Security Affairs

JUNE 11, 2022

Iran-linked Lyceum APT group uses a new.NET-based DNS backdoor to target organizations in the energy and telecommunication sectors. The Iran-linked Lyceum APT group, aka Hexane or Spilrin, used a new.NET-based DNS backdoor in a campaign aimed at companies in the energy and telecommunication sectors, ZScaler researchers warn. The activity of the Lyceum APT group was first documented earlier in August 2019 by researchers at ICS security firm Dragos which tracked it as Hexane.

DNS 145

DNS Telecommunications Malware Phishing 145

The Hacker News

JUNE 11, 2022

A novel hardware attack dubbed PACMAN has been demonstrated against Apple's M1 processor chipsets, potentially arming a malicious actor with the capability to gain arbitrary code execution on macOS systems.

Authentication 135

Authentication 135

Bleeping Computer

JUNE 11, 2022

Researchers at the University of Hamburg in Germany have conducted a field experiment capturing hundreds of thousands of passersby's WiFi connection probe requests to determine the type of data transmitted without the device owners realizing it. [.].

121

121

Security Boulevard

JUNE 11, 2022

Our thanks to BSides Munich for publishing their Presenter’s BSides:Munich 2022 outstanding security videos on the organization’s’ YouTube channel. Permalink. The post BSides:Munich 2022 – Christian Bauer’s ‘Building A Security Program For SaaS Product Development’ appeared first on Security Boulevard.

Education 117

Education 117

Speaker: Erroll Amacker

Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.

Risk

WIRED Threat Level

JUNE 11, 2022

Plus: Russia rattles its cyber sword, a huge Facebook phishing operation is uncovered, feds take down the SSNDOB marketplace, and more.

Hacking 114

Hacking Phishing 114

Bleeping Computer

JUNE 11, 2022

Ransomware gangs are now targeting a recently patched and actively exploited remote code execution (RCE) vulnerability affecting Atlassian Confluence Server and Data Center instances for initial access to corporate networks. [.].

Ransomware 105

Ransomware Hacking 105

Security Boulevard

JUNE 11, 2022

Our thanks to BSides Munich for publishing their Presenter’s BSides:Munich 2022 outstanding security videos on the organization’s’ YouTube channel. Permalink. The post BSides:Munich 2022 – Hido Cohen’s And Arnold Osipov’s ‘From A Simple Log To Sophisticated Crypter’ appeared first on Security Boulevard.

Education 72

Education Cybersecurity 72

Security Boulevard

JUNE 11, 2022

Permalink. The post XKCD ‘Shuttle Skeleton’ appeared first on Security Boulevard.

69

69