One of the digital underground’s most popular stores for peddling stolen credit card information began selling a batch of more than three million new card records this week. KrebsOnSecurity has …
In cyber security by Blog Writer
In cyber security by Blog Writer
In cyber security by Blog Writer
In cyber security by Blog Writer
In cyber security by Blog Writer
In cyber security by Blog Writer
In cyber security by Blog Writer
In cyber security by Blog Writer
In cyber security by Blog Writer
Lumos System Can Find Hidden Cameras and IoT Devices in Your Airbnb or Hotel Room - Interpol Arrests Leader of SilverTerrier Cybercrime Gang Behind BEC Attacks - [Template] Incident Response for Management Presentation - Researchers Find New Malware Attacks Targeting Russian Government Entities - Learn How Hackers Can Hijack Your Online Accounts Even Before You Create Them - How Secrets Lurking in Source Code Lead to Major Breaches - New Chaos Ransomware Builder Variant "Yashma" Discovered in the Wild - SIM-based Authentication Aims to Transform Device Binding Security to End Phishing - Popular PyPI Package 'ctx' and PHP Library 'phpass' Hijacked to Steal AWS Keys - New Zoom Flaws Could Let Attackers Hack Victims Just by Sending them a Message - Microsoft Warns of Web Skimmers Mimicking Google Analytics and Meta Pixel Code - Conti Ransomware Operation Shut Down After Splitting into Smaller Groups - Malware Analysis: Trickbot - New Unpatched Bug Could Let Attackers Steal Money from PayPal Users - Fronton: Russian IoT Botnet Designed to Run Social Media Disinformation Campaigns - Yes, Containers Are Terrific, But Watch the Security Risks - Chinese "Twisted Panda" Hackers Caught Spying on Russian Defense Institutes - Researchers Find Backdoor in School Management Plugin for WordPress - Researchers Uncover Rust Supply Chain Attack Targeting Cloud CI Pipelines - Cytrox's Predator Spyware Targeted Android Users with Zero-Day Exploits - Microsoft Warns Rise in XorDdos Malware Targeting Linux Devices - Cisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the Wild - New Bluetooth Hack Could Let Attackers Remotely Unlock Smart Locks and Cars - QNAP Urges Users to Update NAS Devices to Prevent Deadbolt Ransomware Attacks - Hackers Trick Users with Fake Windows 11 Downloads to Distribute Vidar Malware - Hackers Exploiting VMware Horizon to Target South Korea with NukeSped Backdoor - 7 Key Findings from the 2022 SaaS Security Survey Report - Web Trackers Caught Intercepting Online Forms Even Before Users Hit Submit - How to Protect Your Data When Ransomware Strikes - VMware Releases Patches for New Vulnerabilities Affecting Multiple Products - U.S. Warns Against North Korean Hackers Posing as IT Freelancers - [eBook] Your 90-Day MSSP Plan: How to Improve Margins and Scale-Up Service Delivery - Hackers Gain Fileless Persistence on Targeted SQL Servers Using a Built-in Utility - Researchers Expose Inner Workings of Billion-Dollar Wizard Spider Cybercrime Gang - Microsoft Warns of "Cryware" Info-Stealing Malware Targeting Crypto Wallets - Russian Conti Ransomware Gang Threatens to Overthrow New Costa Rican Government - Are You Investing in Securing Your Data in the Cloud? - UpdateAgent Returns with New macOS Malware Dropper Written in Swift - Over 200 Apps on Play Store Caught Spying on Android Users Using Facestealer - New Sysrv Botnet Variant Hijacking Windows and Linux with Crypto Miners - U.S. Charges Venezuelan Doctor for Using and Selling Thanos Ransomware - Fake Clickjacking Bug Bounty Reports: The Key Facts - Researchers Find Potential Way to Run Malware on iPhone Even When it's OFF - Watch Out! Hackers Begin Exploiting Recent Zyxel Firewalls RCE Vulnerability - Researchers Warn of "Eternity Project" Malware Service Being Sold via Telegram - Europe Agrees to Adopt New NIS2 Directive Aimed at Hardening Cybersecurity - Ukrainian Hacker Jailed for 4-Years in U.S. for Selling Access to Hacked Servers - New Saitama backdoor Targeted Official from Jordan's Foreign Ministry - Google Created 'Open Source Maintenance Crew' to Help Secure Critical Projects - SonicWall Releases Patches for New Flaws Affecting SSLVPN SMA1000 Devices - Get Lifetime Access to 2022 Cybersecurity Certification Prep Courses @ 95% Off - E.U. Proposes New Rules for Tech Companies to Combat Online Child Sexual Abuse - Iranian Hackers Leveraging BitLocker and DiskCryptor in Ransomware Attacks - Zyxel Releases Patch for Critical Firewall OS Command Injection Vulnerability - Everything We Learned From the LAPSUS$ Attacks - Android and Chrome Users Can Soon Generate Virtual Credit Cards to Protect Real Ones - Thousands of WordPress Sites Hacked to Redirect Visitors to Scam Sites - Government Agencies Warned of Increase in Cyberattacks Targeting MSPs - Bitter APT Hackers Add Bangladesh to Their List of Targets in South Asia - CISA Urges Organizations to Patch Actively Exploited F5 BIG-IP Vulnerability - Hackers Deploy IceApple Exploitation Framework on Hacked MS Exchange Servers - E.U. Blames Russia for Cyberattack on KA-SAT Satellite Network Operated by Viasat - Malicious NPM Packages Target German Companies in Supply Chain Attack - [White Paper] Social Engineering: What You Need to Know to Stay Resilient - Researchers Warn of Nerbian RAT Targeting Entities in Italy, Spain, and the U.K - 5 Benefits of Detection-as-Code - New REvil Samples Indicate Ransomware Gang is Back After Months of Inactivity - Microsoft Releases Fix for New Zero-Day with May 2022 Patch Tuesday Updates - U.S. Proposes $1 Million Fine on Colonial Pipeline for Safety Violations After Cyberattack - Microsoft Mitigates RCE Vulnerability Affecting Azure Synapse and Data Factory - Experts Detail Saintstealer and Prynt Stealer Info-Stealing Malware Families - Another Set of Joker Trojan-Laced Android Apps Resurfaces on Google Play Store - SHIELDS UP in bite sized chunks - Experts Sound Alarm on DCRat Backdoor Being Sold on Russian Hacking Forums - Critical Gems Takeover Bug Reported in RubyGems Package Manager - Ukrainian CERT Warns Citizens of a New Wave of Attacks Distributing Jester Malware - U.S. Offering $10 Million Reward for Information on Conti Ransomware Hackers - Researchers Develop RCE Exploit for the Latest F5 BIG-IP Vulnerability - U.S. Sanctions Cryptocurrency Mixer Blender for Helping North Korea Launder Millions - Hackers Using PrivateLoader PPI Service to Distribute New NetDooka Malware - Researchers Warn of 'Raspberry Robin' Malware Spreading via External Drives - QNAP Releases Firmware Patches for 9 New Flaws Affecting NAS Devices - This New Fileless Malware Hides Shellcode in Windows Event Logs - Google to Add Passwordless Authentication Support to Android and Chrome - NIST Releases Updated Cybersecurity Guidance for Managing Supply Chain Risks - Google Releases Android Update to Patch Actively Exploited Vulnerability - Experts Uncover New Espionage Attacks by Chinese 'Mustang Panda' Hackers - The Importance of Defining Secure Code - SEC Plans to Hire More Staff in Crypto Enforcement Unit to Fight Frauds - F5 Warns of a New Critical BIG-IP Remote Code Execution Vulnerability - Cisco Issues Patches for 3 New Flaws Affecting Enterprise NFVIS Software - Critical RCE Bug Reported in dotCMS Content Management Software - Chinese Hackers Caught Stealing Intellectual Property from Multinational Companies - Ukraine War Themed Files Become the Lure of Choice for a Wide Range of Hackers - Critical TLStorm 2.0 Bugs Affect Widely-Used Aruba and Avaya Network Switches - Experts Analyze Conti and Hive Ransomware Gangs' Chats With Their Victims - New Hacker Group Pursuing Corporate Employees Focused on Mergers and Acquisitions - Unpatched DNS Related Vulnerability Affects a Wide Range of IoT Devices - Chinese Hackers Caught Exploiting Popular Antivirus Products to Target Telecom Sector - AvosLocker Ransomware Variant Using New Trick to Disable Antivirus Protection - Which Hole to Plug First? Solving Chronic Vulnerability Patching Overload - Chinese "Override Panda" Hackers Resurface With New Espionage Attacks - GitHub Says Recent Attack Involving Stolen OAuth Tokens Was "Highly Targeted" - Russian Hackers Targeting Diplomatic Entities in Europe, Americas, and Asia - Google Releases First Developer Preview of Privacy Sandbox on Android 13 - Here's a New Tool That Scans Open-Source Repositories for Malicious Packages - Experts Detail 3 Hacking Teams Working Under the Umbrella of TA410 Group - Indian Govt Orders Organizations to Report Security Breaches Within 6 Hours to CERT-In - Microsoft Azure Vulnerability Exposes PostgreSQL Databases to Other Customers - Microsoft Documents Over 200 Cyberattacks by Russia Against Ukraine - New RIG Exploit Kit Campaign Infecting Victims' PCs with RedLine Stealer - Twitter's New Owner Elon Musk Wants DMs to be End-to-End Encrypted like Signal - Cybercriminals Using New Malware Loader 'Bumblebee' in the Wild - Everything you need to know to create a Vulnerability Assessment Report - U.S Cybersecurity Agency Lists 2021's Top 15 Most Exploited Software Vulnerabilities - [eBook] Your First 90 Days as MSSP: 10 Steps to Success - QNAP Advises to Mitigate Remote Hacking Flaws Until Patches are Available - CloudFlare Thwarts Record DDoS Attack Peaking at 15 Million Requests Per Second - U.S. Offers $10 Million Bounty for Information on 6 Russian Military Hackers - Google's New Safety Section Shows What Data Android Apps Collect About Users - Chinese Hackers Targeting Russian Military Personnel with Updated PlugX Malware - NPM Bug Allowed Attackers to Distribute Malware as Legitimate Packages - Gold Ulrick Hackers Still in Action Despite Massive Conti Ransomware Leak - Emotet Testing New Delivery Ideas After Microsoft Disables VBA Macros by Default - Microsoft Discovers New Privilege Escalation Flaws in Linux Operating System - North Korean Hackers Target Journalists with GOLDBACKDOOR Malware - Iranian Hackers Exploiting VMware RCE Bug to Deploy 'Code Impact' Backdoor - New BotenaGo Malware Variant Targeting Lilin Security Camera DVR Devices - Critical Bug in Everscale Wallet Could've Let Attackers Steal Cryptocurrencies - Researchers Report Critical RCE Vulnerability in Google's VirusTotal Platform - FBI Warns of BlackCat Ransomware That Breached Over 60 Organisations Worldwide - Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability - T-Mobile Admits Lapsus$ Hackers Gained Access to its Internal Tools and Source Code - QNAP Advises Users to Update NAS Firmware to Patch Apache HTTP Vulnerabilities - Watch Out! Cryptocurrency Miners Targeting Dockers, AWS and Alibaba Cloud - Researcher Releases PoC for Recent Java Cryptographic Vulnerability - Unpatched Bug in RainLoop Webmail Could Give Hackers Access to all Emails - Amazon's Hotpatch for Log4j Flaw Found Vulnerable to Privilege Escalation Bug - Hackers Sneak 'More_Eggs' Malware Into Resumes Sent to Corporate Hiring Managers - Cisco Releases Security Patches for TelePresence, RoomOS and Umbrella VA - Critical Chipset Bugs Open Millions of Android Devices to Remote Spying - Google Project Zero Detects a Record Number of Zero-Day Exploits in 2021 - Five Eyes Nations Warn of Russian Cyber Attacks Against Critical Infrastructure - [eBook] The Ultimate Security for Management Presentation Template - Researchers Detail Bug That Could Paralyze Snort Intrusion Detection System - Okta Says Security Breach by Lapsus$ Hackers Impacted Only Two of Its Customers - Experts Uncover Spyware Attacks Against Catalan Politicians and Activists - New Lenovo UEFI Firmware Vulnerabilities Affect Millions of Laptops - Hackers Exploiting Recently Reported Windows Print Spooler Vulnerability in the Wild - FBI, U.S. Treasury and CISA Warns of North Korean Hackers Targeting Blockchain Companies - Researchers Share In-Depth Analysis of PYSA Ransomware Group - Github Notifies Victims Whose Private Data Was Accessed Using OAuth Tokens - New SolarMarker Malware Variant Using Updated Techniques to Stay Under the Radar - Benchmarking Linux Security – Latest Research Findings - Critical RCE Flaw Reported in WordPress Elementor Website Builder Plugin - New Hacking Campaign Targeting Ukrainian Government with IcedID Malware - GitHub Says Hackers Breached Dozens of