CyberSecurity Insiders

DECEMBER 23, 2022

Privacy seems moot when your security solution flags every message on your platform and sends them to an IT security personnel for evaluation. An attacker will need to impersonate several communication platforms in order to gain trust from the target. This gives them ample time to observe and/or exfiltrate sensitive data.

Social Engineering 142

Social Engineering Phishing Risk Engineering 142

SC Magazine

APRIL 7, 2021

A pedestrian walks past a Slack logo outside its headquarters on December 1, 2020 in San Francisco, California. In a blog posted by Cisco Talos , the researchers said Slack and Discord offer an attractive option for hosting malicious content, exfiltrating sensitive information and facilitating malicious attacks.

InfoSec 71

InfoSec Risk Technology Malware 71

Security Affairs

MARCH 18, 2019

Slack announced today to launch encryption keys that will help businesses to protect their data. Slack announced today to launch encryption keys that will help businesses to protect their data. Slack announced today to launch encryption keys that will help businesses to protect their data. Is Slack safe to use?

Encryption 78

Encryption Risk Small Business Financial Services 78

Malwarebytes

SEPTEMBER 16, 2022

From what we have been able to find out so far, the attacker managed to compromise an employee’s access to the chat app Slack. Slack is a messaging system that's widely used by, and within, tech companies as an alternative to email.

Hacking 76

Hacking Data breaches Passwords Accountability 76

CyberSecurity Insiders

JUNE 19, 2023

Valence recognizes this complexity and has integrated generative AI into its Collaborative SaaS Security Remediation Platform. Valence doesn’t stop at identification; the platform prioritizes automation to address security issues.

Risk 126

Risk Cybersecurity 126

CyberSecurity Insiders

DECEMBER 6, 2022

When Rockstar Games was recently hacked , cybercriminals downloaded highly sensitive in-development game footage from the company’s Slack channel and posted it on YouTube. Cybercriminals also used Slack to infiltrate Uber around the same time. 3 – Supply chains will continue to be major targets.

Cybersecurity 129

Cybersecurity VPN Digital transformation Education 129

Dark Reading

APRIL 15, 2020

Researchers report how attackers could weaponize a feature in the Slack collaboration platform to access corporate data and messages.

Phishing 82

Phishing 82

Dark Reading

APRIL 15, 2020

Researchers report how attackers could weaponize a feature in the Slack collaboration platform to access corporate data and messages.

Phishing 102

Phishing 102

Malwarebytes

JANUARY 16, 2024

GitLab is an online DevOps platform that allows developers to collaborate on creating software. allows a user to abuse Slack/Mattermost integrations to execute slash commands as another user. GitLab has issued a warning about a critical vulnerability in GitLab Community Edition (CE) and Enterprise Edition (EE). before 16.5.6,

Accountability 105

Accountability Passwords Authentication Password Management 105

The Hacker News

OCTOBER 4, 2021

These unsecured

Cybersecurity 99

Cybersecurity 99

Schneier on Security

AUGUST 8, 2019

Electron is a cross-platform development system for many popular communications apps, including Skype, Slack, and WhatsApp. Security vulnerabilities in the update system allows someone to silently inject malicious code into applications.

Computers and Electronics 206

Computers and Electronics Encryption 206

Security Affairs

MARCH 8, 2019

Malware researchers from Trend Micro have spotted a new piece of malware dubbed SLUB that leverages GitHub and Slack for C&C communications. Malware researchers at Trend Micro have spotted a new backdoor dubbed SLUB that abuse GitHub and Slack for command and control (C&C) communications. Pierluigi Paganini.

Malware 89

Malware Advertising Antivirus Engineering 89

CyberSecurity Insiders

JUNE 15, 2021

Note 1- Microsoft Teams is a communication platform that is a part of the Microsoft 365 family of products and is being offered in line with other services like Slack, Zoom, and Google Meet.

Accountability 142

Accountability Engineering Cybersecurity 142

SecureWorld News

SEPTEMBER 14, 2023

These Teams-based phishing lures by threat actors are identified by the Teams platform as 'EXTERNAL' users if external access is enabled in the organization." The rising threat of comms platform attacks highlights the importance of a dynamic security behavior change training program that stresses fast detection and response.

