Too Many Secrets: Attackers Pounce on Sensitive Data Sprawl – Dark Reading
Hardcoded credentials, access tokens, and API keys are ending up in the darnedest places, prompting a call for organizations to stop over-privileging secrets. – Read More
WhatsApp Secures Ban on NSO Group After 6-Year Legal Battle – Dark Reading
NSO Group must pay $4 million in damages and is permanently prohibited from reverse-engineering WhatsApp or creating new accounts after targeting users with spyware. – Read More
Canada Fines Cybercrime Friendly Cryptomus $176M – Krebs on Security
Financial regulators in Canada this week levied $176 million in fines against Cryptomus, a digital payments platform that supports dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services. The…
Iran-Linked MuddyWater Targets 100+ Organisations in Global Espionage Campaign – The Hacker News
The Iranian nation-state group known as MuddyWater has been attributed to a new campaign that has leveraged a compromised email account to distribute a backdoor called Phoenix to various organizations…
Ukraine Aid Groups Targeted Through Fake Zoom Meetings and Weaponized PDF Files – The Hacker News
Cybersecurity researchers have disclosed details of a coordinated spear-phishing campaign dubbed PhantomCaptcha targeting organizations associated with Ukraine’s war relief efforts to deliver a remote access trojan that uses a WebSocket…
Aiden Technologies Product Demo: Automating endpoint management – Legal IT Insider
In this product demonstration, Paul Wilson, director of customer success at Aiden Technologies walks us through Aiden’s technology stack and how their solution is designed to automate the entire lifecycle…
Russia Pivots, Cracks Down on Resident Hackers – Dark Reading
Thanks to improving cybersecurity and law enforcement action from the West, Russia’s government is reevaluating which cybercriminals it wants to give safe haven from the law. – Read More
MuddyWater Targets 100+ Gov Entities in MEA with Phoenix Backdoor – Dark Reading
The Iranian threat group is using a compromised mailbox accessed through NordVPN to send phishing emails that prompt recipients to enable macros. – Read More
Thomson Reuters enters partnership with DeepJudge – Legal IT Insider
Thomson Reuters today (22 October) announced a new partnership with AI search engine DeepJudge, which will enable law firms to combine CoCounsel research with their own work product. DeepJudge, founded…
Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft’s July Patch – The Hacker News
Threat actors with ties to China exploited the ToolShell security vulnerability in Microsoft SharePoint to breach a telecommunications company in the Middle East after it was publicly disclosed and patched…
Google ‘Careers’ scam lands job seekers in credential traps – CSO Online
Scammers have begun impersonating outreach from Google’s “Careers” division to trick targets into giving away their credentials. According to a Sublime Security finding, the attackers are sending messages that appear…
‘I am not a robot’: Russian hackers use fake CAPTCHA lures to deploy espionage tools – CSO Online
Russian state-backed hackers are using fake “I am not a robot” CAPTCHA pages to deliver new strains of espionage malware, according to Google Cloud’s Threat Intelligence Group (GTIG), marking a…
Bridging the Remediation Gap: Introducing Pentera Resolve – The Hacker News
From Detection to Resolution: Why the Gap Persists A critical vulnerability is identified in an exposed cloud asset. Within hours, five different tools alert you about it: your vulnerability scanner,…
Fake Nethereum NuGet Package Used Homoglyph Trick to Steal Crypto Wallet Keys – The Hacker News
Cybersecurity researchers have uncovered a new supply chain attack targeting the NuGet package manager with malicious typosquats of Nethereum, a popular Ethereum .NET integration platform, to steal victims’ cryptocurrency wallet…
Ransomware-Attacke auf Nickelhütte Aue – CSO Online
Cyberkriminelle haben die Büro-IT der Nickelhütte Aue lahmgelegt. Andrey_Popov – shutterstock.com Wie die Nickelhütte Aue auf ihrer Webseite mitteilt, haben Cyberkriminelle die Büro-IT angegriffen und Daten verschlüsselt. Infolgedessen komme es…