Organizations Using Stolen OAuth Access Tokens - Get Lifetime Access to This 60-Hour Java Programming Training Bundle @ 97% Discount - Lazarus Group Behind $540 Million Axie Infinity Crypto Hack and Attacks on Chemical Sector - As State-Backed Cyber Threats Grow, Here's How the World Is Reacting - Critical Auth Bypass Bug Reported in Cisco Wireless LAN Controller Software - Haskers Gang Gives Away ZingoStealer Malware to Other Cybercriminals for Free - JekyllBot:5 Flaws Let Attackers Take Control of Aethon TUG Hospital Robots - Ethereum Developer Jailed 63 Months for Helping North Korea Evade Sanctions - Google Releases Urgent Chrome Update to Patch Actively Exploited Zero-Day Flaw - Critical VMware Cloud Director Bug Could Let Hackers Takeover Entire Cloud Infrastructure - Critical VMware Workspace ONE Access Flaw Under Active Exploitation in the Wild - U.S. Warns of APT Hackers Targeting ICS/SCADA Systems with Specialized Malware - Russian Hackers Tried Attacking Ukraine's Power Grid with Industroyer2 Malware - Microsoft Exposes Evasive Chinese Tarrask Malware Attacking Windows Computers - Webinar: How The Right XDR Can Be a Game-Changer for Lean Security Teams - FBI, Europol Seize RaidForums Hacker Forum and Arrest Admin - Critical LFI Vulnerability Reported in Hashnode Blogging Platform - Cross-Regional Disaster Recovery with Elasticsearch - Microsoft Issues Patches for 2 Windows Zero-Days and 126 Other Vulnerabilities - Finding Attack Paths in Cloud Environments - NGINX Shares Mitigations for Zero-Day Bug Affecting LDAP Implementation - E.U. Officials Reportedly Targeted with Israeli Pegasus Spyware - Google Sues Scammer for Running 'Puppy Fraud Scheme' Website - Over 16,500 Sites Hacked to Distribute Malware via Web Redirect Service - Researchers warn of FFDroider and Lightning info-stealers targeting users in the wild - Microsoft's New Autopatch Feature to Help Businesses Keep Their Systems Up-to-Date - Ukrainian FIN7 Hacker Gets 5-Year Sentence in the United States - Researchers Connect BlackCat Ransomware with Past BlackMatter Malware Activity - Chinese Hacker Groups Continue to Target Indian Power Grid Assets - Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware - Hamas-linked Hackers Targeting High-Ranking Israelis Using 'Catfish' Lures - First Malware Targeting AWS Lambda Serverless Platform Discovered - New Octo Banking Trojan Spreading via Fake Apps on Google Play Store - Microsoft Obtains Court Order to Take Down Domains Used to Target Ukraine - SharkBot Banking Trojan Resurfaces On Google Play Store Hidden Behind 7 New Apps - Into the Breach: Breaking Down 3 SaaS App Cyber Attacks in 2022 - VMware Releases Critical Patches for New Vulnerabilities Affecting Multiple Products - Germany Shuts Down Russian Hydra Darknet Market; Seizes $25 Million in Bitcoin - Battling Cybersecurity Risk: How to Start Somewhere, Right Now - FIN7 Hackers Leveraging Password Reuse and Software Supply Chain Attacks - Hackers Breach Mailchimp Email Marketing Firm to Launch Crypto Phishing Scams - Is API Security on Your Radar? - Researchers Trace Widespread Espionage Attacks Back to Chinese 'Cicada' Hackers - CISA Warns of Active Exploitation of Critical Spring4Shell Vulnerability - Researchers Uncover New Android Spyware With C2 Server Linked to Turla Hackers - Experts Shed Light on BlackGuard Infostealer Malware Sold on Russian Hacking Forums - Brokenwire Hack Could Let Remote Attackers Disrupt Charging for Electric Vehicles - Multiple Hacker Groups Capitalizing on Ukraine Conflict for Distributing Malware - Beastmode DDoS Botnet Exploiting New TOTOLINK Bugs to Enslave More Routers - GitLab Releases Patch for Critical Vulnerability That Could Let Attackers Hijack Accounts - British Police Charge Two Teenagers Linked to LAPSUS$ Hacker Group - 15-Year-Old Bug in PEAR PHP Repository Could've Enabled Supply Chain Attacks - Results Overview: 2022 MITRE ATT&CK Evaluation – Wizard Spider and Sandworm Edition - Chinese Hackers Target VMware Horizon Servers with Log4Shell to Deploy Rootkit - Critical Bugs in Rockwell PLC Could Allow Hackers to Implant Malicious Code - Russian Wiper Malware Likely Behind Recent Cyberattack on Viasat KA-SAT Modems - Apple Issues Patches for 2 Actively Exploited Zero-Days in iPhone, iPad and Mac Devices - Zyxel Releases Patches for Critical Bug Affecting Business Firewall and VPN Devices - North Korean Hackers Distributing Trojanized DeFi Wallet Apps to Steal Victims' Crypto - Researchers Expose Mars Stealer Malware Campaign Using Google Ads to Spread - QNAP Warns of OpenSSL Infinite Loop Vulnerability Affecting NAS Devices - Unpatched Java Spring Framework 0-Day RCE Bug Threatens Enterprise Web Apps Security - Improve Your Hacking Skills with 9 Python Courses for Just $39 - Honda’s Keyless Access Bug Could Let Thieves Remotely Unlock and Start Vehicles - IT Firm Globant Confirms Breach after LAPSUS$ Leaks 70GB of Data - CISA Warns of Ongoing Cyber Attacks Targeting Internet-Connected UPS Devices - Critical Sophos Firewall RCE Vulnerability Under Active Exploitation - Privid: A Privacy-Preserving Surveillance Video Analytics System - New Hacking Campaign by Transparent Tribe Hackers Targeting Indian Officials - Critical SonicOS Vulnerability Affects SonicWall Firewall Appliances - A Large-Scale Supply Chain Attack Distributed Over 800 Malicious NPM Packages - Experts Detail Virtual Machine Used by Wslink Malware Loader for Obfuscation - New Malware Loader 'Verblecon' Infects Hacked PCs with Cryptocurrency Miners - New Report on Okta Hack Reveals the Entire Episode LAPSUS$ Attack - 'Purple Fox' Hackers Spotted Using New Variant of FatalRAT in Recent Malware Attacks - Of Cybercriminals and IP Addresses - Hackers Hijack Email Reply Chains on Unpatched Exchange Servers to Spread Malware - Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability - FCC Adds Kaspersky and Chinese Telecom Firms to National Security Threat List - 7 Suspected Members of LAPSUS$ Hacker Gang, Aged 16 to 21, Arrested in U.K. - U.S. Charges 4 Russian Govt. Employees Over Hacking Critical Infrastructure Worldwide - Google Issues Urgent Chrome Update to Patch Actively Exploited Zero-Day Vulnerability - Another Chinese Hacking Group Spotted Targeting Ukraine Amid Russia Invasion - Chinese APT Hackers Targeting Betting Companies in Southeast Asia - 23-Year-Old Russian Hacker Wanted by FBI for Running Marketplace of Stolen Logins - North Korean Hackers Exploited Chrome Zero-Day to Target Fintech, IT, and Media Firms - Experts Uncover Campaign Stealing Cryptocurrency from Android and iPhone Users - How to Build a Custom Malware Analysis Sandbox - VMware Issues Patches for Critical Flaws Affecting Carbon Black App Control - New Variant of Chinese Gimmick Malware Targeting macOS Users - Chinese 'Mustang Panda' Hackers Spotted Deploying New 'Hodur' Malware - LAPSUS$ Hackers Claim to Have Breached Microsoft and Authentication Firm Okta - Microsoft and Okta Confirm Breach by LAPSUS$ Extortion Group - New Dell BIOS Bugs Affect Millions of Inspiron, Vostro, XPS, Alienware Systems - U.S. Government Warns Companies of Potential Russian Cyber Attacks - Wazuh Offers XDR Functionality at a Price Enterprises Will Love — Free! - New Browser-in-the Browser (BITB) Attack Makes Phishing Nearly Undetectable - South Korean DarkHotel Hackers Targeted Luxury Hotels in Macau - 'CryptoRom' Crypto Scam Abusing iPhone Features to Target Mobile Users - New Backdoor Targets French Entities via Open-Source Package Installer - Google Uncovers 'Initial Access Broker' Working with Conti Ransomware Gang - Experts Find Some Affiliates of BlackMatter Now Spreading BlackCat Ransomware - Hackers Target Bank Networks with new Rootkit to Steal Money from ATM Machines - The Golden Hour of Incident Response - DirtyMoe Botnet Gains New Exploits in Wormable Module to Spread Rapidly - Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion - New Variant of Russian Cyclops Blink Botnet Targeting ASUS Routers - New Vulnerability in CRI-O Engine Lets Attackers Escape Kubernetes Containers - Ukraine Secret Service Arrests Hacker Helping Russian Invaders - TrickBot Malware Abusing MikroTik Routers as Proxies for Command-and-Control - New "B1txor20" Linux Botnet Uses DNS Tunnel and Exploits Log4J Flaw - German Government Warns Against Using Russia's Kaspersky Antivirus Software - Unpatched RCE Bug in dompdf Project Affects HTML to PDF Converters - FBI, CISA Warn of Russian Hackers Exploiting MFA and PrintNightmare Bug - New Infinite Loop Bug in OpenSSL Could Let Attackers Crash Remote Servers - Multiple Flaws Uncovered in ClickHouse OLAP Database System for Big Data - Build Your 2022 Cybersecurity Plan With This Free PPT Template - Facebook Hit With $18.6 Million GDPR Fine Over 12 Data Breaches in 2018 - Massive DDoS Attack Knocked Israeli Government Websites Offline - CaddyWiper: Yet Another Data Wiping Malware Targeting Ukrainian Networks - Nearly 34 Ransomware Variants Observed in Hundreds of Cyberattacks in Q4 2021 - Gaming Company Ubisoft Confirms It was Hacked, Resets Staff Passwords - 'Dirty Pipe' Linux Flaw Affects a Wide Range of QNAP NAS Devices - Researchers Find New Evidence Linking Kwampirs Malware to Shamoon APT Hackers - New Linux Bug in Netfilter Firewall Module Lets Attackers Gain Root Access - Russian Ransomware Gang Retool Custom Hacking Tools of Other APT Groups - Why Enterprise Threat Mitigation Requires Automated, Single-Purpose Tools - New Exploit Bypasses Existing Spectre-V2 Mitigations in Intel and Arm CPUs - Iranian Hackers Targeting Turkey and Arabian Peninsula in New Malware Campaign - Here's How to Find if WhatsApp Web Code on Your Browser Has Been Hacked - Russian Pushing New State-run TLS Certificate Authority to Deal With Sanctions - Multiple Security Flaws Discovered in Popular Software Package Managers - Emotet Botnet's Latest Resurgence Spreads to Over 100,000 Computers - Ukrainian Hacker Linked to REvil Ransomware Attacks Extradited to United States - Critical Bugs Could Let Attackers Remotely Hack, Damage APC Smart-UPS Devices - Hackers Abuse Mitel Devices to Amplify DDoS Attacks by 4 Billion Times - Google Buys Cybersecurity Firm Mandiant for $5.4 Billion - Google: Russian Hackers Target Ukrainians, European Allies via Phishing Attacks - New 16 High-Severity UEFI Firmware Flaws Discovered in Millions of HP Devices - Critical Security Patches Issued by Microsoft, Adobe and Other Major Software Firms - The Continuing Threat of Unpatched Security Vulnerabilities - Critical "Access:7" Supply Chain Vulnerabilities Impact ATMs, Medical and IoT Devices - Samsung Confirms Data Breach After Hackers Leak Galaxy Source Code - Researchers Warn of Linux Kernel ‘Dirty Pipe’ Arbitrary File Overwrite Vulnerability - Microsoft Azure 'AutoWarp' Bug Could Have Let Attackers Access Customers' Accounts - SharkBot Banking Malware Spreading via Fake Android Antivirus App on Google Play Store - Ukrainian CERT Warns Citizens of Phishing Attacks Using Compromised Accounts - Understanding How Hackers Recon - Critical Bugs in TerraMaster TOS Could Open NAS Devices to Remote Hacking - 2 New Mozilla Firefox 0-Day Bugs Under Active Attack — Patch Your Browser ASAP! - New Linux Kernel cgroups Vulnerability Could Let Attackers Escape Container - New Security Vulnerability Affects Thousands of Self-Managed GitLab Instances - Both Sides in Russia-Ukraine War Heavily Using Telegram for Disinformation and Hacktivism - CISA Adds Another 95 Flaws to its Actively Exploited Vulnerabilities Catalog - Imperva Thwarts 2.5 Million RPS Ransom DDoS Extortion Attacks - Critical Patches Issued for Cisco Expressway Series, TelePresence VCS Products - Researchers Demonstrate New Side-Channel Attack on Homomorphic Encryption - Russia Releases List of IPs, Domains Attacking Its Infrastructure with DDoS Attacks - Hackers Who Broke Into NVIDIA's Network Leak DLSS Source Code Online - How to Automate Offboarding to Keep Your Company Safe - Hackers Try to Target European Officials to Get Info on Ukrainian Refugees, Supplies - Critical Bugs Reported in Popular Open Source PJSIP SIP and Media Stack - LIVE Webinar: Key Lessons Learned from Major Cyberattacks in 2021 and What to Expect in 2022 - Hackers Begin