Thu.Feb 23, 2023

article thumbnail

Cyberwar Lessons from the War in Ukraine

Schneier on Security

The Aspen Institute has published a good analysis of the successes, failures, and absences of cyberattacks as part of the current war in Ukraine: “ The Cyber Defense Assistance Imperative ­ Lessons from Ukraine.” Its conclusion: Cyber defense assistance in Ukraine is working. The Ukrainian government and Ukrainian critical infrastructure organizations have better defended themselves and achieved higher levels of resiliency due to the efforts of CDAC and many others.

article thumbnail

Report: Stress will drive a quarter of cyber defenders out the door

Tech Republic Security

There are too few cybersecurity experts to fill jobs, but a new study sees the crunch increasing through 2025 as cybersecurity experts head for the hills. The post Report: Stress will drive a quarter of cyber defenders out the door appeared first on TechRepublic.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

How to Create a GDPR Data Protection Policy

Security Boulevard

In this blog, we will discuss what GDPR compliance entails and provide tips on how to create an effective GDPR data protection policy. The post How to Create a GDPR Data Protection Policy appeared first on Scytale. The post How to Create a GDPR Data Protection Policy appeared first on Security Boulevard.

Risk 145
article thumbnail

Investigating the PlugX Trojan Disguised as a Legitimate Windows Debugger Tool

Trend Micro

Trend Micro’s Managed Extended Detection and Response (MxDR) team discovered that a file called x32dbg.exe was used to sideload a malicious DLL we identified as a variant of PlugX.

Malware 145
article thumbnail

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

Speaker: Erroll Amacker

Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.

article thumbnail

Fake ChatGPT apps spread Windows and Android malware

Graham Cluley

Malicious hackers are taking advantage of people searching the internet for free access to ChatGPT in order to direct them to malware and phishing sites. Read more in my article on the Hot for Security blog.

Malware 141
article thumbnail

WinorDLL64: A backdoor from the vast Lazarus arsenal?

We Live Security

The targeted region, and overlap in behavior and code, suggest the tool is used by the infamous North Korea-aligned APT group The post WinorDLL64: A backdoor from the vast Lazarus arsenal?

131
131

LifeWorks

More Trending

article thumbnail

Microsoft urges Exchange admins to remove some antivirus exclusions

Bleeping Computer

Microsoft says some antivirus exclusions previously recommended for Exchange servers should be removed to boost their security. [.

Antivirus 128
article thumbnail

A Deep Dive into the Evolution of Ransomware Part 2

Trend Micro

This 3-part blog series takes an in-depth look at the evolution of ransomware business models, from the early stages to current trends.

article thumbnail

S3 Ep123: Crypto company compromise kerfuffle [Audio + Text]

Naked Security

Latest episode - listen now! Top-notch advice for cybersecurity, both at work and at home.

article thumbnail

Companies urged to patch critical vulnerability in Fortinet FortiNAC

CSO Magazine

Proof-of-concept exploit code is now available for a critical vulnerability in Fortinet FortiNAC appliances and attackers have already started using it in the wild. Users are advised to patch their systems as soon as possible. FortiNAC is a zero-trust network access solution that can be deployed both as a hardware device or as a virtual machine appliance.

Internet 119
article thumbnail

Why Giant Content Libraries Do Nothing for Your Employees’ Cyber Resilience

Many cybersecurity awareness platforms offer massive content libraries, yet they fail to enhance employees’ cyber resilience. Without structured, engaging, and personalized training, employees struggle to retain and apply key cybersecurity principles. Phished.io explains why organizations should focus on interactive, scenario-based learning rather than overwhelming employees with excessive content.

article thumbnail

Honest K7 Antivirus Review: Affordable Antivirus Starting At $9 Per Year

SecureBlitz

Here, I will show you the K7 Antivirus review. Read on! An antivirus is an essential software you must have on your device. It will keep the device safe. But before installing any antivirus software, you must be sure it is reliable. In other words, you trust it. K7 Antivirus is one software many users […] The post Honest K7 Antivirus Review: Affordable Antivirus Starting At $9 Per Year appeared first on SecureBlitz Cybersecurity.

