Breaking (Cyber) News
Keep abreast of breaking cyber security news and evolution in the cyber threat landscape
The Hacker News
- North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job ScamsThreat actors affiliated with North Korea have been observed leveraging LinkedIn as a way to target developers as part of a fake job recruiting operation. These attacks employ coding tests as a common initial infection vector, Google-owned Mandiant said in a new report about threats faced by the Web3 sector. "After an initial chat conversation, […]
- FBI Cracks Down on Dark Web Marketplace Managed by Russian and Kazakh NationalsTwo men have been indicted in the U.S. for their alleged involvement in managing a dark web marketplace called WWH Club that specializes in the sale of sensitive personal and financial information. Alex Khodyrev, a 35-year-old Kazakhstan national, and Pavel Kublitskii, a 37-year-old Russian national, have been charged with conspiracy to commit access device fraud […]
- SonicWall Urges Users to Patch Critical Firewall Flaw Amid Possible ExploitationSonicWall has revealed that a recently patched critical security flaw impacting SonicOS may have come under active exploitation, making it essential that users apply the patches as soon as possible. The vulnerability, tracked as CVE-2024-40766, carries a CVSS score of 9.3 out of a maximum of 10. "An improper access control vulnerability has been identified […]
Two weeks on from Pavel Durov’s arrest, Telegram ramps up moderation of ‘illegal content’ | CSO Online
- Two weeks on from Pavel Durov’s arrest, Telegram ramps up moderation of ‘illegal content’Less than two weeks after Telegram founder and CEO Pavel Durov’s high-profile arrest by French police, the company has announced that it will start moderating “illegal content” in the platform’s private and group chats. Perhaps the word “announced” is overstating a change so subtle it took eagle-eyed journalists to notice the new wording in a […]
- New malicious MS Office macro clusters discoveredCISOs with IT environments running older versions of Microsoft Office must upgrade immediately or risk the suite being used to spread malware using an old trick. This warning comes from Cisco Systems’ Talos threat intelligence service, after it discovered several new documents created in Office that try to spread malware through Visual Basic macros. Threat […]
- Adobe evolves its risk management strategy with homegrown frameworkDigital business has transformed virtually everything for enterprises — and it has brought with it cybersecurity challenges perhaps unimaginable just a few years ago. “The Internet has become a much more integrated place — software products no longer operate autonomously but integrate with each other to solve problems in a holistic way,” says Maarten Van […]
darkreading
- Feds Warn on Russian Actors Targeting Critical InfrastructureIn the past, Putin's Unit 29155 has utilized malware like WhisperGate to target organizations, particularly those in Ukraine.
- CISA Flags ICS Bugs in Baxter, Mitsubishi ProductsThe vulnerabilities affect industrial control tech used across the healthcare and critical manufacturing sectors.
- Commercial Spyware Use Roars Back Despite SanctionsVendors of mercenary spyware tools used by nation-states to track citizens and enemies have gotten savvy about evading efforts to limit their use.
Sophos News
- Atomic macOS Stealer leads sensitive data theft on macOSSophos X-Ops explores the distribution and capabilities of the Atomic macOS Stealer (AMOS)
- The SEC’s 2023 final rules on cybersecurity disclosuresNew rules to inform investors about cybersecurity attacks on public companies.
- Sophos Firewall v21 early access is now availableEnjoy exciting enhancements and top-requested features.