Weaponizing TCP Middlebox Reflection for Amplified DDoS Attacks - Critical Security Bugs Uncovered in VoIPmonitor Monitoring Software - TeaBot Android Banking Malware Spreads Again Through Google Play Store Apps - Break into Ethical Hacking with 18 Advanced Online Courses for Just $42.99 - Second New 'IsaacWiper' Data Wiper Targets Ukraine After Russian Invasion - China-linked Daxin Malware Targeted Multiple Governments in Espionage Attacks - Microsoft Finds FoxBlade Malware Hit Ukraine Hours Before Russian Invasion - TrickBot Malware Gang Upgrades its AnchorDNS Backdoor to AnchorMail - Conti Ransomware Gang's Internal Chats Leaked Online After Siding With Russia - 100 Million Samsung Galaxy Phones Affected with Flawed Hardware Encryption Feature - CISA adds recently disclosed Zimbra bug to its Exploited Vulnerabilities Catalog - Experts Create Apple AirTag Clone That Can Bypass Anti-Tracking Measures - Reborn of Emotet: New Features of the Botnet and How to Detect it - CISA Warns of High-Severity Flaws in Schneider and GE Digital's SCADA Software - Iranian Hackers Using New Spying Malware That Abuses Telegram Messenger API - Social Media Hijacking Malware Spreading Through Gaming Apps on Microsoft Store - Putin Warns Russian Critical Infrastructure to Brace for Potential Cyber Attacks - Iran's MuddyWater Hacker Group Using New Malware in Worldwide Cyber Attacks - New "SockDetour" Fileless, Socketless Backdoor Targets U.S. Defense Contractors - Russia-Ukraine War: Phishing, Malware and Hacker Groups Taking Sides - From Pet Systems to Cattle Farm — What Happened to the Data Center? - TrickBot Gang Likely Shifting Operations to Switch to New Malware - New Flaws Discovered in Cisco's Network Operating System for Switches - Notorious TrickBot Malware Gang Shuts Down its Botnet Infrastructure - Warning — Deadbolt Ransomware Targeting ASUSTOR NAS Devices - Dridex Malware Deploying Entropy Ransomware on Hacked Computers - New Wiper Malware Targeting Ukraine Amid Russia's Military Operation - 9-Year-Old Unpatched Email Hacking Bug Uncovered in Horde Webmail Software - Chinese Experts Uncover Details of Equation Group's Bvp47 Covert Hacking Tool - 25 Malicious JavaScript Libraries Distributed via Official NPM Package Repository - Chinese Hackers Target Taiwan's Financial Trading Sector with Supply Chain Attack - Hackers Stole $1.7 Million Worth of NFTs from Users of OpenSea Marketplace - Hackers Backdoor Unpatched Microsoft SQL Database Servers with Cobalt Strike - Iranian State Broadcaster IRIB Hit by Destructive Wiper Malware - New Android Banking Trojan Spreading via Google Play Store Targets Europeans - Hackers Exploiting Infected Android Devices to Register Disposable Accounts - A Free Solution to Protect Your Business from 6 Biggest Cyber Threats in 2022 - Master Key for Hive Ransomware Retrieved Using a Flaw in its Encryption Algorithm - U.S. Cybersecurity Agency Publishes List of Free Security Tools and Services - Justice Department Appoints First Director of National Cryptocurrency Enforcement Team - New Linux Privilege Escalation Flaw Uncovered in Snap Package Manager - PseudoManuscrypt Malware Spreading the Same Way as CryptBot Targets Koreans - Microsoft Warns of 'Ice Phishing' Threat on Web3 and Decentralized Networks - Critical Flaw Uncovered in WordPress Backup Plugin Used by Over 3 Million Sites - Another Critical RCE Discovered in Adobe Commerce and Magento Platforms - Attackers Can Crash Cisco Email Security Appliances by Sending Malicious Emails - 4 Cloud Data Security Best Practices All Businesses Should Follow Today - Iranian Hackers Targeting VMware Horizon Log4j Flaws to Deploy Ransomware - U.S. Says Russian Hackers Stealing Sensitive Data from Defense Contractors - VMware Issues Security Patches for High-Severity Flaws Affecting Multiple Products - Trickbot Malware Targeted Customers of 60 High-Profile Companies Since 2020 - [Webinar] When More Is Not Better: Solving Alert Overload - EU Data Protection Watchdog Calls for Ban on Pegasus-like Commercial Spyware - SafeDNS: Cloud-based Internet Security and Web Filtering Solution for MSPs - Researchers Link ShadowPad Malware Attacks to Chinese Ministry and PLA - Facebook Agrees to Pay $90 Million to Settle Decade-Old Privacy Violation Case - High-Severity RCE Security Bug Reported in Apache Cassandra Database Software - New MyloBot Malware Variant Sends Sextortion Emails Demanding $2,732 in Bitcoin - Experts Warn of Hacking Group Targeting Aviation and Defense Sectors - Critical Security Flaws Reported in Moxa MXview Network Management Software - Spanish Police Arrest SIM Swappers Who Stole Money from Victims Bank Accounts - New Chrome 0-Day Bug Under Active Attack – Update Your Browser ASAP! - Critical Magento 0-Day Vulnerability Under Active Exploitation — Patch Released - Apple Releases iOS, iPadOS, macOS Updates to Patch Actively Exploited Zero-Day Flaw - France Rules That Using Google Analytics Violates GDPR Data Protection Law - Hackers Planted Fake Digital Evidence on Devices of Indian Activists and Lawyers - Russia Cracks Down on 4 Dark Web Marketplaces for Stolen Credit Cards - CISA, FBI, NSA Issue Advisory on Severe Increase in Ransomware Attacks - COVID Does Not Spread to Computers - FritzFrog P2P Botnet Attacking Healthcare, Education and Government Sectors - Critical RCE Flaws in 'PHP Everywhere' Plugin Affect Thousands of WordPress Sites - Guide: Alert Overload and Handling for Lean IT Security Teams - U.S. Arrests Two and Seizes $3.6 Billion Cryptocurrency Stolen in 2016 Bitfinex Hack - Russian APT Hackers Used COVID-19 Lures to Target European Diplomats - Iranian Hackers Using New Marlin Backdoor in 'Out to Sea' Espionage Campaign - Microsoft and Other Major Software Firms Release February 2022 Patch Updates - Several Malware Families Using Pay-Per-Install Service to Expand Their Targets - Palestinian Hackers Use New NimbleMamba Implant in Recent Attacks - How Attack Surface Management Preempts Cyberattacks - Medusa Android Banking Trojan Spreading Through Flubot's Attacks Network - 'Roaming Mantis' Android Malware Targeting Europeans via Smishing Campaigns - Microsoft Temporarily Disables MSIX App Installers to Prevent Malware Abuse - Microsoft Disables Internet Macros in Office Apps by Default to Block Malware Attacks - Chinese Hackers Target Taiwanese Financial Institutions with a new Stealthy Backdoor - IoT/connected Device Discovery and Security Auditing in Corporate Networks - Hackers Backdoored Systems at China's National Games Just Before Competition - New CapraRAT Android Malware Targets Indian Government and Military Personnel - CISA Orders Federal Agencies to Patch Actively Exploited Windows Vulnerability - Microsoft Uncovers New Details of Russian Hacking Campaign Targeting Ukraine - New Argo CD Bug Could Let Hackers Steal Secret Info from Kubernetes Apps - Cynet Log4Shell Webinar: A Thorough - And Clear - Explanation - Russian Gamaredon Hackers Targeted 'Western Government Entity' in Ukraine - U.S. Authorities Charge 6 Indian Call Centers Scamming Thousands of Americans - Another Israeli Firm, QuaDream, Caught Weaponizing iPhone Bug for Spyware - New SEO Poisoning Campaign Distributing Trojanized Versions of Popular Software - Critical Flaws Discovered in Cisco Small Business RV Series Routers - Hackers Exploited 0-Day Vulnerability in Zimbra Email Platform to Spy on Users - CISA Warns of Critical Vulnerabilities Discovered in Airspan Networks Mimosa - Cynet's Keys to Extend Threat Visibility - New Malware Used by SolarWinds Attackers Went Undetected for Years - Dozens of Security Flaws Discovered in UEFI Firmware Used by Several Vendors - Hacker Group 'Moses Staff' Using New StrifeWater RAT in Ransomware Attacks - Iranian Hackers Using New PowerShell Backdoor in Cyber Espionage Attacks - SolarMarker Malware Uses Novel Techniques to Persist on Hacked Systems - Critical Bug Found in WordPress Plugin for Elementor with Over a Million Installations - Researchers Uncover New Iranian Hacking Campaign Targeting Turkish Users - Reasons Why Every Business is a Target of DDoS Attacks - Ukraine Continues to Face Cyber Espionage Attacks from Russian Hackers - New Samba Bug Allows Remote Attackers to Execute Arbitrary Code as Root - New SureMDM Vulnerabilities Could Expose Companies to Supply Chain Attacks - German Court Rules Websites Embedding Google Fonts Violates GDPR - Your Graphics Card Fingerprint Can Be Used to Track Your Activities Across the Web - Behind The Buzzword: Four Ways to Assess Your Zero Trust Security Posture - Researchers Use Natural Silk Fibers to Generate Secure Keys for Strong Authentication - Apple Pays $100,500 Bounty to Hacker Who Found Way to Hack MacBook Webcam - DeepDotWeb News Site Operator Sentenced to 8 Years for Money Laundering - North Korean Hackers Using Windows Update Service to Infect PCs with Malware - How Wazuh Can Improve Digital Security for Businesses - Hackers Using Device Registration Trick to Attack Enterprises with Lateral Phishing - Patching the CentOS 8 Encryption Bug is Urgent – What Are Your Plans? - QNAP Warns of DeadBolt Ransomware Targeting Internet-Facing NAS Devices - Microsoft Mitigated Record-Breaking 3.47 Tbps DDoS Attack on Azure Customers - North Korean Hackers Return with Stealthier Variant of KONNI RAT Malware - Hackers Using New Evasive Technique to Deliver AsyncRAT Malware - Widespread FluBot and TeaBot Malware Campaigns Targeting Android Devices - Chaes Banking Trojan Hijacks Chrome Browser with Malicious Extensions - Initial Access Broker Involved in Log4Shell Attacks Against VMware Horizon Servers - Apple Releases iOS and macOS Updates to Patch Actively Exploited 0-Day Vulnerability - Google Drops FLoC and Introduces Topics API to Replace Tracking Cookies for Ads - Webinar: How to See More, But Respond Less with Enhanced Threat Visibility - Hackers Exploited MSHTML Flaw to Spy on Government and Defense Targets - 12-Year-Old Polkit Flaw Lets Unprivileged Linux Users Gain Root Access - Mobile Banking Trojan BRATA Gains New, Dangerous Capabilities - TrickBot Malware Using New Techniques to Evade Web Injection Attacks - Hackers Infect macOS with New DazzleSpy Backdoor in Watering-Hole Attacks - Hackers Using New Malware Packer DTPacker to Avoid Analysis, Detection - Emotet Now Using Unconventional IP Address Formats to Evade Detection - Hackers Creating Fraudulent Crypto Tokens as Part of 'Rug Pull' Scams - ZTNAs Address Requirements VPNs Cannot. Here's Why. - High-Severity Rust Programming Bug Could Lead to File, Directory Deletion - Molerats Hackers Hiding New Espionage Attacks Behind Public Cloud Infrastructure - Experts Find Strategic Similarities b/w NotPetya and WhisperGate Attacks on Ukraine - U.S. Sanctions 4 Ukrainians for Working with Russia to Destabilize Ukraine - Chinese Hackers Spotted Using New UEFI Firmware Implant in Targeted Attacks - Critical Bugs in Control Web Panel Expose Linux Servers to RCE Attacks - Hackers Planted Secret Backdoor in Dozens of WordPress Plugins and Themes - Interpol Busted 11 Members of Nigerian BEC Cybercrime Gang - Google Details Two Zero-Day Bugs Reported in Zoom Clients and MMR Servers - Cisco Issues Patch for Critical RCE Vulnerability in RCM for StarOS Software - DoNot Hacking Team Targeting Government and Military Entities in South Asia - Cyber Threat Protection — It All Starts with Visibility - Russian Hackers Heavily Using Malicious Traffic Direction System to Distribute Malware - Microsoft: Hackers Exploiting New SolarWinds Serv-U Bug Related to Log4j Attacks - New BHUNT Password Stealer Malware Targeting Cryptocurrency Wallets - DDoS IRC Bot Malware Spreading Through Korean WebHard Platforms - FIN8 Hackers Spotted Using New 'White Rabbit' Ransomware in Recent Attacks - Ukraine: Recent Cyber Attacks Part of Wider Plot to Sabotage Critical Infrastructure - Don't Use Public Wi-Fi Without DNS Filtering - Europol Shuts Down VPNLab, Cybercriminals' Favourite VPN Service - Researchers Bypass SMS-based Multi-Factor Authentication Protecting Box Accounts - Earth Lusca Hackers Aimed at High-Value Targets in Government and Private Sectors - Dark Web's Largest Marketplace for Stolen Credit Cards is Shutting Down - Chrome Limits Websites' Direct