach Response Also: Payment Card Theft Trends, Internet Archive Update Anviksha More (AnvikshaMore) • October 24, 2024 Image: Shutterstock This week’s cybersecurity roundup reveals significant developments globally, highlighting the U.S. government’s actions to restrict bulk data transfers to China, alongside Visa’s warnings about…
Recent cybersecurity analyses have revealed a sophisticated attack method being leveraged by threat actors, specifically utilizing specially engineered Microsoft Management Console (MMC) saved console (MSC) files. This technique allows malicious entities to execute arbitrary code, thereby circumventing existing security measures. The discovery was detailed by Elastic Security Labs, which has…
As the date of the US presidential election, November 5, approaches, the Microsoft Threat Analysis Center (MTAC) has issued a stark warning regarding evolving foreign influence operations. Despite the perception of these activities as inevitable, MTAC stresses that the sustained efforts from adversaries in Russia, China, and Iran must not…
On Thursday, Microsoft disclosed that a group of Russian state-sponsored threat actors, linked to a cyber attack on its systems in late November 2023, has been targeting additional organizations. The company is now in the process of notifying affected entities. This announcement follows Hewlett Packard Enterprise’s revelation that it fell…
Federal prosecutors have charged Robert B. Westbrook, a UK national, for his alleged involvement in a “hack-to-trade” scheme that reportedly generated $3.75 million in illicit stock trades. This operation involved unauthorized access to the Office365 email accounts of various executives at publicly traded companies, allowing Westbrook to acquire confidential quarterly…
Eight vulnerabilities have recently been discovered in Microsoft applications tailored for macOS, potentially enabling attackers to exploit these weaknesses for elevated privileges and unauthorized access to sensitive user data. This circumvention directly undermines the operating system’s permissions framework, specifically the Transparency, Consent, and Control (TCC) model designed by Apple. Security…
Security Flaws Discovered in Rockwell Automation’s PanelView Plus Could Lead to Remote Attacks Recent disclosures have unveiled two critical security vulnerabilities in Rockwell Automation’s PanelView Plus systems, which could potentially allow remote, unauthenticated attackers to execute arbitrary code or trigger denial-of-service (DoS) conditions. This revelation, made by Microsoft security teams,…