Antivirus 110
article thumbnail

Lazarus Group Likely Using New WinorDLL64 Backdoor to Exfiltrate Sensitive Data

The Hacker News

A new backdoor associated with a malware downloader named Wslink has been discovered, with the tool likely used by the notorious North Korea-aligned Lazarus Group, new findings reveal. The payload, dubbed WinorDLL64 by ESET, is a fully-featured implant that can exfiltrate, overwrite, and delete files; execute PowerShell commands; and obtain comprehensive information about the underlying machine.

Malware 108
article thumbnail

TELUS investigating leak of stolen source code, employee data

Bleeping Computer

Canada's second-largest telecom, TELUS is investigating a potential data breach after a threat actor shared samples online of what appears to be employee data. The threat actor subsequently shared screenshots apparently showing private source code repositories and payroll records held by the company. [.

article thumbnail

This Will Be the Year of the SBOM, for Better or for Worse

Dark Reading

Sharing attestations on software supply chain data that are formed into a policy will give us a framework to interpret risk and develop compliance directives.

Software 108
article thumbnail

Zero Trust Mandate: The Realities, Requirements and Roadmap

The DHS compliance audit clock is ticking on Zero Trust. Government agencies can no longer ignore or delay their Zero Trust initiatives. During this virtual panel discussion—featuring Kelly Fuller Gordon, Founder and CEO of RisX, Chris Wild, Zero Trust subject matter expert at Zermount, Inc., and Principal of Cybersecurity Practice at Eliassen Group, Trey Gannon—you’ll gain a detailed understanding of the Federal Zero Trust mandate, its requirements, milestones, and deadlines.

article thumbnail

Fruit giant Dole suffers ransomware attack impacting operations

Bleeping Computer

Dole Food Company, one of the world's largest producers and distributors of fresh fruit and vegetables, has announced that it is dealing with a ransomware attack that impacted its operations. [.

article thumbnail

Pirated Final Cut Pro for macOS Offers Stealth Malware Delivery

Dark Reading

The number of people who have made the weaponized software available for sharing via torrent suggests that many unsuspecting victims may have downloaded the XMRig coin miner.

Malware 107
article thumbnail

What to do if you suspect your personal mobile has been hacked

BH Consulting

Have you given much thought to how secure your smartphone is? There are plenty of resources to help you with responding to a suspected compromised desktop PC or laptop. But what happens if you think your mobile has been breached? How would you know? What do you do? In this blog, we’ll look at how you can minimise the impact of your personal mobile being compromised.

Mobile 105
article thumbnail

Hackers Using Trojanized macOS Apps to Deploy Evasive Cryptocurrency Mining Malware

The Hacker News

Trojanized versions of legitimate applications are being used to deploy evasive cryptocurrency mining malware on macOS systems. Jamf Threat Labs, which made the discovery, said the XMRig coin miner was executed as Final Cut Pro, a video editing software from Apple, which contained an unauthorized modification. "This malware makes use of the Invisible Internet Project (i2p) [.

article thumbnail

Next-Level Fraud Prevention: Strategies for Today’s Threat Landscape

Speaker: Sierre Lindgren

Fraud is a battle that every organization must face – it’s no longer a question of “if” but “when.” Every organization is a potential target for fraud, and the finance department is often the bullseye. From cleverly disguised emails to fraudulent payment requests, the tactics of cybercriminals are advancing rapidly. Drawing insights from real-world cases and industry expertise, we’ll explore the vulnerabilities in your processes and how to fortify them effectively.

article thumbnail

The Most Important Factors to Consider When Choosing a Reliable SCA Tool

SecureBlitz

In this post, I will show you the most important factors to consider when choosing a reliable SCA tool… Software composition analysis, or SCA for short, is a term that you will hear more and more frequently, whether you work as a developer or a security engineer. assuming, of course, that you haven’t already. The […] The post The Most Important Factors to Consider When Choosing a Reliable SCA Tool appeared first on SecureBlitz Cybersecurity.

article thumbnail

Transmission of sensitive data policy

Tech Republic Security

Data in transit means data is at risk if the proper precautions aren’t followed. Data stored inside a securely monitored environment is much less likely to fall into the wrong hands than data exchanged between people and systems. With this in mind, it is essential for company personnel to adhere to firm and clear guidelines. The post Transmission of sensitive data policy appeared first on TechRepublic.