Access to Private Networks for Security Reasons - Zoho Releases Patch for Critical Flaw Affecting ManageEngine Desktop Central - A New Destructive Malware Targeting Ukrainian Government and Business Entities - New Unpatched Apple Safari Browser Bug Allows Cross-Site User Tracking - Ukrainian Government Officially Accuses Russia of Recent Cyberattacks - High-Severity Vulnerability in 3 WordPress Plugins Affected 84,000 Websites - North Korean Hackers Stole Millions from Cryptocurrency Startups Worldwide - Massive Cyber Attack Knocks Down Ukrainian Government Websites - Get Lifetime Access to Cybersecurity Certification Prep Courses - Russia Arrests REvil Ransomware Gang Responsible for High-Profile Cyber Attacks - GootLoader Hackers Targeting Employees of Law and Accounting Firms - Cisco Releases Patch for Critical Bug Affecting Unified CCMP and Unified CCDM - Husband-Wife Arrested in Ukraine for Ransomware Attacks on Foreign Companies - U.K. Hacker Jailed for Spying on Children and Downloading Indecent Images - Iranian Hackers Exploit Log4j Vulnerability to Deploy PowerShell Backdoor - Researchers Decrypted Qakbot Banking Trojan’s Encrypted Registry Keys - Hackers Use Cloud Services to Distribute Nanocore, Netwire, and AsyncRAT Malware - Apple Releases iPhone and iPad Updates to Patch HomeKit DoS Vulnerability - FBI, NSA and CISA Warns of Russian Hackers Targeting Critical Infrastructure - XDR: Redefining the game for MSSPs serving SMBs and SMEs - New SysJoker Espionage Malware Targeting Windows, macOS, and Linux Users - First Patch Tuesday of 2022 Brings Fix for a Critical 'Wormable' Windows Vulnerability - New KCodes NetUSB Bug Affect Millions of Routers from Different Vendors - How Can You Leave Log4J in 2021? - Microsoft Details macOS Bug That Could Let Attackers Gain Access to User Data - 2022 Cybersecurity Predictions from Lookout: Work From Anywhere Ends On-Premises Security - Signal CEO Resigns, WhatsApp Co-Founder Takes Over as Interim CEO - Abcbot Botnet Linked to Operators of Xanthe Cryptomining malware - Researchers Find Bugs in Over A Dozen Widely Used URL Parser Libraries - Europol Ordered to Delete Data of Individuals With No Proven Links to Crimes - BADNEWS! Patchwork APT Hackers Score Own Goal in Recent Malware Attacks - Facebook Launches 'Privacy Center' to Educate Users on Data Collection and Privacy Options - North Korean Hackers Start New Year with Attacks on Russian Foreign Ministry - France Fines Google, Facebook €210 Million Over Privacy Violating Tracking Cookies - Log4Shell-like Critical RCE Flaw Discovered in H2 Database Console - NHS Warns of Hackers Targeting Log4j Flaws in VMware Horizon - New Trick Could Let Malware Fake iPhone Shutdown to Spy on Users Secretly - NIST Cybersecurity Framework: A Quick Guide for SaaS Security Compliance - VMware Patches Important Bug Affecting ESXi, Workstation and Fusion Products - New Zloader Banking Malware Campaign Exploiting Microsoft Signature Verification - Researchers Uncover Hacker Group Behind Organized Financial-Theft Operation - Google Releases New Chrome Update to Patch Dozens of New Browser Vulnerabilities - Hackers Target Real Estate Websites with Skimmer in Latest Supply Chain Attack - Microsoft Warns of Continued Attacks Exploiting Apache Log4j Vulnerabilities - Beware of Fake Telegram Messenger App Hacking PCs with Purple Fox Malware - Researchers Detail New HomeKit 'doorLock' Bug Affecting Apple iOS - SAILFISH System to Find State-Inconsistency Bugs in Smart Contracts - Detecting Evasive Malware on IoT Devices Using Electromagnetic Emanations - Are Medical Devices at Risk of Ransomware Attacks? - Microsoft Issues Fix for Exchange Y2K22 Bug That Crippled Email Delivery Service - New Apache Log4j Update Released to Patch Newly Discovered Vulnerability - Experts Detail Logging Tool of DanderSpritz Framework Used by Equation Group Hackers - Garrett Walk-Through Metal Detectors Can Be Hacked Remotely - 'Spider-Man: No Way Home' Pirated Downloads Contain Crypto-Mining Malware - PECB Certified Lead Ethical Hacker: Take Your Career to the Next Level - New Android Malware Targeting Brazil's Itaú Unibanco Bank Customers - New BLISTER Malware Using Code Signing Certificates to Evade Detection - New Ransomware Variants Flourish Amid Law Enforcement Actions - Expert Details macOS Bug That Could Let Malware Bypass Gatekeeper Security - IoT SAFE — An Innovative Way to Secure IoT - CISA, FBI and NSA Publish Joint Advisory and Scanner for Log4j Vulnerabilities - 4-Year-Old Bug in Azure App Service Exposed Hundreds of Source Code Repositories - Researchers Disclose Unpatched Vulnerabilities in Microsoft Teams Software - New Exploit Lets Malware Attackers Bypass Patch for Critical Microsoft MSHTML Flaw - China suspends deal with Alibaba for not sharing Log4j 0-day first with the government - Active Directory Bugs Could Let hackers Take Over Windows Domain Controllers - Top 7 common Cybersecurity Myths — Busted - Tropic Trooper Cyber Espionage Hackers Targeting Transportation Sector - Secret Backdoors Found in German-made Auerswald VoIP System - Meta Sues Hackers Behind Facebook, WhatsApp and Instagram Phishing Attacks - New Mobile Network Vulnerabilities Affect All Cellular Generations Since 2G - Experts Discover Backdoor Deployed on the U.S. Federal Agency's Network - CISA Compliance for 2022 - Over 500,000 Android Users Downloaded a New Joker Malware App from Play Store - New Local Attack Vector Expands the Attack Surface of Log4j Vulnerability - Apache Issues 3rd Patch to Fix New High-Severity Log4j Vulnerability - Facebook Bans 7 'Cyber Mercenary' Companies for Spying on 50,000 Users - New PseudoManuscrypt Malware Infected Over 35,000 Computers in 2021 - How to Prevent Customer Support Help Desk Fraud Using VPN and Other Tools - Researchers Uncover New Coexistence Attacks On Wi-Fi and Bluetooth Chips - New Phorpiex Botnet Variant Steals Half a Million Dollars in Cryptocurrency - The Guide to Automating Security Training for Lean Security Teams - New Fileless Malware Uses Windows Registry as Storage to Evade Detection - Hackers Begin Exploiting Second Log4j Vulnerability as a Third Flaw Emerges - Facebook to Pay Hackers for Reporting Data Scraping Bugs and Scraped Datasets - Hackers Using Malicious IIS Server Module to Steal Microsoft Exchange Credentials - Cynet's MDR Offers Organizations Continuous Security Oversight - Microsoft Issues Windows Update to Patch 0-Day Used to Spread Emotet Malware - Second Log4j Vulnerability (CVE-2021-45046) Discovered — New Patch Released - How Extended Security Posture Management Optimizes Your Security Stack - Hackers Exploit Log4j Vulnerability to Infect Computers with Khonsari Ransomware - Ransomware Affiliate Arrested in Romania; 51 Stolen Data Brokers Arrested in Ukraine - Latest Apple iOS Update Patches Remote Jailbreak Exploit for iPhones - Update Google Chrome to Patch New Zero-Day Exploit Detected in the Wild - Top 3 SaaS Security Threats for 2022 - Karakurt: A New Emerging Data Theft and Cyber Extortion Hacking Group - Microsoft Details Building Blocks of Widely Active Qakbot Banking Trojan - Apache Log4j Vulnerability — Log4Shell — Widely Under Active Attack - BlackCat: A New Rust-based Ransomware Malware Spotted in the Wild - Extremely Critical Log4J Vulnerability Leaves Much of the Internet at Risk - Over 300,000 MikroTik Devices Found Vulnerable to Remote Hacking Bugs - Russia Blocks Tor Privacy Service in Latest Censorship Move - 1.6 Million WordPress Sites Under Cyberattack From Over 16,000 IP Addresses - Why Holidays Put Your Company at Risk of Cyber Attack (And How to Take Precautions) - Over a Dozen Malicious NPM Packages Caught Hijacking Discord Servers - Google Disrupts Blockchain-based Glupteba Botnet; Sues Russian Hackers - SonicWall Urges Customers to Immediately Patch Critical SMA 100 Flaws - 140,000 Reasons Why Emotet is Piggybacking on TrickBot in its Return from the Dead - [eBook] Guide to Achieving 24x7 Threat Monitoring and Response for Lean IT Security Teams - Warning: Yet Another Bitcoin Mining Malware Targeting QNAP NAS Devices - SolarWinds Hackers Targeting Government and Business Entities Worldwide - Eltima SDK Contain Multiple Vulnerabilities Affecting Several Cloud Service Provides - Microsoft Seizes 42 Malicious Web Domains Used By Chinese Hackers - Latest Firefox 95 Includes RLBox Sandboxing to Protect Browser from Malicious Code - Hackers Steal $200 Million Worth of Cryptocurrency Tokens from BitMart Exchange - Vulnerability Scanning Frequency Best Practices - Malicious KMSPico Windows Activator Stealing Users' Cryptocurrency Wallets - 14 New XS-Leaks (Cross-Site Leaks) Attacks Affect All Modern Web Browsers - Pegasus Spyware Reportedly Hacked iPhones of U.S. State Department and Diplomats - Researchers Detail How Pakistani Hackers Targeting Indian and Afghan Governments - Warning: Yet Another Zoho ManageEngine Product Found Under Active Attacks - New Payment Data Stealing Malware Hides in Nginx Process on Linux Servers - Why Everyone Needs to Take the Latest CISA Directive Seriously - New Malvertising Campaigns Spreading Backdoors, Malicious Chrome Extensions - Researches Detail 17 Malicious Frameworks Used to Attack Air-Gapped Networks - Meta Expands Facebook Protect Program to Activists, Journalists, Government Officials - CISA Warns of Actively Exploited Critical Zoho ManageEngine ServiceDesk Vulnerability - Let there be light: Ensuring visibility across the entire API lifecycle - Critical Bug in Mozilla’s NSS Crypto Library Potentially Affects Several Other Software - Russian Man Gets 60 Months Jail for Providing Bulletproof Hosting to Cyber Criminals - Hackers Increasingly Using RTF Template Injection Technique in Phishing Attacks - New EwDoor Botnet Targeting Unpatched AT&T Network Edge Devices - Hacker Jailed for Stealing Millions of Dollars in Cryptocurrencies by SIM Hijacking - Twitter Bans Users From Posting ‘Private Media’ Without a Person's Consent - Critical Wormable Security Flaw Found in Several HP Printer Models - New Hub for Lean IT Security Teams - Panasonic Suffers Data Breach After Hackers Hack Into Its Network - Unpatched Unauthorized File Read Vulnerability Affects Microsoft Windows OS - WIRTE Hacker Group Targets Government, Law, Financial Entities in Middle East - Hackers Using Compromised Google Cloud Accounts to Mine Cryptocurrency - New Chinotto Spyware Targets North Korean Defectors, Human Rights Activists - 4 Android Banking Trojan Campaigns Targeted Over 300,000 Devices in 2021 - CleanMyMac X: Performance and Security Software for Macbook - Interpol Arrests Over 1,000 Cyber Criminals From 20 Countries; Seizes $27 Million - Italy's Antitrust Regulator Fines Google and Apple for "Aggressive" Data Practices - Hackers Targeting Biomanufacturing Facilities With Tardigrade Malware - CronRAT: A New Linux Malware That’s Scheduled to Run on February 31st - Crypto Hackers Using Babadeda Crypter to Make Their Malware Undetectable - Product Releases Should Not Be Scary - Israel Bans Sales of Hacking and Surveillance Tools to 65 Countries - Hackers Using Microsoft MSHTML Flaw to Spy on Targeted PCs with Malware - This New Stealthy JavaScript Loader Infecting Computers with Malware - If You're Not Using Antivirus Software, You're Not Paying Attention - Warning — Hackers Exploiting New Windows Installer Zero-Day Exploit in the Wild - VMware Warns of Newly Discovered Vulnerabilities in vSphere Web Client - Eavesdropping Bugs in MediaTek Chips Affect 37% of All Smartphones and IoT Globally - APT C-23 Hackers Using New Android Spyware Variant to Target Middle East Users - Apple Sues Israel's NSO Group for Spying on iPhone Users With Pegasus Spyware - Researchers Detail Privilege Escalation Bugs Reported in Oracle VirtualBox - What Avengers Movies Can Teach Us About Cybersecurity - The Importance of IT Security in Your Merger Acquisition - More Stealthier Version of BrazKing Android Malware Spotted in the Wild - GoDaddy Data Breach Exposes Over 1 Million WordPress Customers' Data - New Golang-based Linux Malware Targeting eCommerce Websites - Hackers Exploiting ProxyLogon and ProxyShell Flaws in Spam Campaigns - Facebook Postpones Plans for E2E Encryption in