CrowdStrike ‘Updates’ Deliver Malware & More as Attacks Snowball – Dark Reading
Phishing and fraud surges during any national news story. This time though, the activity is both more voluminous and more targeted. – Read More
2024
Feds Warn of North Korean Cyberattacks on US Critical Infrastructure – Dark Reading
The Andariel group is targeting critical defense, aerospace, nuclear, and engineering companies for data theft, the FBI, NSA, and others said. – Read More
Microsoft’s Internet Explorer Gets Revived to Lure in Windows Victims – Dark Reading
Though IE was officially retired in June 2022, the vulnerability ramped up in January 2023 and has been going strong since. – Read More
Unexpected Lessons Learned From the CrowdStrike Event – Dark Reading
How your organization can leverage the disruptive CrowdStrike update to become more resilient. – Read More
Security Firm Accidentally Hires North Korean Hacker, Did Not KnowBe4 – Dark Reading
A software engineer hired for an internal IT AI team immediately became an insider threat by loading malware onto his workstation. – Read More
NCSC and partners issue warning over North Korean state-sponsored cyber campaign to steal military and nuclear secrets – NCSC News
Critical infrastructure organisations are strongly encouraged to stay vigilant to DPRK-sponsored cyber operations. – Read More
North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks – The Hacker News
A North Korea-linked threat actor known for its cyber espionage operations has gradually expanded into financially-motivated attacks that involve the deployment of ransomware, setting it apart from other nation-state hacking…
Is Our Water Safe to Drink? Securing Our Critical Infrastructure – Dark Reading
Our critical systems can be protected from looming threats by embracing a proactive approach, investing in education, and fostering collaboration between IT and OT professionals. – Read More
Docker re-fixes a critical authorization bypass vulnerability – CSO Online
Open source containerization platform Docker has urged users to patch a critical vulnerability affecting certain versions of the Docker Engine that allows privilege escalation using specially crafted API requests. Tagged…
Artificial Intelligence: ‘call for views’ on the cyber security of AI closes soon – NCSC Blog
Businesses, academia and international partners invited to respond to the UK government’s ‘call for views’ on the security of AI. – Read More
Tiger Eye announces strategic partnership with Novaplex – Legal IT Insider
iManage partner Tiger Eye has today (25th July) announced a strategic partnership with Novaplex, a UK-based provider of software solutions for document creation and automation. Novaplex has joined Tiger Eye’s…
6 Types of Applications Security Testing You Must Know About – The Hacker News
While the specifics for security testing vary for applications, web applications, and APIs, a holistic and proactive applications security strategy is essential for all three types. There are six core…
Meta Removes 63,000 Instagram Accounts Linked to Nigerian Sextortion Scams – The Hacker News
Meta Platforms on Wednesday said it took steps to remove around 63,000 Instagram accounts in Nigeria that were found to target people with financial sextortion scams. “These included a smaller…
Tiger Eye announces strategic partnership with Novaplex – Legal Futures
Tiger Eye, the full-service iManage Partner, has today, 25 July, announced a strategic partnership with Novaplex, a UK-based provider of software solutions for document creation and automation. The post Tiger…
Project 2025 could escalate US cybersecurity risks, endanger more Americans – CSO Online
The Heritage Foundation’s nearly 1,000-page Project 2025 report is what the conservative DC-based think tank hails as a game plan for Donald Trump to follow in running the US government…