Phishing 91

Phishing Ransomware Cybercrime Threat Detection 91

SecureWorld News

OCTOBER 19, 2023

HasMySecretLeaked is integrated into GitGuardian's secrets detection platform, alerting you if hardcoded secrets found in your repositories, Slack, Jira, etc. have leaked publicly.

Encryption 83

Encryption Passwords Cybersecurity 83

Security Affairs

JANUARY 8, 2023

rail and locomotive company Wabtec hit with Lockbit ransomware Synology fixes multiple critical vulnerabilities in its routers Canadian Copper Mountain Mining Corporation (CMMC) shut down the mill after a ransomware attack BitRAT campaign relies on stolen sensitive bank data as a lure Does Volvo Cars suffer a new data breach?

Ransomware 92

Ransomware Data breaches Malware Banking 92

Krebs on Security

NOVEMBER 21, 2020

Fraudsters redirected email and web traffic destined for several cryptocurrency trading platforms over the past week. 13, with an attack on cryptocurrency trading platform liquid.com. ” Skorjanc said NiceHash’s email service was redirected to privateemail.com , an email platform run by Namecheap Inc.

Cryptocurrency 363

Cryptocurrency VPN Scams Social Engineering 363

SecureWorld News

MARCH 17, 2022

Key takeaway #2: Collaborative platforms are at heightened risk for security breaches due to WFH. And while the major shift to remote working has forced us to collaborate in this way, let's not forget about the importance and the key role these collaborative platforms play in almost any organization.

InfoSec 68

InfoSec Social Engineering Phishing Cybercrime 68

Hot for Security

APRIL 14, 2021

Collaboration platforms used by employees have become a prime target for attackers seeking to take advantage of telework and the security risks this new paradigm entails, according to new research. The available collaboration platforms can fill that void, but they also come with security issues that can be difficult to mitigate.

Malware 69

Malware Social Engineering Engineering Risk 69

Security Affairs

OCTOBER 30, 2020

Threat actors behind the Operation Earth Kitsune used SLUB (for SLack and githUB) malware and two new backdoors tracked as dneSpy and agfSpy to exfiltrate data from the infected systems and for taking over them. The attacks were spotted by the researchers during the months of March, May, and September.

Advertising 135

Advertising Spyware Malware Internet 135

Krebs on Security

APRIL 4, 2023

“The high incidence of Google and Facebook is expected, as they are such widely used platforms,” Flashpoint noted in an analysis of Genesis Market, observing that all ten of the ten most expensive bots at the time included Coinbase credentials.

Marketing 332

Marketing Passwords Cybercrime Banking 332

Malwarebytes

AUGUST 23, 2022

With a patch management platform, however, MSPs can greatly simplify the patching process for their clients—and the benefits don’t end there. In this post, we break down six reasons MSPs need a patch management platform. Without a VPM platform, patching all of these assets would be a nightmare for MSPs.

Marketing 61

Marketing Data breaches Risk Cybersecurity 61

Security Affairs

SEPTEMBER 19, 2022

Threat actors allegedly compromised Rockstar Game’s Slack server and Confluence wiki and leaked Grand Theft Auto 6 gameplay videos and source code. The leaked videos are flooding social media platforms such as Twitter and Telegram despite copyright claims by Take 2 Interactive, the owner of Rockstar Games.

Hacking 93

Hacking Media Authentication Data breaches 93

CyberSecurity Insiders

DECEMBER 13, 2021

NASDAQ: NTCT), a leading provider of cybersecurity, service assurance, and business analytics solutions, today released new research that shows 93% of enterprise-level organizations have increased their use of unified communications and collaboration (UC&C) platforms since the onset of the COVID-19 pandemic.

Digital transformation 52

Digital transformation Marketing DDOS Business Services 52

Daniel Miessler

NOVEMBER 6, 2020

New IT platforms will require less configuration, have more security built in, will include continuous asset management, as well as continuous configuration monitoring. In short, better platforms, with better security controls, all monitored and managed with automation and AI. Think cloud security products, plus 15-years of advances.