Messenger, Instagram Until 2023 - RedCurl Corporate Espionage Hackers Return With Updated Hacking Tools - U.S. Charged 2 Iranian Hackers for Threatening Voters During 2020 Presidential Election - 11 Malicious PyPI Python Libraries Caught Stealing Discord Tokens and Installing Shells - North Korean Hackers Found Behind a Range of Credential Theft Campaigns - Experts Expose Secrets of Conti Ransomware Group That Made 25 Million from Victims - A Simple 5-Step Framework to Minimize the Risk of a Data Breach - FBI Issues Flash Alert on Actively Exploited FatPipe VPN Zero-Day Bug - Critical Root RCE Bug Affects Multiple Netgear SOHO Router Models - New Side Channel Attacks Re-Enable Serious DNS Cache Poisoning Attacks - How to Build a Security Awareness Training Program that Yields Measurable Results - Hackers Targeting Myanmar Use Domain Fronting to Hide Malicious Activities - U.S., U.K. and Australia Warn of Iranian Hackers Exploiting Microsoft, Fortinet Flaws - Israel's Candiru Spyware Found Linked to Watering Hole Attacks in U.K and Middle East - On-Demand Webinar: Into the Cryptoverse - Facebook Bans Pakistani and Syrian Hacker Groups for Abusing its Platform - New Blacksmith Exploit Bypasses Current Rowhammer Attack Defenses - Researchers Demonstrate New Way to Detect MitM Phishing Kits in the Wild - Notorious Emotet Botnet Makes a Comeback with the Help of TrickBot Malware - New 'Moses Staff' Hacker Group Targets Israeli Companies With Destructive Attacks - SharkBot — A New Android Trojan Stealing Banking and Cryptocurrency Accounts - North Korean Hackers Target Cybersecurity Researchers with Trojanized IDA Pro - Researchers Demonstrate New Fingerprinting Attack on Tor Encrypted Traffic - How to Tackle SaaS Security Misconfigurations - FBI's Email System Hacked to Send Out Fake Cyber Security Alert to Thousands - Hackers Increasingly Using HTML Smuggling in Malware and Phishing Attacks - Researchers Uncover Hacker-for-Hire Group That's Active Since 2015 - Hackers Exploit macOS Zero-Day to Hack Hong Kong Users with new Implant - Abcbot — A New Evolving Wormable Botnet Malware Targeting Linux - TrickBot Operators Partner with Shathak Attackers for Conti Ransomware - Navigating The Threat Landscape 2021 – From Ransomware to Botnets - Iran's Lyceum Hackers Target Telecoms, ISPs in Israel, Saudi Arabia, and Africa - Palo Alto Warns of Zero-Day Bug in Firewalls Using GlobalProtect Portal VPN - 13 New Flaws in Siemens Nucleus TCP/IP Stack Impact Safety-Critical Equipment - Researchers Discover PhoneSpy Malware Spying on South Korean Citizens - 14 New Security Flaws Found in BusyBox Linux Utility for Embedded Devices - Microsoft Issues Patches for Actively Exploited Excel, Exchange Server 0-Day Bugs - Unique Challenges to Cyber-Security in Healthcare and How to Address Them - Robinhood Trading App Suffers Data Breach Exposing 7 Million Users' Information - U.S. Charges Ukrainian Hacker for Kaseya Attack; Seizes $6 Million from REvil Gang - Experts Detail Malicious Code Dropped Using ManageEngine ADSelfService Exploit - Suspected REvil Ransomware Affiliates Arrested in Global Takedown - Types of Penetration Testing - BlackBerry Uncovers Initial Access Broker Linked to 3 Distinct Hacker Groups - Critical Flaws in Philips TASY EMR Could Expose Patient Data - Two NPM Packages With 22 Million Weekly Downloads Found Backdoored - Ukraine Identifies Russian FSB Officers Hacking As Gamaredon Group - U.S. Federal Agencies Ordered to Patch Hundreds of Actively Exploited Flaws - Hardcoded SSH Key in Cisco Policy Suite Lets Remote Hackers Gain Root Access - U.S. Offers $10 Million Reward for Information on DarkSide Ransomware Group - Critical RCE Vulnerability Reported in Linux Kernel's TIPC Module - Our journey to API security at Raiffeisen Bank International - US Sanctions Pegasus-maker NSO Group and 3 Others For Selling Spyware - BlackMatter Ransomware Reportedly Shutting Down; Latest Analysis Released - Mekotio Banking Trojan Resurfaces with New Attacking and Stealth Techniques - Product Overview - Cynet Centralized Log Management - Facebook to Shut Down Facial Recognition System and Delete Billions of Records - Alert! Hackers Exploiting GitLab Unauthenticated RCE Flaw in the Wild - Google Warns of New Android 0-Day Vulnerability Under Active Targeted Attacks - Google to Pay Hackers $31,337 for Exploiting Patched Linux Kernel Flaws - Critical Flaws Uncovered in Pentaho Business Analytics Software - Securing SaaS Apps — CASB vs. SSPM - New 'Trojan Source' Technique Lets Hackers Hide Vulnerabilities in Source Code - Researchers Uncover 'Pink' Botnet Malware That Infected Over 1.6 Million Devices - This New Android Malware Can Gain Root Access to Your Smartphones - Police Arrest Suspected Ransomware Hackers Behind 1,800 Attacks Worldwide - Winter is Coming for CentOS 8 - New 'Shrootless' Bug Could Let Attackers Install Rootkit on macOS Systems - Russian TrickBot Gang Hacker Extradited to U.S. Charged with Cybercrime - Google Releases Urgent Chrome Update to Patch 2 Actively Exploited 0-Day Bugs - Israeli Researcher Cracked Over 3,500 Wi-Fi Networks in Tel Aviv City - A Guide to Shift Away from Legacy Authentication Protocols in Microsoft 365 - New Wslink Malware Loader Runs as a Server and Executes Modules in Memory - Malicious NPM Libraries Caught Installing Password Stealer and Ransomware - Hackers Using Squirrelwaffle Loader to Deploy Qakbot and Cobalt Strike - Cyber Attack in Iran Reportedly Cripples Gas Stations Across the Country - [eBook] The Guide to Centralized Log Management for Lean IT Security Teams - Latest Report Uncovers Supply Chain Attacks by North Korean Hackers - Over 10 Million Android Users Targeted With Premium SMS Scam Apps - Malicious Firefox Add-ons Block Browser From Downloading Security Updates - Hardware-grade enterprise authentication without hardware: new SIM security solution for IAM - New Attack Lets Hackers Collect and Spoof Browser's Digital Fingerprints - Microsoft Warns of Continued Supply-Chain Attacks by the Nobelium Hacker Group - Hackers Exploited Popular BillQuick Billing Software to Deploy Ransomware - NYT Journalist Repeatedly Hacked with Pegasus after Reporting on Saudi Arabia - Microsoft Warns of TodayZoo Phishing Kit Used in Extensive Credential Stealing Attacks - Feds Reportedly Hacked REvil Ransomware Group and Forced it Offline - 'Lone Wolf' Hacker Group Targeting Afghanistan and India with Commodity RATs - Popular NPM Package Hijacked to Publish Crypto-mining Malware - Hackers Set Up Fake Company to Get IT Experts to Launch Ransomware Attacks - Before and After a Pen Test: Steps to Get Through It - Researchers Discover Microsoft-Signed FiveSys Rootkit in the Wild - Product Overview: Cynet SaaS Security Posture Management (SSPM) - Bug in Popular WinRAR Software Could Let Attackers Hack Your Computer - Malicious NPM Packages Caught Running Cryptominer On Windows, Linux, macOS Devices - Two Eastern Europeans Sentenced for Providing Bulletproof Hosting to Cyber Criminals - OWASP's 2021 List Shuffle: A New Battle Plan and Primary Foe - Researchers Break Intel SGX With New 'SmashEx' CPU Attack Technique - LightBasin Hackers Breach at Least 13 Telecom Service Providers Since 2019 - Microsoft Warns of New Security Flaw Affecting Surface Pro 3 Devices - Squirrel Engine Bug Could Let Attackers Hack Games and Cloud Services - A New Variant of FlawedGrace Spreading Through Mass Email Campaigns - Cybersecurity Experts Warn of a Rise in Lyceum Hacker Group Activities in Tunisia - Why Database Patching Best Practice Just Doesn't Work and How to Fix It - Over 30 Countries Pledge to Fight Ransomware Attacks in US-led Global Meeting - REvil Ransomware Gang Goes Underground After Tor Sites Were Compromised - Windows 10, Linux, iOS, Chrome and Many Others at Hacked Tianfu Cup 2021 - Ad-Blocking Chrome Extension Caught Injecting Ads in Google Search Pages - Attackers Behind Trickbot Expanding Malware Distribution Channels - Google: We're Tracking 270 State-Sponsored Hacker Groups From Over 50 Countries - CISA Issues Warning On Cyber Threats Targeting Water and Wastewater Systems - Critical Remote Hacking Flaws Disclosed in Linphone and MicroSIP Softphones - The Ultimate SaaS Security Posture Management (SSPM) Checklist - VirusTotal Releases Ransomware Report Based on Analysis of 80 Million Samples - Experts Warn of Unprotected Prometheus Endpoints Exposing Sensitive Information - Critical Flaw in OpenSea Could Have Let Hackers Steal Cryptocurrency From Wallets - [eBook] The Guide for Reducing SaaS Applications Risk for Lean IT Security Teams - Update Your Windows PCs Immediately to Patch 4 New 0-Days Under Active Attack - GitHub Revoked Insecure SSH Keys Generated by a Popular git Client - Digital Signature Spoofing Flaws Uncovered in OpenOffice and LibreOffice - Microsoft Fended Off a Record 2.4 Tbps DDoS Attack Targeting Azure Customers - Microsoft Warns of Iran-Linked Hackers Targeting US and Israeli Defense Firms - Apple Releases Urgent iPhone and iPad Updates to Patch New Zero-Day Vulnerability - Ukraine Arrests Operator of DDoS Botnet with 100,000 Compromised Devices - Verify End-Users at the Helpdesk to Prevent Social Engineering Cyber Attack - Indian-Made Mobile Spyware Targeted Human Rights Activist in Togo - Researchers Warn of FontOnLake Rootkit Malware Targeting Linux Systems - Ransomware Group FIN12 Aggressively Going After Healthcare Targets - New Patch Released for Actively Exploited 0-Day Apache Path Traversal to RCE Attacks - Penetration Testing Your AWS Environment - A CTO's Guide - Code Execution Bug Affects Yamale Python Package — Used by Over 200 Projects - New U.S. Government Initiative Holds Contractors Accountable for Cybersecurity - Apple now requires all apps to make it easy for users to delete their accounts - Twitch Suffers Massive 125GB Data and Source Code Leak Due to Server Misconfiguration - Cyber Security WEBINAR — How to Ace Your InfoSec Board Deck - Iranian Hackers Abuse Dropbox in Cyberattacks Against Aerospace and Telecom Firms - Google to turn on 2-factor authentication by default for 150 million users - Multiple Critical Flaws Discovered in Honeywell Experion PKS and ACE Controllers - Researchers Discover UEFI Bootkit Targeting Windows Computers Since 2012 - New Study Links Seemingly Disparate Malware Attacks to Chinese Hackers - Apache Warns of Zero-Day Exploit in the Wild — Patch Your Web Servers Now! - Ransomware Hackers Who Attacked Over 100 Companies Arrested in Ukraine - Poorly Configured Apache Airflow Instances Leak Credentials for Popular Services - Creating Wireless Signals with Ethernet Cable to Steal Data from Air-Gapped Systems - A New APT Hacking Group Targeting Fuel, Energy, and Aviation Industries - The Shortfalls of Mean Time Metrics in Cybersecurity - Beware of Fake Amnesty International Antivirus for Pegasus that Hacks PCs with Malware - Chinese Hackers Used a New Rootkit to Spy on Targeted Windows 10 Users - Apple Pay Can be Abused to Make Contactless Payments From Locked iPhones - Incentivizing Developers is the Key to Better Security Practices - New Azure AD Bug Lets Hackers Brute-Force Passwords Without Getting Caught - Update Google Chrome ASAP to Patch 2 New Actively Exploited Zero-Day Flaws - New Tomiris Backdoor Found Linked to Hackers Behind SolarWinds Cyberattack - Here's a New Free Tool to Discover Unprotected Cloud Storage Instances - Cybersecurity Firm Group-IB's CEO Arrested Over Treason Charges in Russia - Facebook Releases New Tool That Finds Security and Privacy Bugs in Android Apps - [eBook] Your First 90 Days as CISO — 9 Steps to Success - Beware! This Android Trojan Stole Millions of Dollars from Over 10 Million Users - Hackers Targeting Brazil's PIX Payment System to Drain Users' Bank Accounts - New FinSpy Malware Variant Infects Windows Systems With UEFI Bootkit - Atlassian Confluence RCE Flaw Abused in Multiple Cyberattack Campaigns - New BloodyStealer Trojan Steals Gamers' Epic Games and Steam Accounts - Microsoft Warns of FoggyWeb Malware Targeting Active Directory FS Servers - New Android Malware Steals Financial Data from 378 Banking and Wallet Apps - Russian Turla APT Group Deploying New Backdoor on Targeted Systems - How Does