CISA and FBI Warn Against Buffer Overflow Vulnerabilities
US agencies have issued a new alert to eliminate buffer overflow vulnerabilities, urging memory-safe programming for secure-by-design software development
Information Security Magazine
Astaroth Phishing Kit Bypasses 2FA Using Reverse Proxy Techniques
1 month 2 weeks ago
Astaroth is an advanced phishing kit using real-time credential and session cookie capture to compromise Gmail, Yahoo and Office 365 accounts
Romance Baiting Losses Surge 40% Annually
1 month 2 weeks ago
Ahead of Valentine’s Day, Chainalysis figures reveal 40% increase in losses to pig butchering, or romance baiting, scams
Russian Seashell Blizzard Enlists Specialist Initial Access Subgroup to Expand Ops
1 month 2 weeks ago
Microsoft found that Russian state actor Seashell Blizzard has deployed an initial access subgroup to gain persistent access in a range of high-value global targets
EFF Leads Fight Against DOGE and Musk's Access to US Federal Workers' Data
1 month 2 weeks ago
The Electronic Frontier Foundation has requested a US federal court to block Elon Musk’s DOGE access to US Office of Personnel Management Data
North Korea Targets Crypto Devs Through NPM Packages
1 month 2 weeks ago
SecurityScorecard has uncovered a sophisticated campaign linked to North Korea’s Lazarus Group, distributing crypto-stealing malware
CHERI Security Hardware Program Essential to UK Security, Says Government
1 month 2 weeks ago
NCSC CTO Ollie Whitehouse discussed a UK government-backed project designed to secure underlying computer hardware, preventing most vulnerabilities from occurring
Romance Scams Cost Americans $697.3M Last Year
1 month 2 weeks ago
Romance scams cost Americans $697.3m in 2024, with crypto fraud schemes on the rise
Exclusive: Massive IoT Data Breach Exposes 2.7 Billion Records
1 month 2 weeks ago
Massive IoT data breach exposed 2.7 billion records including Wi-Fi credentials
Security Detection Tech Failing, Say Cyber Leaders in Regulated Industries
1 month 2 weeks ago
A new Everfox survey shows a growing consensus among regulated organizations in favor of a strategic shift away from detecting cyber threats to preventing them
Microsoft Fixes Another Two Actively Exploited Zero-Days
1 month 2 weeks ago
February Patch Tuesday sees Microsoft fix four zero-days, including two under active exploitation
US, UK and Australia Sanction Russian Bulletproof Hoster Zservers
1 month 2 weeks ago
The US and its allies have sanctioned Russian bulletproof hoster Zservers for abetting ransomware attacks
Alabama Hacker Admits Role in SEC X Account Breach
1 month 3 weeks ago
An Alabama man has admitted hacking into the US Security and Exchange Commission’s X account using SIM swap fraud to gain access
New Chinese Hacking Campaign Targets Manufacturing Firms to Steal IP
1 month 3 weeks ago
Chinese hackers are infiltrating the networks of suppliers of “sensitive” manufacturers, according to a Check Point report to be published in the coming weeks
DDoS Attack Volume and Magnitude Continues to Soar
1 month 3 weeks ago
Gcore reported a 56% year-over-year rise in DDoS attacks in H2 2024, highlighting a steep long-term growth tend for the attack technique
Ransomware Gangs Increasingly Prioritize Speed and Volume in Attacks
1 month 3 weeks ago
Ransomware groups are adopting agile techniques in a quantity-over-quality approach, according to a new report from Huntress
8Base Ransomware Site Seized, Phobos Suspects Arrested in Thailand
1 month 3 weeks ago
Four Europeans were arrested in Phuket, believed to be members of the Phobos ransomware group
Apple Mitigates “Extremely Sophisticated” Zero-Day Exploit
1 month 3 weeks ago
Apple has patched a zero-day vulnerability being exploited in targeted attacks
OpenAI Was Not Breached, Say Researchers
1 month 3 weeks ago
Kela researchers explain that infostealers are to blame for compromised OpenAI logins
BadIIS Malware Exploits IIS Servers for SEO Fraud
1 month 3 weeks ago
Trend Micro uncovers BadIIS malware exploiting IIS servers for SEO fraud and malicious redirects
Checked
20 minutes 42 seconds ago