Google’s New OSV-Scanner Identifies Open Source Vulnerabilities
Google announced the release of OSV-Scanner on Tuesday, a scanner designed to provide quick access to vulnerability information for various open-source projects.
0 Comments4 Minutes
EDR and AV Products Can Be Weaponized Against Users, According to Researchers
Antivirus (AV) software, including Endpoint Detection and Response (EDR) products, have been found to have high-severity security flaws that may result in successful exploitation by data wipers. “This wiper runs with the permissions of an unprivileged user yet has the ability to wipe almost…
0 Comments6 Minutes
What is Threat Intelligence?
Threat intelligence is data that is collected, processed, and analyzed to understand a threat actor’s motivations, targets, and attack patterns. In the fight against threat actors, threat intelligence helps us to make quicker, more informed, data-backed security choices and shift our…
0 Comments11 Minutes
Apple Steps Up Security with Security Key Support for Apple ID and iMessage 2FA Verification
Security Key Support for Apple The giant will introduce support for utilizing physical Security Keys to secure your Apple ID and iCloud accounts better. There’s also a new function for iMessage, dubbed iMessage Contact Key Verification by the business. About this security initiative First…
0 Comments8 Minutes
Ransomware forces Rackspace to Stop Hosted Exchange Servers
Customers are struggling at Rackspace. The company is investigating a ransomware attack that led the business to shut down its Hosted Exchange environment. Rackspace’s Hosted Exchange service, which allows businesses to utilize Microsoft Exchange servers for email, began having issues on…
0 Comments6 Minutes
The New Enhanced Phishing Protection in Windows 11 Protects Your Passwords
Sometimes a convincing fake login page or app is all it takes to steal a user’s credentials. An unsuspecting user could easily provide an attacker with critical “input data” to an organization’s systems by simply entering the password in the wrong place. A phishing attack…
0 Comments7 Minutes
Deconstructing Sophisticated Phishing Attack Techniques
Several phishing techniques are used to infect networks or obtain personal information. But some attacks are almost always proven successful. Why? In this live podcast, we dive deep into deconstructing sophisticated phishing attacks. We will use real-life case studies to reverse engineer…
0 Comments1 Minute
Sophisticated Phishing Campaigns Using 42,000 Fake Domains by Chinese Hackers – Live Podcast
A financially driven gang in China is using the trust associated with well-known multinational businesses to organize a large-scale sophisticated phishing effort that dates back to 2019. Fangxiao, the threat actor labelled by Cyjax, is claimed to have registered over 42,000 impostor domains, with…
0 Comments3 Minutes
WhatsApp Data Breach Exposes 500 Million Accounts – One May Be Yours!
According to a post on a “well-known hacker community site,” about half a billion WhatsApp data have been compromised and are for sale. The article, which numerous sources have verified is likely accurate, promises to offer an up-to-date 2022 database of 487 million WhatsApp cell…
0 Comments5 Minutes
Is This Critical Mistake Hurting Your Cyber Security?
It has never been more crucial for businesses to have a mature Cyber Security posture. As enterprises continue to blend physical and remote work environments while using the cloud, their vulnerability to cybersecurity attacks grows. The average cost of a Cyber Security issue is also rising. In…
0 Comments7 Minutes