Skip to content

Risk

Security and Technology news from various third party sources. All attribution remains the property of the original authors

203 Topics 203 Posts
  • 0 Votes
    1 Posts
    53 Views
    CerberusC

    The Ad, Now Deleted, Lured Users to a Phishing Website to Harvest Credentials
    Chinese security researcher Zhi has discovered a malware targeting Mac users. The malware, spread via a paid advertisement on search engine Baidu, is intended to harvest user credentials, he says. The advertisement has now been taken down.

    https://www.inforisktoday.co.uk/researcher-finds-malware-targeting-mac-users-via-baidu-ad-a-17616

  • 0 Votes
    1 Posts
    48 Views
    CerberusC

    ACSC: Vulnerability in Password Management Platform Had RCE Capability
    The Australian Cyber Security Center has issued a critical vulnerability alert in a Zoho Corp. password management service that could enable a threat actor to take control of the targeted host. The company has issued a security patch.

    https://www.inforisktoday.co.uk/australia-warns-critical-vulnerability-in-zoho-service-a-17617

  • Business Resilience Through ‘Zero Trust’

    1
    0 Votes
    1 Posts
    40 Views
    CerberusC

    CyberEdBoard Executive Member Maria Filomena Gibe Speaks on Panel at ISMG Virtual Cybersecurity Summit Asia: Financial Services
    CyberEdBoard member Maria Filomena Gibe speaks on a panel at ISMG Virtual Cybersecurity Summit Asia: Financial Services. The panel discusses: • How “zero trust” has made security a business enabler; • Building a multifactor authentication model based on zero trust; • Building a zero trust framework aligned with people, process and platforms.

    https://www.inforisktoday.co.uk/business-resilience-through-zero-trust-a-17603

  • 0 Votes
    1 Posts
    46 Views
    CerberusC

    Jerome Powell Says Discussion Paper Forthcoming as Fed Weighs CBDC
    The U.S. Federal Reserve said Wednesday it is continuing to evaluate the creation of a central bank digital currency, or CBDC, and that it intends to publish research on the subject shortly, according to Chair Jerome Powell.

    https://www.inforisktoday.co.uk/fed-chair-says-central-bank-evaluating-digital-currency-a-17604

  • 0 Votes
    1 Posts
    41 Views
    CerberusC

    CISA’s Jen Easterly and National Cyber Director Chris Inglis Support Updates
    As the Senate Homeland Security Committee considers new cyber rules and regulations for U.S. critical infrastructure, lawmakers heard testimony from CISA’s Jen Easterly and National Cyber Director Chris Inglis on Thursday in support of these measures, which include updates to FISMA.

    https://www.inforisktoday.co.uk/senators-debate-cyber-rules-for-us-critical-infrastructure-a-17605

  • 0 Votes
    1 Posts
    53 Views
    CerberusC

    Advisory Urges Multifactor Authentication, Network Segmentation, Patching and More
    The pace of Conti ransomware attacks has been increasing, with more than 400 organizations globally having fallen victim, warns a joint cybersecurity advisory from the U.S. Cybersecurity and Infrastructure Security Agency, FBI and National Security Agency, which details essential defenses.

    https://www.inforisktoday.co.uk/conti-ransomware-attacks-surging-us-government-warns-a-17599

  • Work from Everywhere, Securely

    1
    0 Votes
    1 Posts
    44 Views
    CerberusC

    CyberEdBoard Executive Member, Charmaine Valmonte, guest speaks at ISMG Virtual Cybersecurity Summit Asia: Financial Services
    Volmonte is VP, IT security and IT infrastructure, Aboitiz Group of Companies. She has more than 30 years of experience in the U.S. military and the private sector. Experienced in building cyber risk and IT security programs with highly effective teams focused on reducing the risks of security breaches, minimizing disruptions to preserve brand reputation and build client confidence.

    https://www.inforisktoday.co.uk/work-from-everywhere-securely-a-17601

  • 0 Votes
    1 Posts
    33 Views
    CerberusC

    CyberEdBoard Executive Member, Maria Filomena Gibe, guest speaks on panel at ISMG Virtual Cybersecurity Summit Asia: Financial Services
    The panel discusses: • How ‘zero trust’ has made security as a business enabler • Building a multi-factor authentication model based on ‘zero trust’ • Building ‘zero trust’ framework aligned with people, process and platforms

    https://www.inforisktoday.co.uk/business-resilience-through-zero-trust-navigating-through-people-process-a-17603

  • 0 Votes
    1 Posts
    48 Views
    CerberusC

    CyberEdBoard Executive Member, Dr. Deepak Kumar, guest speaks at the keynote session at ISMG Virtual Cybersecurity Summit Asia: Financial Services
    The session addresses how the banking and financial services organizations can take steps to invest for operational speed, drive value from new investments, enhance their training and cybersecurity collaboration, and work to sustain what they have.

    https://www.inforisktoday.co.uk/establishing-cybersecurity-in-era-resilience-a-17600

  • 0 Votes
    1 Posts
    41 Views
    CerberusC

    Researchers Say BulletProofLink Subscription Offers Many Services
    Microsoft Security on Tuesday issued a detailed report on a massive phishing-as-a-service operation named BulletProofLink that offered as a subscription all the tools needed to conduct a campaign. The gang remains operational.

