‘Zeus’ Hacker Group Strikes Israeli Olympic Athletes in Data Leak – Dark Reading
Security presence has been heightened in Paris to ensure that the Games are safe, and Israeli athletes have been provided with even more protection. – Read More
Cyber
Critical Flaw in Acronis Cyber Infrastructure Exploited in the Wild – The Hacker News
Cybersecurity company Acronis is warning that a now-patched critical security flaw impacting its Cyber Infrastructure (ACI) product has been exploited in the wild. The vulnerability, tracked as CVE-2023-45249 (CVSS score:…
OAuth+XSS Attack Threatens Millions of Web Users With Account Takeover – Dark Reading
An attack flow that combines API flaws within “log in with” implementations and Web injection bugs could affect millions of websites. – Read More
7 Sessions Not to Miss at Black Hat USA 2024 – Dark Reading
This year’s conference will be a treasure trove of insights for cybersecurity professionals. – Read More
Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails – The Hacker News
An unknown threat actor has been linked to a massive scam campaign that exploited an email routing misconfiguration in email security vendor Proofpoint’s defenses to send millions of messages spoofing…
CrowdStrike was not the only security vendor vulnerable to hasty testing – CSO Online
The CrowdStrike gaffe that caused millions of Windows machines to crash with the infamous Blue Screen of Death (BSOD) could have happened to anyone considering how security updates are pushed…
Microsoft shifts focus to kernel-level security after CrowdStrike incident – CSO Online
The CrowdStrike incident that affected more than 8.5 million Windows PCs worldwide and forced users to face the “Blue Screen of Death,” made Microsoft sit down and revisit the resilience…
How Searchable Encryption Changes the Data Security Game – The Hacker News
Searchable Encryption has long been a mystery. An oxymoron. An unattainable dream of cybersecurity professionals everywhere. Organizations know they must encrypt their most valuable, sensitive data to prevent data theft…
NIST releases new tool to check AI models’ security – CSO Online
The US Department of Commerce’s National Institute of Standards and Technology (NIST) has released a new open source software package, Dioptra, that allows developers to determine what type of attacks…
‘Stargazer Goblin’ Creates 3,000 Fake GitHub Accounts for Malware Spread – The Hacker News
A threat actor known as Stargazer Goblin has set up a network of inauthentic GitHub accounts to fuel a Distribution-as-a-Service (DaaS) that propagates a variety of information-stealing malware and netting…
2024 Olympics put cybersecurity teams on high alert – CSO Online
As athletes from around the world vie for gold at the 2024 Olympics and Paralympics in Paris, cybercriminals are fine-tuning their own game plans to hack, attack, and exploit the…
CrowdStrike debacle underscores importance of having a plan – CSO Online
The dust is largely settled from the global blue-screen-of-death (BSD) CrowdStrike inflicted on over 8.5 million Windows devices by its flawed delivery of a channel file in its Falcon Sensor…
Gh0st RAT Trojan Targets Chinese Windows Users via Fake Chrome Site – The Hacker News
The remote access trojan known as Gh0st RAT has been observed being delivered by an “evasive dropper” called Gh0stGambit as part of a drive-by download scheme targeting Chinese-speaking Windows users.…
China-Backed Phishing Attack Targets India Postal System Users – Dark Reading
A large text-message phishing attack campaign attributed to the China-based Smishing Triad employs malicious iMessages. – Read More
PM names new cybersecurity minister – CSO Online
Australia’s Prime Minister Anthony Albanese has named a new minister for home affairs and for cybersecurity. Tony Burke will take on the responsibility along with immigration and multicultural affairs; arts;…