SecureWorld News

MARCH 31, 2025

A critical business function, not just a checkbox "World Backup Day acts as a crucial reminder that data loss is inevitable, encouraging us to take proactive steps to protect our information," says Emilio Sepulveda , Manager of Information Security at Deepwatch.

Backups 95

Backups Mobile Encryption CISO 95

The Last Watchdog

DECEMBER 18, 2024

CISA updated its Secure by Design guidance, and the EUs Cyber Resilience Act and NIS2 added new requirements. Proactive collaboration and cyber risk quantification are key to ensuring operational resilience and security. Overemphasizing compliance risks diverting resources from advanced security challenges.

Cybersecurity 130

Cybersecurity CISO Risk Government 130

The Last Watchdog

MAY 22, 2025

“For a company that helps other organizations identify and remediate security vulnerabilities, it’s essential that we maintain the highest standards of security in our own operations,” added Dowling.

Penetration Testing 100

Penetration Testing Media Risk Marketing 100

Malwarebytes

NOVEMBER 12, 2024

Words of warning The UK regulator, the Information Commissioner’s Office (ICO) has confirmed it has received a complaint about Atlas Biomed, saying in a statement: “People have the right to expect that organizations will handle their personal information securely and responsibly.”

Insurance 145

Insurance Accountability Risk Data breaches 145

eSecurity Planet

OCTOBER 18, 2024

Chief Information Security Officer (CISO) As Chief Information Security Officer, you’ve arrived at the C-Suite. There are only about 7,500 CISOs in the United States, compared to 70,000 chief information officers (CIOs), according to CISO Global. Salary: $124,424, Cyberseek.

Cybersecurity 125

Cybersecurity Artificial Intelligence Penetration Testing CISO 125

SecureWorld News

MARCH 13, 2025

Hardening endpoints to increase the cost of attack Trey Ford, Chief Information Security Officer at Bugcrowd, takes a pragmatic approach to AI-driven cyber threats. Criminals are going to criminaland they're going to use every tool and technique available to them," he said.

Malware 112

Malware Cybersecurity Cyber threats Threat Detection 112

The Last Watchdog

MAY 13, 2025

Related: How real people are really using GenAI Todays Chief Information Security Officers (CISOs) operate in a pressure cooker: responsible for protecting critical assets, expected to show up in the boardroom with fluency, yet rarely granted the authority, resources or organizational alignment to succeed.

CISO 130

CISO Risk Cybersecurity Government 130

SecureWorld News

MAY 12, 2025

It mandates that deployers of high-risk AI systems that process personal information to develop, implement, and maintain a comprehensive information security program that contains specific administrative, technical, and physical safeguards.

Retail 88

Retail Advertising Manufacturing Artificial Intelligence 88

Security Affairs

MAY 6, 2025

A new BYOI technique lets attackers bypass SentinelOne EDR, disable protection, and deploy Babuk ransomware by exploiting the agent upgrade process.

Ransomware 140

Ransomware Hacking Information Security 140

Security Affairs

MAY 18, 2025

Chinese “kill switches” found in Chinese-made power inverters in US solar farm equipment that could let Beijing remotely disable power grids in a conflict. Investigators found “kill switches” in Chinese-made power inverters in US solar farm equipment.

Energy and Utilities 145

Energy and Utilities Manufacturing Government Hacking 145

Security Affairs

DECEMBER 5, 2024

Security Operations Center (SOC) analyst burnout is a very real problem. SOC analysts, vital to cybersecurity, face burnout due to exhausting workloads, risking their well-being and the effectiveness of organizational defenses.

Artificial Intelligence 137

Artificial Intelligence Data collection Cybersecurity Risk 137

Security Affairs

MAY 25, 2025

Operation ENDGAME dismantled key ransomware infrastructure, taking down 300 servers, 650 domains, and seizing 21.2M From May 19 to 22, 2025, Operation ENDGAME, coordinated by Europol and Eurojust, disrupted global ransomware infrastructure. Law enforcement took down down 300 servers and 650 domains, and issuing 20 international arrest warrants.

Ransomware 127

Ransomware Cybercrime Malware Cryptocurrency 127

Security Affairs

APRIL 7, 2025

Cybercriminals exploit compromised accounts for EDR-as-a-Service (Emergency Data Requests – EDR), targeting major platforms According to a detailed analysis conducted by Meridian Group, an increasingly complex and structured phenomenon, commonly referred to as EDR-as-a-Service, is taking hold in the cybersecurity landscape.