    https://www.inforisktoday.co.uk/microsoft-analyzes-phishing-as-a-service-operation-a-17594

  • 0 Votes
    1 Posts
    65 Views
    CerberusC

    Russia’s Remote Electronic Voting System Fends Off 19 DDoS Attacks
    Russian cybersecurity firm Rostelecom-Solar reports that it prevented what it believes is the Mēris botnet from an attempted takeover of 45,000 new devices. The company’s president says it also stopped 19 distributed denial-of-service attacks targeting Russia’s remote electronic voting system.

    https://www.inforisktoday.co.uk/russians-prevent-meris-botnet-from-hijacking-45000-devices-a-17595

  • 0 Votes
    1 Posts
    49 Views
    CerberusC

    DHS’ Alejandro Mayorkas, FBI’s Christopher Wray Discuss Ransomware Surge
    U.S. FBI and Department of Homeland Security leaders fielded several cybersecurity questions from House lawmakers Wednesday, particularly around the surge in ransomware attacks, diplomatic efforts to curb ransomware’s financial model, and the nation-states that harbor cybercriminals.

    https://www.inforisktoday.co.uk/us-dhs-fbi-face-ransomware-questions-from-congress-a-17596

  • 0 Votes
    1 Posts
    35 Views
    CerberusC

    Researcher: Decade-Old Exposure Is a Privacy Concern
    Researcher Bob Diachenko has discovered an unsecured database containing personal information of 106 million foreign nationals who have visited Thailand in the past decade. The 200GB database, which has now been secured, has not been accessed by unauthorized personnel, Thai authorities say.

    https://www.inforisktoday.co.uk/researcher-finds-exposed-data-106-million-thai-visitors-a-17591

  • 0 Votes
    1 Posts
    44 Views
    CerberusC

    Cisco Talos: Turla Deploying Malware Against US, German and Afghan Victims
    A Russian-linked group known as Turla has been deploying a secondary backdoor against numerous targets to maintain persistence within compromised devices even after the primary malware has been discovered and removed, Cisco Talos report. Victims include U.S., German and Afghan organizations.

    https://www.inforisktoday.co.uk/russian-linked-group-using-secondary-backdoor-against-targets-a-17592

  • BlackMatter Knocks Marketron Off the Air

    1
    0 Votes
    1 Posts
    59 Views
    CerberusC

    Ransomware Gang’s Second Attack in 3 Days Affects 6,000 Broadcasters
    Marketron Broadcast Solutions was hit over the weekend by a ransomware attack launched by the BlackMatter gang, and the attack has taken down a number of the marketing firm’s products. Marketron is currently in talks with its attacker.

    https://www.inforisktoday.co.uk/blackmatter-knocks-marketron-off-air-a-17588

  • 0 Votes
    1 Posts
    48 Views
    CerberusC

    Researchers: Vulnerability Unmasks Users’ VPNs; Virgin Media: Risk Is ‘Very Low’
    Researchers have found a zero-day vulnerability in U.K. broadband and cable TV provider Virgin Media’s Super Hub 3 routers that enables an attacker to unmask IP addresses of VPN users. But A Virgin Media spokesperson says the risk of that happening is “very low.”

    https://www.inforisktoday.co.uk/zero-day-vulnerability-found-in-uk-virgin-media-routers-a-17589

  • 0 Votes
    1 Posts
    66 Views
    CerberusC

    ‘Suex’ Accused of Laundering Tens of Millions of Dollars for Cybercriminals
    The U.S. Department of the Treasury has blacklisted Russia-based cryptocurrency exchange Suex for allegedly laundering tens of millions of dollars for ransomware operators, scammers and darknet markets. It is the first such designation for a virtual currency exchange.

    https://www.inforisktoday.co.uk/us-treasury-blacklists-russia-based-crypto-exchange-a-17590

  • 0 Votes
    1 Posts
    49 Views
    CerberusC

    Christopher Wray Asked About Report That Bureau Held Key for 3 Weeks
    FBI Director Christopher Wray faced questions during a Senate hearing Tuesday concerning a published report that the bureau for almost three weeks withheld a decryption key that agents obtained from the ransomware gang that targeted software firm Kaseya.

    https://www.inforisktoday.co.uk/fbi-director-questioned-over-kaseya-decryption-key-a-17584

  • 0 Votes
    1 Posts
    42 Views
    CerberusC

    Put Your Automotive Code to the Test

    With automotive standard ISO 21434 just around the corner, this tutorial focuses on how it will form a key protective component against the cyber threats facing automation software developers.

    https://www.inforisktoday.co.uk/how-to-keep-cybercrimes-foot-off-pedal-isosae-21434-a-17585

  • 0 Votes
    1 Posts
    47 Views
    CerberusC

    One Incident Involved Foiled Attempt at Invoice and Wire Transfer Fraud
    Two eye care entities are among the latest healthcare provider organizations recently reporting hacking breaches each affecting tens of thousands of individuals. One of the incidents involved a foiled wire transfer fraud attempt.

    https://www.inforisktoday.co.uk/hacking-incidents-lead-to-2-big-eye-care-provider-breaches-a-17587