InfoSec 255

InfoSec Insurance Artificial Intelligence Cybersecurity 255

CyberSecurity Insiders

NOVEMBER 13, 2022

From 10th of this month, most of the employees who were working from home could not login to their slack and official email accounts and when they contacted their senior management, they were formally shown the door, with no prior intimation. And from November 6th even the staff in other levels received the sacking letters via email.

Accountability 77

Accountability Media Internet Internet 77

Security Affairs

OCTOBER 5, 2021

Apache Airflow is an open-source workflow management platform used by many organizations worldwide for automating business and IT tasks. In the vulnerable Airflows, we see exposed credentials for popular platforms and services such as Slack, PayPal, AWS and more.” ” states the post published by Intezer.

Passwords 109

Passwords Manufacturing Risk Media 109

Security Boulevard

FEBRUARY 20, 2022

Attackers have always targeted online collaboration tools like Slack and Discord for malware distribution and phishing. Hackers are targeting Teams platform for sharing malicious trojan files at scale to infect unwitting users. Campaign overview.

Malware 98

Malware Encryption Security Awareness Phishing 98

Malwarebytes

DECEMBER 15, 2022

However, the leaks are said to have included archives containing source code associated with mobile device management (MDM) platforms for Uber, Uber Eats, and Teqtivity. In September , a purported teen hacker breached its network, compromised an employee's access, and gained access to its internal Slack chat app.

Data breaches 88

Data breaches CSO Backups Mobile 88

eSecurity Planet

DECEMBER 20, 2023

per year Tenable Tenable One, an exposure management platform Identifies assets using DNS records, IP addresses, and ASN, and provides over 180 metadata fields Tenable Attack Surface Management, Add-on for Splunk ISO/IEC 27001/27002 $5,290 – $15,076.50

Software 100

Software Risk Architecture Internet 100

Krebs on Security

AUGUST 19, 2020

“They’ll say ‘Hey, I’m new to the company, but you can check me out on LinkedIn’ or Microsoft Teams or Slack, or whatever platform the company uses for internal communications,” Allen said. And these bad actors know that, and they’re exploiting that policy very effectively.”

Phishing 353

Phishing VPN Social Engineering Media 353

IT Security Guru

SEPTEMBER 1, 2022

Since both IT leaders and employees agree that email is the business-essential as opposed to collaborative platforms such as Teams, Slack, or Workplace, the need to ensure it is safe is highly important.

Cybersecurity 100

Cybersecurity Risk Phishing Technology 100

Krebs on Security

SEPTEMBER 29, 2021

Some services also target other popular social media platforms or financial services, providing email phishing and SIM swapping capabilities.” From their analysis: “Those who pay for access can use the bot by entering commands similar to how bots are used on popular workforce collaboration tool Slack.

Passwords 311

Passwords Mobile Authentication Banking 311

Security Boulevard

NOVEMBER 16, 2022

Today, most software used for work are SaaS tools like Salesforce, Slack, Google Workspace, Microsoft 365, and the long tail of 1,000’s of SaaS platforms and niche SaaS tools. But, mobile devices (smartphones) are typically configured and owned by employees.In addition, the software tools that are used to work have changed.

Software 62

Software Risk Technology Mobile 62

The Last Watchdog

NOVEMBER 4, 2019

Meanwhile, younger workers take to leading-edge chat services, such as Slack or Microsoft Teams , like moths to a flame. A better platform I asked ZoBell if this pointed out a need for a better, or just plain different, technology; something to untangle the collection of siloed software corporations have plenty of already. Makes sense.

B2B 130

B2B Technology Software Media 130

Spinone

APRIL 1, 2020

Pricing Slack – Corporate Communication Tool Slack is one of the most broadly used virtual tools , not only by remote teams but by office folks as well. No wonder it is so beloved as a remote work tool – Slack is tend to be the perfect quintessence of a desktop email and a messenger. It has a 4.5 It has a 4.7

Backups 80

Backups Ransomware Software Mobile 80

Malwarebytes

MARCH 29, 2021

You can also find us on the Apple iTunes store , Spotify , and Google Podcasts , plus whatever preferred podcast platform you use. Other cybersecurity news: Hades ransomware has been linked to the Evil Corp cybercrime gang who uses it to evade sanctions.

VPN 76

VPN Internet Internet Manufacturing 76