Cybercrime 140

Cybercrime Social Engineering Accountability Government 140

Security Affairs

NOVEMBER 26, 2024

Banshee Stealer, a MacOS Malware-as-a-Service, shut down after its source code leaked online. The code is now available on GitHub. In August 2024, Russian hackers promoted BANSHEE Stealer, a macOS malware targeting x86_64 and ARM64, capable of stealing browser data, crypto wallets, and more.

Malware 144

Malware Cryptocurrency Encryption Passwords 144

Security Affairs

MAY 28, 2025

“Using an AI powered network traffic analysis tool we built called SIFT, GreyNoise has caught multiple anomalous network payloads with zero-effort that are attempting to disable TrendMicro security features in ASUS routers, then exploit vulnerabilities and novel tradecraft in ASUS AiProtection features on those routers.”

Firmware 135

Firmware Internet Internet Hacking 135

Security Affairs

OCTOBER 12, 2024

cyber agencies warn that Russia-linked group APT29 is targeting vulnerable Zimbra and JetBrains TeamCity servers on a large scale. cyber agencies warned.

Data collection 138

Data collection Authentication Hacking Government 138

Security Affairs

NOVEMBER 3, 2024

Quad7 botnet, also known as CovertNetwork-1658 or xlogin, was first spotted in the summer of 2023 by security researcher Gi7w0rm. Microsoft warns Chinese threat actors are using the Quad7 botnet to carry out password-spray attacks and steal credentials.

Passwords 135

Passwords Wireless VPN Accountability 135

Security Affairs

NOVEMBER 1, 2024

New LightSpy spyware targets iPhones supporting destructive features that can block compromised devices from booting up. In May 2024, ThreatFabric researchers discovered a macOS version of LightSpy spyware that has been active in the wild since at least January 2024.

Spyware 143

Spyware Media Malware Hacking 143

Security Affairs

JANUARY 16, 2025

Researchers discovered a 13,000-device MikroTik botnet exploiting DNS flaws to spoof 20,000 domains and deliver malware. Infoblox researchers discovered a botnet of 13,000 MikroTik devices that exploits DNS misconfigurations to bypass email protections, spoof approximately 20,000 domains, and deliver malware. zip” or “Tracking###.zip”

DNS 139

DNS Malware Firmware Authentication 139

Security Affairs

OCTOBER 22, 2024

Google’s Threat Analysis Group (TAG) researchers warn of a Samsung zero-day vulnerability that is exploited in the wild. Google’s Threat Analysis Group (TAG) warns of a Samsung zero-day vulnerability, tracked as CVE-2024-44068 (CVSS score of 8.1), which is exploited in the wild.

Firmware 145

Firmware Mobile Spyware Media 145

Security Affairs

OCTOBER 20, 2024

Technology firm F5 patches a high-severity elevation of privilege vulnerability in BIG-IP and a medium-severity flaw in BIG-IQ. F5 addressed two vulnerabilities in BIG-IP and BIG-IQ enterprise products, respectively tracked as CVE-2024-45844 and CVE-2024-47139.

Authentication 138

Authentication Hacking Technology Information Security 138

Security Affairs

OCTOBER 21, 2024

Cisco confirms that data published by IntelBroker on a cybercrime forum was taken from the company DevHub environment. Cisco confirms that the data posted by IntelBroker on a cybercrime forum was stolen from its DevHub environment.

Cybercrime 133

Cybercrime Data breaches Technology Banking 133

Security Affairs

NOVEMBER 24, 2024

seized the stolen credit card marketplace PopeyeTools and charged its operators, this is a major success against cybercrime.

Cybercrime 132

Cybercrime Cryptocurrency Banking Accountability 132

Security Affairs

OCTOBER 10, 2024

Jscrambler researchers found a skimming campaign using unique JavaScript obfuscation with accented characters to hide a skimmer named Mongolian Skimmer. Jscrambler researchers uncovered a skimming campaign using unique JavaScript obfuscation with accented characters to hide a skimmer dubbed ‘Mongolian Skimmer.’

Data collection 128

Data collection Engineering Malware Hacking 128

Security Affairs

APRIL 16, 2025

funded CVE program, a core cybersecurity tool for tracking vulnerabilities, faces funding expiry Wednesday, risking disruption to global security. The 25-year-old program has assigned over 274,000 CVE IDs for public security vulnerabilities. MITREs U.S.-funded

Government 133

Government Risk Cybersecurity Media 133

Security Affairs

OCTOBER 22, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds ScienceLogic SL1 flaw to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the ScienceLogic SL1 flaw CVE-2024-9537 (CVSS v4 score: 9.3) to its Known Exploited Vulnerabilities (KEV) catalog.

