NCSC Opens Cyber Resilience Audit Scheme to Applicants
The UK’s National Cyber Security Centre wants prospective auditors to check compliance with its Cyber Assessment Framework
Information Security Magazine
Unicoin Staff Locked Out of G-Suite in Mystery Attack
3 months ago
Employees at crypto firm Unicoin couldn’t access Google services for four days during a recent breach
US Bipartisan Committee Urges Investigation Into Chinese Wi-Fi Routers
3 months ago
Two Congressmen fear that the Chinese government might use TP-Link Wi-Fi routers to deploy hacking and espionage campaigns in the US
Microsoft Mandates MFA for All Azure Sign-Ins
3 months ago
Microsoft is mandating MFA for all Azure sign-ins, with customers given 60-day advance notices to start implementation
Florida-Based National Public Data Confirms Data Breach
3 months ago
The US data broker did not address the threat actor’s claim that the breach concerns 2.9 billion records
Geopolitical Tensions Drive Explosion in DDoS Attacks
3 months ago
Radware found that Web DDoS attacks rose by 265% in H1 2024, driven by hacktivist groups amid rising geopolitical tensions
Cyber-criminals Exploited Paris Olympics With Fake Domains
3 months ago
166 Olympics-related domains displayed signs of DNS abuse like keyword stuffing and typosquatting
Advanced ValleyRAT Campaign Hits Windows Users in China
3 months ago
Discovered by FortiGuard Labs, the ValleyRAT campaign targets Chinese Windows systems
Russia's FSB Behind Massive Phishing Espionage Campaign
3 months ago
Citizen Lab attributed the campaign to Coldriver, a notorious FSB subordinate team, and Coldwastrel, a new, Russian-aligned group
Another Record Year For Ransomware Beckons as Crypto Profits Hit $460m
3 months ago
Ransom payments in the first half of 2024 hit $460m, according to Chainalysis
Google Warns of Iranian Cyber-Attacks on Presidential Campaigns
3 months ago
Google has highlighted sophisticated spearphishing attacks by Iranian state actor APT42 targeting individuals associated with the US Presidential campaign
SolarWinds Urges Upgrade After Revealing Critical RCE Bug
3 months ago
SolarWinds has discovered and fixed a critical remote code execution vulnerability in Web Help Desk
New Phishing Attack Uses Sophisticated Infostealer Malware
3 months ago
The phishing attack uses infostealer malware to target saved passwords, credit cards & Bitcoin info
Manufacturing Firm Loses $60m in BEC Scam
3 months ago
Manufacturing firm Orion revealed it has lost $60m in a business email compromise (BEC) scam, which targeted a non-executive employee
Research Uncovers New Microsoft Outlook Vulnerability
3 months ago
CVE-2024-38173 is a medium severity RCE flaw in Microsoft Outlook, similar to CVE-2024-30103
High-Risk Cloud Exposures Surge Due to Rapid Service Growth
3 months ago
Firms are introducing 300 services monthly, contributing to 32% of high or critical cloud exposures
Critical Vulnerability Found in Microsoft’s AI Healthcare Chatbot
3 months 1 week ago
Tenable detailed two privilege escalation vulnerabilities in the Azure Health Bot Service, one of which has been rated critical
Cyber-Attack Spreads Phishing Scam Across Greater Manchester Areas
3 months 1 week ago
A cyber-attack has hit several boroughs across Greater Manchester, England, leaving thousands of residents vulnerable to a phishing scam
NCSC Calls on UK Firms to Join Mass Cyber-Deception Initiative
3 months 1 week ago
The UK’s National Cyber Security Centre wants to test the effectiveness of cyber-deception tactics
Microsoft Fixes Nine Zero-Days on Patch Tuesday
3 months 1 week ago
Microsoft’s August Patch Tuesday saw the tech giant address nine zero-day vulnerabilities
Checked
2 hours 28 minutes ago