DMARC Prevent Phishing? - A New Jupyter Malware Version is Being Distributed via MSI Installers - SonicWall Issues Patches for a New Critical Flaw in SMA 100 Series Devices - Urgent Chrome Update Released to Patch Actively Exploited Zero-Day Vulnerability - A New APT Hacker Group Spying On Hotels and Governments Worldwide - Cisco Releases Patches 3 New Critical Flaws Affecting IOS XE Software - Google Warns of a New Way Hackers Can Make Malware Undetectable on Windows - Apple's New iCloud Private Relay Service Leaks Users' Real IP Addresses - Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days - A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit - Microsoft Exchange Bug Exposes ~100,000 Windows Domain Credentials - Why You Should Consider QEMU Live Patching - Microsoft Warns of a Wide-Scale Phishing-as-a-Service Operation - New Nagios Software Bugs Could Let Hackers Take Over IT Infrastructures - How Cynet's Response Automation Helps Organizations Mitigate Cyber Threats - US Sanctions Cryptocurrency Exchange SUEX for Aiding Ransomware Gangs - The Gap in Your Zero Trust Implementation - High-Severity RCE Flaw Disclosed in Several Netgear Router Models - VMware Warns of Critical File Upload Vulnerability Affecting vCenter Server - Unpatched High-Severity Vulnerability Affects Apple macOS Computers - Cring Ransomware Gang Exploits 11-Year-Old ColdFusion Bug - New Capoae Malware Infiltrates WordPress Sites and Installs Backdoored Plugin - Cybersecurity Priorities in 2021: How Can CISOs Re-Analyze and Shift Focus? - Europol Busts Major Crime Ring, Arrests Over 100 Online Fraudsters - A New Wave of Malware Attack Targeting Organizations in South America - Google to Auto-Reset Unused Android App Permissions for Billions of Devices - Numando: A New Banking Trojan Targeting Latin American Users - New Malware Targets Windows Subsystem for Linux to Evade Detection - Malware Attack on Aviation Sector Uncovered After Going Unnoticed for 2 Years - Third Critical Bug Affects Netgear Smart Switches — Details and PoC Released - Travis CI Flaw Exposes Secrets of Thousands of Open Source Projects - Windows MSHTML 0-Day Exploited to Deploy Cobalt Strike Beacon in Targeted Attacks - You Can Now Sign-in to You Microsoft Accounts Without a Password - Critical Flaws Discovered in Azure App That Microsoft Secretly Installs on Linux VMs - 3 Former U.S. Intelligence Officers Admit to Hacking for UAE Company - Microsoft Releases Patch for Actively Exploited Windows Zero-Day Vulnerability - New Stealthier ZLoader Variant Spreading Via Fake TeamViewer Download Ads - HP OMEN Gaming Hub Flaw Affects Millions of Windows Computers - Zero Trust Requires Cloud Data Security with Integrated Continuous Endpoint Risk Assessment - Apple Issues Urgent Updates to Fix New Zero-Day Linked to Pegasus Spyware - Update Google Chrome to Patch 2 New Zero-Day Flaws Under Attack - Linux Implementation of Cobalt Strike Beacon Targeting Organizations Worldwide - Critical Bug Reported in NPM Package With Millions of Downloads Weekly - New SpookJS Attack Bypasses Google Chrome’s Site Isolation Protection - WhatsApp to Finally Let Users Encrypt Their Chat Backups in the Cloud - Mēris Botnet Hit Russia's Yandex With Massive 22 Million RPS DDoS Attack - Moving Forward After CentOS 8 EOL - SOVA: New Android Banking Trojan Emerges With Growing Capabilities - Experts Link Sidewalk Malware Attacks to Grayfly Chinese Hacker Group - Microsoft Warns of Cross-Account Takeover Bug in Azure Container Instances - Fighting the Rogue Toaster Army: Why Secure Coding in Embedded Systems is Our Defensive Edge - Russian Ransomware Group REvil Back Online After 2-Month Hiatus - Hackers Leak VPN Account Passwords From 87,000 Fortinet FortiGate Devices - CISA Warns of Actively Exploited Zoho ManageEngine ADSelfService Vulnerability - HAProxy Found Vulnerable to Critical HTTP Request Smuggling Attack - 3 Ways to Secure SAP SuccessFactors and Stay Compliant - Experts Uncover Mobile Spyware Attacks Targeting Kurdish Ethnic Group - [Ebook] The Guide for Speeding Time to Response for Lean IT Security Teams - New 0-Day Attack Targeting Windows Users With Microsoft Office Documents - Latest Atlassian Confluence Flaw Exploited to Breach Jenkins Project Server - Traffic Exchange Networks Distributing Malware Disguised as Cracked Software - ProtonMail Shares Activist's IP Address With Authorities Despite Its "No Log" Claims - Critical Auth Bypass Bug Affect NETGEAR Smart Switches — Patch and PoC Released - Microsoft Says Chinese Hackers Were Behind SolarWinds Serv-U SSH 0-Day Attack - Apple Delays Plans to Scan Devices for Child Abuse Images After Privacy Backlash - This New Malware Family Using CLFS Log Files to Avoid Detection - U.S. Cyber Command Warns of Ongoing Attacks Exploiting Atlassian Confluence Flaw - Cisco Issues Patch for Critical Enterprise NFVIS Flaw — PoC Exploit Available - FIN7 Hackers Using Windows 11 Themed Documents to Drop Javascript Backdoor - New BrakTooth Flaws Leave Millions of Bluetooth-enabled Devices Vulnerable - What is AS-REP Roasting attack, really? - WhatsApp Photo Filter Bug Could Have Exposed Your Data to Remote Attackers - Is Traffic Mirroring for NDR Worth the Trouble? We Argue It Isn't - FTC Bans Stalkerware App SpyFone; Orders Company to Erase Secretly Stolen Data - Cybercriminals Abusing Internet-Sharing Services to Monetize Malware Campaigns - Linphone SIP Stack Bug Could Let Attackers Remotely Crash Client Devices - [LIVE WEBINAR] How Lean Security Teams Can Improve Their Time to Response - QNAP Working on Patches for OpenSSL Flaws Affecting its NAS Devices - Attackers Can Remotely Disable Fortress Wi-Fi Home Security Alarms - Researchers Propose Machine Learning-based Bluetooth Authentication Scheme - New Microsoft Exchange 'ProxyToken' Flaw Lets Attackers Reconfigure Mailboxes - CISA Adds Single-Factor Authentication to the List of Bad Practices - How Does MTA-STS Improve Your Email Security? - Get Lifetime Access to 24 Professional Cybersecurity Certification Prep Courses - Microsoft Warns of Widespread Phishing Attacks Using Open Redirects - LockFile Ransomware Bypasses Protection Using Intermittent File Encryption - Kaseya Issues Patches for Two New 0-Day Flaws Affecting Unitrends Servers - Microsoft, Google to Invest $30 Billion in Cybersecurity Over Next 5 Years - The Increased Liability of Local In-home Propagation - Critical Cosmos Database Flaw Affected Thousands of Microsoft Azure Customers - F5 Releases Critical Security Patch for BIG-IP and BIG-IQ Devices - New Passwordless Verification API Uses SIM Security for Zero Trust Remote Access - VMware Issues Patches to Fix New Flaws Affecting Multiple Products - Critical Flaw Discovered in Cisco APIC for Switches — Patch Released - Preventing your Cloud 'Secrets' from Public Exposure: An IDE plugin solution - Researchers Uncover FIN8's New Backdoor Targeting Financial Institutions - B. Braun Infusomat Pumps Could Let Attackers Remotely Alter Medication Dosages - New SideWalk Backdoor Targets U.S.-based Computer Retail Business - Modified Version of WhatsApp for Android Spotted Installing Triada Trojan - Bahraini Activists Targeted Using a New iPhone Zero-Day Exploit From NSO Group - Researchers Warn of 4 Emerging Ransomware Groups That Can Cause Havoc - 38 Million Records Exposed from Microsoft Power Apps of Dozens of Organisations - Navigating Vendor Risk Management as IT Professionals - Researchers Detail Modus Operandi of ShinyHunters Cyber Crime Group - Top 15 Vulnerabilities Attackers Exploited Millions of Times to Hack Linux Systems - WARNING: Microsoft Exchange Under Attack With ProxyShell Flaws - ShadowPad Malware is Becoming a Favorite Choice of Chinese Espionage Groups - Cloudflare mitigated one of the largest DDoS attack involving 17.2 million rps - Cybercrime Group Asking Insiders for Help in Planting Ransomware - Critical Flaw Found in Older Cisco Small Business Routers Won't Be Fixed - Mozi IoT Botnet Now Also Targets Netgear, Huawei, and ZTE Network Gateways - Researchers Find New Evidence Linking Diavol Ransomware to TrickBot Gang - Critical ThroughTek SDK Bug Could Let Attackers Spy On Millions of IoT Devices - Iranian Hackers Target Several Israeli Organizations With Supply-Chain Attacks - BadAlloc Flaw Affects BlackBerry QNX Used in Millions of Cars and Medical Devices - Does a VPN Protect You from Hackers? - NK Hackers Deploy Browser Exploits on South Korean Sites to Spread Malware - Unpatched Remote Hacking Flaw Disclosed in Fortinet's FortiWeb WAF - Malicious Ads Target Cryptocurrency Users With Cinobi Banking Trojan - Solution Providers Can Now Add Incident Response to Their Services Portfolio For Free - Multiple Flaws Affecting Realtek Wi-Fi SDKs Impact Nearly a Million IoT Devices - Attackers Can Weaponize Firewalls and Middleboxes for Amplified DDoS Attacks - Dozens of STARTTLS Related Flaws Found Affecting Popular Email Clients - New AdLoad Variant Bypasses Apple's Security Defenses to Target macOS Systems - New Glowworm Attack Recovers Device's Sound from Its LED Power Indicator - Learn Ethical Hacking From Scratch — 18 Online Courses for Just $43 - Hackers Spotted Using Morse Code in Phishing Attacks to Evade Detection - Facebook Adds End-to-End Encryption for Audio and Video Calls in Messenger - Hackers Actively Searching for Unpatched Microsoft Exchange Servers - Why Is There A Surge In Ransomware Attacks? - Ransomware Gangs Exploiting Windows Print Spooler Vulnerabilities - Experts Shed Light On New Russian Malware-as-a-Service Written in Rust - How Companies Can Protect Themselves from Password Spraying Attacks - IT Giant Accenture Hit by LockBit Ransomware; Hackers Threaten to Leak Data - Microsoft Security Bulletin Warns of New Windows Print Spooler RCE Vulnerability - Bugs in Managed DNS Services Cloud Let Attackers Spy On DNS Traffic - MSPs and MSSPs Can Increase Profit Margins With Cynet 360 Platform - Hackers Steal Over $600 Million Worth of Cryptocurrencies from Poly Network - Magento Update Released Fix Critical Flaws Affecting E-Commerce Sites - Microsoft Releases Windows Updates to Patch Actively Exploited Vulnerability - Experts Believe Chinese Hackers Are Behind Several Attacks Targeting Israel - Hackers Exploiting New Auth Bypass Bug Affecting Millions of Arcadyan Routers - A Critical Random Number Generator Flaw Affects Billions of IoT Devices - Users Can Be Just As Dangerous As Hackers - Beware! New Android Malware Hacks Thousands of Facebook Accounts - Pulse Secure VPNs Get New Urgent Update for Poorly Patched Critical Flaw - Apple to Scan Every Device for Child Abuse Content — But Experts Fear for Privacy - New Amazon Kindle Bug Could've Let Attackers Hijack Your eBook Reader - India's Koo, a Twitter-like Service, Found Vulnerable to Critical Worm Attacks - VMware Issues Patches to Fix Critical Bugs Affecting Multiple Products - Salesforce Release Updates — A Cautionary Tale for Security Teams - A Wide Range of Cyber Attacks Leveraging Prometheus TDS Malware Service - Unpatched Security Flaws Expose Mitsubishi Safety PLCs to Remote Attacks - Cisco Issues Critical Security Patches to Fix Small Business VPN Router Bugs - Several Malware Families Targeting IIS Web Servers With Malicious Modules - Russian Federal Agencies Were Attacked With Chinese Webdav-O Virus - New Chinese Spyware Being Used in Widespread Cyber Espionage Attacks - Critical Flaws Affect Embedded TCP/IP Stack Widely Used in Industrial Control Devices - Chinese Hackers Target Major Southeast Asian Telecom Companies - Cynet Empowers IT Resellers and Service Providers to Become Fully Qualified MSSPs - PwnedPiper PTS Security Flaws Threaten 80% of Hospitals in the U.S. - New APT Hacking Group Targets Microsoft IIS Servers with ASP.NET Exploits - PyPI Python Package Repository Patches Critical Supply Chain Flaw - Solarmarker InfoStealer Malware Once Again Making its Way Into the Wild - Several Malicious Typosquatted Python Libraries Found On PyPI Repository - Experts Uncover Several C&C Servers Linked to WellMess Malware - A New Wiper Malware Was Behind Recent Cyberattack On Iranian Train System - Phony Call Centers Tricking Users Into Installing Ransomware and Data-Stealers - Hackers Exploit