Encryption 124

Encryption Hacking Accountability Cybersecurity 124

Security Affairs

MARCH 8, 2025

The Akira ransomware gang exploited an unsecured webcam to bypass EDR and launch encryption attacks on a victim’s network. Cybersecurity researchers at S-RM team discovered a novel attack technique used by the Akira ransomware gang.

Ransomware 131

Ransomware IoT Encryption Passwords 131

Security Affairs

APRIL 26, 2025

Veritaco CEO Jeffrey Bowie faces charges for allegedly installing malware on hospital computers, violating Oklahoma’s Computer Crimes Act. Jeffrey Bowie, CEO of the cybersecurity firm Veritaco, is facing two counts of violating Oklahoma’s Computer Crimes Act for allegedly infecting employee computers at the Oklahoma City St.

Malware 145

Malware Cybersecurity Healthcare Media 145

Security Affairs

MARCH 21, 2025

Russian zero-day broker Operation Zero is looking for exploits for the popular messaging app Telegram, offering up to $4 million for them. Operation Zero, a Russian zero-day broker, is offering up to $4 million for Telegram exploits, the news was first reported by Tech Crunch. The Russian firm seeks up to $500K for one-click RCE, $1.5M

Government 144

Government Surveillance Mobile Hacking 144

Security Affairs

OCTOBER 11, 2024

OpenAI disrupted 20 cyber and influence operations in 2023, revealing Iran and China-linked actors used ChatGPT for planning ICS attacks. OpenAI announced the disruption of over 20 cyber and influence operations this year, involving Iranian and Chinese state-sponsored hackers.

Malware 138

Malware Social Engineering Engineering Hacking 138

Security Affairs

APRIL 16, 2025

Cheap Chinese Android phones ship with trojanized WhatsApp and Telegram clones hiding crypto clippers, active since June 2024. Since June 2024, Doctor Web researchers found cheap Android phones preloaded with fake WhatsApp and Telegram apps designed to steal crypto via clipping. These clippers swap copied wallet addresses with the attackers own.

Malware 130

Malware Manufacturing Mobile Spyware 130

Security Affairs

JANUARY 15, 2025

A previously unknown threat actor released config files and VPN passwords for Fortinet FortiGate devices on a popular cybercrime forum. A previously unknown threat actor named Belsen Group published configuration files and VPN passwords for over 15,000 Fortinet FortiGate appliances. “2025 will be a fortunate year for the world.

VPN 132

VPN Passwords Firewall Firmware 132

Security Affairs

MAY 5, 2025

MintsLoader is a malware loader delivering the GhostWeaver RAT via a multi-stage chain using obfuscated JavaScript and PowerShell. Recorded Future researchers observed MintsLoader delivering payloads like GhostWeaver via obfuscated scripts, evading detection with sandbox/VM checks, and uses DGA and HTTP C2.

Malware 128

Malware Phishing Threat Reports Encryption 128

Security Affairs

NOVEMBER 6, 2024

Taiwanese vendor Synology has addressed a critical security vulnerability, tracked as CVE-2024-10443, that impacts DiskStation and BeePhotos. Synology addressed a critical vulnerability in DiskStation and BeePhotos NAS devices that could lead to remote code execution.

Firmware 126

Firmware Manufacturing Hacking Media 126

Security Affairs

NOVEMBER 2, 2024

Hackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting to exploit two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957 , in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras, GretNoise researchers warn.

Firmware 123

Firmware Manufacturing IoT Healthcare 123

Security Affairs

MAY 24, 2025

“The cyber threat actor Silent Ransom Group (SRG), also known as Luna Moth, Chatty Spider, and UNC3753, is targeting law firms using information technology (IT) themed social engineering calls, and callback phishing emails, to gain remote access to systems or devices and steal sensitive data to extort the victims.”

Social Engineering 114

Social Engineering Antivirus Phishing Engineering 114

Security Affairs

DECEMBER 4, 2024

BT Group (formerly British Telecom)’s Conferencing division shut down some of its servers following a Black Basta ransomware attack. British multinational telecommunications holding company BT Group (formerly British Telecom) announced it has shut down some of its servers following a Black Basta ransomware attack.

Ransomware 127

Ransomware Telecommunications Healthcare Insurance 127