Risk 104
article thumbnail

2022 Review: Trend Transforms to SaaS Cybersecurity

Trend Micro

Transformation to a SaaS-based cybersecurity vendor

article thumbnail

Stress pushing CISOs out the door

CSO Magazine

Nearly half of CISOs will change jobs by 2025 due to stress caused by the risk of being breached while trying to retain staff, according to the Gartner report, Predicts 2023: Cybersecurity Industry Focuses on the Human Deal. The research firm found that the stressors of the cybersecurity world make the job of a cybersecurity professional unsustainable.

CISO 100
article thumbnail

Prevent Data Breaches With Zero-Trust Enterprise Password Management

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

article thumbnail

That ticking noise is your end users’ laptops

Graham Cluley

Graham Cluley Security News is sponsored this week by the folks at Kolide. Thanks to the great team there for their support! Here’s an uncomfortable fact: at most companies, employees can download sensitive company data onto any device, keep it there forever, and never even know that they’re doing something wrong.

100
100
article thumbnail

You Can’t Trust App Developers’ Privacy Claims on Google Play

WIRED Threat Level

Mozilla researchers found that apps often provide inaccurate data use disclosures, giving people “a false sense of security.

100
100
article thumbnail

Pirated Final Cut Pro infects your Mac with cryptomining malware

Bleeping Computer

Security researchers discovered a cryptomining operation targeting macOS with a malicious version of Final Cut Pro that remains largely undetected by antivirus engines. [.

article thumbnail

Batteries Are Ukraine’s Secret Weapon Against Russia

WIRED Threat Level

With Russia regularly knocking out Ukraine’s power grid, the country has turned to high-capacity batteries to keep it connected to the world—and itself.

99
article thumbnail

Optimizing The Modern Developer Experience with Coder

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

article thumbnail

Cris Thomas: Space Rogue, From L0pht Hacker to IBM Security Influencer

Dark Reading

Security Pro File: The old-school hacker traces a path from young hardware tinkerer to senior cybersecurity executive.

article thumbnail

Fortinet FortiNAC CVE-2022-39952 flaw exploited in the wild hours after the release of PoC exploit

Security Affairs

Threat actors are actively exploiting the Fortinet FortiNAC vulnerability CVE-2022-39952 a few hours after the publication of the PoC exploit code. This week, researchers at Horizon3 cybersecurity firm have released a proof-of-concept exploit for a critical-severity vulnerability, tracked as CVE-2022-39952 , in Fortinet’s FortiNAC network access control solution.

Hacking 98
article thumbnail

Researchers Warn: Cybercriminals Are Targeting Data Center Providers

Heimadal Security

There has been a surge in cyber-attacks against cloud service providers (CSPs) and managed service providers (MSPs). Resecurity recently alerted several data center organizations about a malicious cyber campaign targeting both the organizations and their clients. Threat actors orchestrated all of these attacks in order to gain unauthorized access to sensitive information belonging to government organizations […] The post Researchers Warn: Cybercriminals Are Targeting Data Center Providers

article thumbnail

Many cyber operations conducted by Russia are yet to be publicly disclosed, says Dutch intelligence

Security Affairs

Dutch intelligence revealed that many cyber operations attributed to Russia against Ukraine and NATO members have yet to be publicly disclosed. According to a joint report published by the Dutch General Intelligence and Security Service (AIVD), and the Military Intelligence and Security Service (MIVD), many cyber operations conducted by Russia-linked hackers against Ukraine and NATO members during the past year have yet to be publicly disclosed. “Before and during the war, Russian intellig

Media 98
article thumbnail

The Tumultuous IT Landscape Is Making Hiring More Difficult

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!