Microsoft Browser Bug to Deploy VBA Malware on Targeted PCs - New Ransomware Gangs — Haron and BlackMatter — Emerge on Cybercrime Forums - New Android Malware Uses VNC to Spy and Steal Passwords from Victims - Best Practices to Thwart Business Email Compromise (BEC) Attacks - Top 30 Critical Security Vulnerabilities Most Exploited by Hackers - UBEL is the New Oscorp — Android Credential Stealing Malware Active in the Wild - Chinese Hackers Implant PlugX Variant on Compromised MS Exchange Servers - Hackers Posed as Aerobics Instructors for Years to Target Aerospace Employees - New Bug Could Let Attackers Hijack Zimbra Server by Sending Malicious Email - Several Bugs Found in 3 Open-Source Software Used by Several Businesses - Hackers Turning to 'Exotic' Programming Languages for Malware Development - Apple Releases Urgent 0-Day Bug Patch for Mac, iPhone and iPad Devices - BIMI: A Visual Take on Email Authentication and Security - How to Mitigate Microsoft Windows 10, 11 SeriousSAM Vulnerability - Microsoft Warns of LemonDuck Malware Targeting Windows and Linux Systems - New PetitPotam NTLM Relay Attack Lets Hackers Take Over Windows Domains - Nasty macOS Malware XCSSET Now Targets Google Chrome, Telegram Software - Wake up! Identify API Vulnerabilities Proactively, From Production Back to Code - Dutch Police Arrest Two Hackers Tied to "Fraud Family" Cybercrime Ring - Kaseya Gets Universal Decryptor to Help REvil Ransomware Victims - APT Hackers Distributed Android Trojan via Syrian e-Government Portal - Reduce End-User Password Change Frustrations - Oracle Warns of Critical Remotely Exploitable Weblogic Server Flaws - Another Hacker Arrested for 2020 Twitter Hack and Massive Bitcoin Scam - Malicious NPM Package Caught Stealing Users' Saved Passwords From Browsers - XLoader Windows InfoStealer Malware Now Upgraded to Attack macOS Systems - Several New Critical Flaws Affect CODESYS Industrial Automation Software - [eBook] A Guide to Stress-Free Cybersecurity for Lean IT Security Teams - New Windows and Linux Flaws Give Attackers Highest System Privileges - 16-Year-Old Security Bug Affects Millions of HP, Samsung, Xerox Printers - This New Malware Hides Itself Among Windows Defender Exclusions to Evade Detection - US and Global Allies Accuse China of Massive Microsoft Exchange Attack - Researchers Warn of Linux Cryptojacking Attackers Operating from Romania - Turns Out That Low-Risk iOS Wi-Fi Naming Bug Can Hack iPhones Remotely - Five Critical Password Security Rules Your Employees Are Ignoring - Researcher Uncover Yet Another Unpatched Windows Printer Spooler Vulnerability - New Leak Reveals Abuse of Pegasus Spyware to Target Journalists Globally - China's New Law Requires Researchers to Report All Zero-Day Bugs to Government - Instagram Launches 'Security Checkup' to Help Users Recover Hacked Accounts - CloudFlare CDNJS Bug Could Have Led to Widespread Supply-Chain Attacks - Israeli Firm Helped Governments Target Journalists, Activists with 0-Days and Spyware - The Definitive RFP Templates for EDR/EPP and APT Protection - Facebook Suspends Accounts Used by Iranian Hackers to Target US Military Personnel - Update Your Chrome Browser to Patch New Zero‑Day Bug Exploited in the Wild - Microsoft Warns of New Unpatched Windows Print Spooler Vulnerability - China's Cyberspies Targeting Southeast Asian Government Entities - New Zero-Trust API Offers Mobile Carrier Authentication to Developers - REvil Ransomware Gang Mysteriously Disappears After High-Profile Attacks - 16 Cybercriminals Behind Mekotio and Grandoreiro Banking Trojan Arrested in Spain - Use This Definitive RFP Template to Effectively Evaluate XDR solutions - Update Your Windows PCs to Patch 117 New Flaws, Including 9 Zero-Days - Critical Flaws Reported in Etherpad — a Popular Google Docs Alternative - Chinese Hackers Exploit Latest SolarWinds 0-Day to Target U.S. Defense Firms - Iranian Hackers Posing as Scholars Target Professors and Writers in Middle-East - Trickbot Malware Returns with a new VNC Module to Spy on its Victims - Critical RCE Flaw in ForgeRock Access Manager Under Active Attack - A New Critical SolarWinds Zero-Day Vulnerability Under Active Attack - Crafting a Custom Dictionary for Your Password Policy - Hackers Spread BIOPASS Malware via Chinese Online Gambling Sites - Kaseya Releases Patches for Flaws Exploited in Widespread Ransomware Attack - New SaaS Security Report Dives into the Concerns and Plans of CISOs in 2021 - Magecart Hackers Hide Stolen Credit Card Data Into Images for Evasive Exfiltration - Critical Flaws Reported in Philips Vue PACS Medical Imaging Systems - Hackers Use New Trick to Disable Macro Security Warnings in Malicious Office Files - Experts Uncover Malware Attacks Targeting Corporate Networks in Latin America - Critical Flaws Reported in Sage X3 Enterprise Management Software - Security Awareness Training is Broken. Human Risk Management (HRM) is the Fix - How to Mitigate Microsoft Print Spooler Vulnerability – PrintNightmare - SideCopy Hackers Target Indian Government Officials With New Malware - Microsoft's Emergency Patch Fails to Fully Fix PrintNightmare RCE Vulnerability - WildPressure APT Emerges With New Malware Targeting Windows and macOS - Dozens of Vulnerable NuGet Packages Allow Attackers to Target .NET Platform - [Whitepaper] XDR vs. NDR/NTA – What do Organizations Truly Need to Stay Safe? - Microsoft Issues Emergency Patch for Critical Windows PrintNightmare Vulnerability - Interpol Arrests Moroccan Hacker Engaged in Nefarious Cyber Activities - Kaseya Rules Out Supply-Chain Attack; Says VSA 0-Day Hit Its Customers Directly - Getting Started with Security Testing: A Practical Guide for Startups - TrickBot Botnet Found Deploying A New Ransomware Called Diavol - Microsoft Urges Azure Users to Update PowerShell to Patch RCE Flaw - REvil Used 0-Day in Kaseya Ransomware Attack, Demands $70 Million Ransom - Android Apps with 5.8 million Installs Caught Stealing Users' Facebook Passwords - Kaseya Supply-Chain Attack Hits Nearly 40 Service Providers With REvil Ransomware - Learn to Code — Get 2021 Master Bundle of 13 Online Courses @ 99% OFF - New Mirai-Inspired Botnet Could Be Using Your KGUARD DVRs in Cyber Attacks - Mongolian Certificate Authority Hacked to Distribute Backdoored CA Software - NSA, FBI Reveal Hacking Methods Used by Russian Military Hackers - New Google Scorecards Tool Scans Open-Source Software for More Security Risks - Microsoft Warns of Critical "PrintNightmare" Flaw Being Exploited in the Wild - IndigoZebra APT Hacking Campaign Targets the Afghan Government - Rethinking Application Security in the API-First Era - Microsoft Discloses Critical Bugs Allowing Takeover of NETGEAR Routers - Hacker Wanted in the U.S. for Spreading Gozi Virus Arrested in Colombia - Authorities Seize DoubleVPN Service Used by Cybercriminals - [Webinar] How Cyber Attack Groups Are Spinning a Larger Ransomware Web - Researchers Leak PoC Exploit for a Critical Windows RCE Vulnerability - GitHub Launches 'Copilot' — AI-Powered Code Completion Tool - Unpatched Virtual Machine Takeover Bug Affects Google Compute Engine - New API Lets App Developers Authenticate Users via SIM Cards - Google now requires app developers to verify their address and use 2FA - Hackers Trick Microsoft Into Signing Netfilter Driver Loaded With Rootkit Malware - Microsoft Edge Bug Could've Let Hackers Steal Your Secrets for Any Site - DMARC: The First Line of Defense Against Ransomware - Cisco ASA Flaw Under Active Attack After PoC Exploit Posted Online - SolarWinds Hackers Breach Microsoft Customer Support to Target its Customers - Google Extends Support for Tracking Party Cookies Until 2023 - Watch Out! Zyxel Firewalls and VPNs Under Active Cyberattack - Crackonosh virus mined $2 million of Monero from 222,000 hacked computers - FIN7 Supervisor Gets 7-Year Jail Term for Stealing Millions of Credit Cards - BIOS Disconnect: New High-Severity Bugs Affect 128 Dell PC and Tablet Models - Clop Gang Partners Laundered $500 Million in Ransomware Payments - Reduce Business Risk By Fixing 3 Critical Endpoint-to-Cloud Security Requirements - One-Click Exploit Could Have Let Attackers Hijack Any Atlassian Account - Critical Auth Bypass Bug Affects VMware Carbon Black App Control - Antivirus Pioneer John McAfee Found Dead in Spanish Jail - Pakistan-linked hackers targeted Indian power company with ReverseRat - [Whitepaper] Automate Your Security with Cynet to Protect from Ransomware - Patch Tor Browser Bug to Prevent Tracking of Your Online Activities - SonicWall Left a VPN Flaw Partially Unpatched Amidst 0-Day Attacks - Unpatched Flaw in Linux Pling Store Apps Could Lead to Supply-Chain Attacks - Wormable DarkRadiation Ransomware Targets Linux and Docker Instances - NVIDIA Jetson Chipsets Found Vulnerable to High-severity Flaws - 5 Critical Steps to Recover From a Ransomware Attack - DroidMorph Shows Popular Android Antivirus Fail to Detect Cloned Malicious Apps - Beware! Connecting to This Wireless Network Can Break Your iPhone's Wi-Fi Feature - North Korea Exploited VPN Flaw to Hack South's Nuclear Research Institute - Cyber espionage by Chinese hackers in neighbouring nations is on the rise - Russia bans VyprVPN, Opera VPN services for not complying with blacklist request - Google Releases New Framework to Prevent Software Supply Chain Attacks - Update Your Chrome Browser to Patch Yet Another 0-Day Exploited in-the-Wild - [eBook] 7 Signs You Might Need a New Detection and Response Tool - Molerats Hackers Return With New Attacks Targeting Middle Eastern Governments - Strengthen Your Password Policy With GDPR Compliance - A New Spyware is Targeting Telegram and Psiphon VPN Users in Iran - Researchers Uncover 'Process Ghosting' — A New Malware Evasion Technique - Ukraine Police Arrest Cyber Criminals Behind Clop Ransomware Attacks - Malware Attack on South Korean Entities Was Work of Andariel Group - Ransomware Attackers Partnering With Cybercrime Groups to Hack High-Profile Targets - Critical ThroughTek Flaw Opens Millions of Connected Cameras to Eavesdropping - Experts Shed Light On Distinctive Tactics Used by Hades Ransomware - Instagram Bug Allowed Anyone to View Private Accounts Without Following Them - Apple Issues Urgent Patches for 2 Zero-Day Flaws Exploited in the Wild - Google Workspace Now Offers Client-side Encryption For Drive and Docs - NoxPlayer Supply-Chain Attack is Likely the Work of Gelsemium Hackers - Cybersecurity Executive Order 2021: What It Means for Cloud and SaaS Security - Chinese Hackers Believed to be Behind SITA, Air India Data Breach - Mozilla Says Google's New Ad Tech—FLoC—Doesn't Protect User Privacy - Hackers Can Exploit Samsung Pre-Installed Apps to Spy On Users - Live Cybersecurity Webinar — Deconstructing Cobalt Strike - 7-Year-Old Polkit Flaw Lets Unprivileged Linux Users Gain Root Access - New Cyber Espionage Group Targeting Ministries of Foreign Affairs - Emerging Ransomware Targets Dozens of Businesses Worldwide - U.S. Authorities Shut Down Slilpp—Largest Marketplace for Stolen Logins - Using Breached Password Detection Services to Prevent Cyberattack - Beef Supplier JBS Paid Hackers $11 Million Ransom After Cyberattack - Update Your Windows Computers to Patch 6 New In-the-Wind Zero-Day Bugs - Feds Secretly Ran a Fake Encrypted Chat App and Busted Over 800 Criminals - New UAF Vulnerability Affecting Microsoft Office to be Patched Today - Top 10 Privacy and Security Features Apple Announced at WWDC 2021 - U.S. Recovers $2.3 Million Ransom Paid to Colonial Pipeline Hackers - Researchers Discover First Known Malware Targeting Windows Containers - Shifting the focus from reactive to proactive, with human-led secure coding - Hackers Breached Colonial Pipeline Using Compromised VPN Password - Latvian Woman Charged for Her Role in Creating Trickbot Banking Malware - Break Into Ethical Hacking With 18 Training Courses For Just $42.99 - GitHub Updates Policy to Remove Exploit Code When Used in Active Attacks - ALERT: Critical RCE Bug in VMware vCenter Server Under Active Attack - TikTok Quietly Updated Its Privacy Policy to Collect Users' Biometric Data - Google to Let Android Users Opt-Out to Stop Ads From Tracking Them - Google Chrome to Help Users Identify Untrusted Extensions Before Installation - 10 Critical Flaws Found in CODESYS Industrial Automation Software - The Vulnerabilities of the Past Are the Vulnerabilities of the Future - Necro Python Malware Upgrades With New Exploits and Crypto Mining Capabilities - Researchers Warn of Critical Bugs Affecting Realtek Wi-Fi Module - Cybercriminals Hold $115,000-Prize Contest to Find New Cryptocurrency Hacks - The Incident Response Plan - Preparing for a Rainy Day - Researchers Uncover Hacking Operations Targeting Government Entities in South Korea - Hackers Actively Exploiting 0-Day in WordPress Plugin Installed on Over 17,000 Sites - US Seizes Domains Used by SolarWinds Hackers in Cyber Espionage Attacks - Malware Can Use This Trick to Bypass Ransomware Defense in Antivirus Solutions - Report: Danish Secret Service Helped NSA Spy On European Politicians - Your Amazon Devices to Automatically Share Your Wi-Fi With Neighbors - Can Your Business Email Be Spoofed? Check Your Domain Security Now! - A New Bug in Siemens PLCs Could Let Hackers Run Malicious Code Remotely - Researchers Demonstrate 2 New Hacks to Modify Certified PDF Documents - SolarWinds Hackers Target Think Tanks With New 'NativeZone' Backdoor - Researchers Warn of Facefish Backdoor Spreading Linux Rootkits - Malvertising Campaign On Google Distributed Trojanized AnyDesk Installer - Chinese Cyber Espionage Hackers Continue to Target Pulse Secure VPN Devices - Hackers Using Fake Foundations to Target Uyghur Minority in China - Newly Discovered Bugs in VSCode Extensions Could Lead to Supply Chain Attacks - WhatsApp Sues Indian Government Over New Internet Regulations - Data Wiper Malware Disguised As Ransomware Targets Israeli Entities - Google Researchers Discover A New Variant of Rowhammer Attack - Russian Hydra DarkNet Market Made Over $1.3 Billion in 2020 - Critical RCE Vulnerability Found in VMware vCenter Server — Patch Now! - New Bluetooth Flaws Let Attackers Impersonate Legitimate Devices - Apple Issues Patches to Combat Ongoing 0-Day Attacks on macOS, tvOS - What To Do When Your Business Is Hacked - Researchers Link CryptoCore Attacks On Cryptocurrency Exchanges to North Korea - Details Disclosed On Critical Flaws Affecting Nagios IT Monitoring Software - FBI Warns Conti Ransomware Hit 16 U.S. Health and Emergency Services - FBI Analyst Charged With Stealing Counterterrorism and Cyber Threat Info - Insurance Firm CNA Financial Reportedly Paid Hackers $40 Million in Ransom - Air India Hack Exposes Credit Card and Passport Info of 4.5 Million Passengers - 23 Android Apps Expose Over 100,000,000 Users' Personal Data - Microsoft Warns of Data Stealing Malware That Pretends to Be Ransomware - Is Single Sign-On Enough to Secure Your SaaS Applications? - Watering Hole Attack Was Used to Target Florida Water Utilities - DarkSide Ransomware Gang Extorted $90 Million from Several Victims in 9 Months - Android Issues Patches for 4 New Zero-Day Bugs Exploited in the Wild - Mozilla Begins Rolling Out 'Site Isolation' Security Feature to Firefox Browser - A Simple 1-Click Compromised Password Reset Feature Coming to Chrome Browser - How Apple Gave Chinese Government Access to iCloud Data and Censored Apps - Experts Reveal Over 150 Ways to Steal Control of 58 Android Stalkerware Apps - Free "vCISO Clinic" offers Resource-Constrained InfoSec Leaders a Helping Hand - 70 European and South American Banks Under Attack By Bizarro Banking Malware - Apple's Find My Network Can be Abused to Exfiltrate Data From Nearby Devices - Experts Warn About Ongoing AutoHotkey-Based Malware Attacks - Why Password Hygiene Needs a Reboot - U.S. Pipeline Ransomware Attackers Go Dark After Servers and Bitcoin Are Seized - Report to Your Management with the Definitive 'Incident Response for Management' Presentation Template - Hackers Using Microsoft Build Engine to Deliver Malware Filelessly - Pakistan-Linked Hackers Added New Windows Malware to Its Arsenal - Magecart Hackers Now hide PHP-Based Backdoor In Website Favicons - Colonial Pipeline Paid Nearly $5 Million in Ransom to Cybercriminals - Big Cybersecurity Tips For Remote Workers Who Use Their Own Tech - Can Data Protection Systems Prevent Data At Rest Leakage? - Rapid7 Source Code Breached in Codecov Supply-Chain Attack - Dark Web Getting Loaded With Bogus Covid-19 Vaccines and Forged Cards - Latest Microsoft Windows Updates Patch Dozens of Security Flaws - Nearly All Wi-Fi Devices Are Vulnerable to New FragAttacks - Ransomware Gang Leaks Metropolitan Police Data After Failed Negotiations - Alert: Hackers Exploit Adobe Reader 0-Day Vulnerability in the Wild - U.S. Intelligence Agencies Warn About 5G Network Weaknesses - LIVE Webinar — The Rabbit Hole of Automation - Experts warn of a new Android banking trojan stealing users' credentials - U.S. Declares Emergency in 17 States Over Fuel Pipeline Cyber Attack - Over 25% Of Tor Exit Relays Spied On Users' Dark Web Activities - Is it still a good idea to require users to change their passwords? - Four Plead Guilty to Aiding Cyber Criminals with Bulletproof Hosting - Ransomware Cyber Attack Forced the Largest U.S. Fuel Pipeline to Shut Down - Facebook Will Limit Your WhatsApp Features For Not Accepting Privacy Policy - 4 Major Privacy and Security Updates From Google You Should Know About - Top 12 Security Flaws Russian Spy Hackers Are Exploiting in the Wild - New TsuNAME Flaw Could Let Attackers Take Down Authoritative DNS Servers - 6 Unpatched Flaws Disclosed in Remote Mouse App for Android and iOS - Critical Flaws Hit Cisco SD-WAN vManage and HyperFlex Software - CISO Challenge: Check Your Cybersecurity Skills On This New Competition Site - New Stealthy Rootkit Infiltrated Networks of High-Profile Organizations - New Qualcomm Chip Bug Could Let Hackers Spy On Android Devices - New Spectre Flaws in Intel and AMD CPUs Affect Billions of Computers - New Study Warns of Security Threats Linked to Recycled Phone Numbers - BIOS PrivEsc Bugs Affect Hundreds of Millions of Dell PCs Worldwide - ALERT — New 21Nails Exim Bugs Expose Millions of Email Servers to Hacking - New Pingback Malware Using ICMP Tunneling to Evade C&C Detection - How Should the Service Desk Reset Passwords? - Critical Patch Out for Critical Pulse Secure VPN 0-Day Under Attack - Apple Releases Urgent Security Patches For Zero‑Day Bugs Under Active Attacks - Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys - A Rust-based Buer Malware Variant Has Been Spotted in the Wild - Researchers Uncover Iranian State-Sponsored Ransomware Operation - New Chinese Malware Targeted Russia's Largest Nuclear Submarine Designer - Hackers Exploit SonicWall Zero-Day Bug in FiveHands Ransomware Attacks - Microsoft Finds 'BadAlloc' Flaws Affecting Wide-Range of IoT and OT Devices - A New Slack channel for Cybersecurity Leaders Outside of the Fortune 2000 - A New PHP Composer Bug Could Enable Widespread Supply-Chain Attacks - Passwordstate Warns of Ongoing Phishing Attacks Following Data Breach - LuckyMouse Hackers Target Banks, Companies and Governments in 2020 - How to Conduct Vulnerability Assessments: An Essential Guide for 2021 - Chinese Hackers Attacking Military Organizations With New Backdoor - Researchers Uncover Stealthy Linux Malware That Went Undetected for 3 Years - Cybercriminals Widely Abusing Excel 4.0 Macro to Distribute Malware - F5 BIG-IP Found Vulnerable to Kerberos KDC Spoofing Vulnerability - Attention! FluBot Android Banking Malware Spreads Quickly Across Europe - Hackers Threaten to Leak D.C. Police Informants' Info If Ransom Is Not Paid - Cybersecurity Webinar: Understanding the 2020 MITRE ATT&CK Results - Hackers Exploit 0-Day Gatekeeper Flaw to Attack MacOS Computers - FBI, CISA Uncover Tactics Employed by Russian Intelligence Hackers - Minnesota University Apologizes for Contributing Malicious Code to the Linux Project - Apple AirDrop Bug Could Leak Your Personal Info to Anyone Nearby - How to Test and Improve Your Domain's Email Security? - Emotet Malware Destroys Itself From All Infected Computers - 3.2 Billion Leaked Passwords Contain 1.5 Million Records with Government Emails - Critical RCE Bug Found in Homebrew Package Manager for macOS and Linux - Passwordstate Password Manager Update Hijacked to Install Backdoor on Thousands of PCs - New QNAP NAS Flaws Exploited In Recent Ransomware Attacks - Patch It! - Prometei Botnet Exploiting Unpatched Microsoft Exchange Servers - Researchers Find Additional Infrastructure Used By SolarWinds Hackers - Hackers Exploit VPN to Deploy SUPERNOVA malware on SolarWinds Orion - Cost of Account Unlocks, and Password Resets Add Up - Cybercriminals Using Telegram Messenger to Control ToxicEye Malware - Facebook Busts Palestinian Hackers' Operation Spreading Mobile Spyware - Hackers threaten to leak stolen Apple blueprints if $50 million ransom isn't paid - Improve Your Cyber Security Posture by Combining State of the Art Security Tools - Update Your Chrome Browser ASAP to Patch a Week Old Public Exploit - 3 Zero-Day Exploits Hit SonicWall Enterprise Email Security Appliances - WARNING: Hackers Exploit Unpatched Pulse Secure 0-Day to Breach Organizations - Over 750,000 Users Downloaded New Billing Fraud Apps From Google Play Store - [eBook] Why Autonomous XDR Is Going to Replace NGAV/EDR - 120 Compromised Ad Servers Target Millions of Internet Users - Lazarus APT Hackers are now using BMP images to hide RAT malware - Passwordless: More Mirage Than Reality - Malware That Spreads Via Xcode Projects Now Targeting Apple's M1-based Macs - SysAdmin of Billion-Dollar Hacking Group Gets 10-Year Sentence - What are the different roles within cybersecurity? - Severe Bugs Reported in EtherNet/IP Stack for Industrial Systems - US Sanctions Russia and Expels 10 Diplomats Over SolarWinds Cyberattack - 1-Click Hack Found in Popular Desktop Apps — Check If You're Using Them - Malware Variants: More Sophisticated, Prevalent and Evolving in 2021 - YIKES! Hackers flood the web with 100,000 pages offering malicious PDFs - New WhatsApp Bugs Could've Let Attackers Hack Your Phone Remotely - New JavaScript Exploit Can Now Carry Out DDR4 Rowhammer Attacks - Simplify, then Add Lightness – Consolidating the Technology to Better Defend Ourselves - 2 New Chrome 0-Days Under Attack — Update Your Browser ASAP! - NSA Discovers New Vulnerabilities Affecting Microsoft Exchange Servers - New NAME:WRECK Vulnerabilities Impact Nearly 100 Million IoT Devices - Hackers Using Website's Contact Forms to Deliver IcedID Malware - Detecting the "Next" SolarWinds-Style Cyber Attack - BRATA Malware Poses as Android Security Scanners on Google Play Store - RCE Exploit Released for Unpatched Chrome, Opera, and Brave Browsers - Indian Brokerage Firm Upstox Suffers Data Breach Leaking 2.5 Millions Users' Data - What Does It Take To Be a Cybersecurity Researcher? - Windows, Ubuntu, Zoom, Safari, MS Exchange Hacked at Pwn2Own 2021 - Hackers Tampered With APKPure Store to Distribute Malware Apps - Alert — There's A New Malware Out There Snatching Users' Passwords - [WHITEPAPER] How to Achieve CMMC Security Compliance for Your Business - Gigaset Android Update Server Hacked to Install Malware on Users' Devices - Cisco Will Not Patch Critical RCE Flaw Affecting End-of-Life Business Routers - Researchers uncover a new Iranian malware used in recent cyberattacks - Hackers Exploit Unpatched VPNs to Install Ransomware on Industrial Targets - NIST and HIPAA: Is There a Password Connection? - Android to Support Rust Programming Language to Prevent Memory Flaws - PHP Site's User Database Was Hacked In Recent Source Code Backdoor Attack - WhatsApp-based wormable Android malware spotted on the Google Play Store - Critical Auth Bypass Bug Found in VMware Data Center Security Product - 11 Useful Security Tips for Securing Your AWS Environment - Pre-Installed Malware Dropper Found On German Gigaset Android Phones - Experts uncover a new Banking Trojan targeting Latin American users - Watch Out! Mission Critical SAP Applications Are Under Active Attack - MITRE Madness: A Guide to Weathering the Upcoming Vendor Positioning Storm - Hackers From China Target Vietnamese Military and Government - Hackers Targeting professionals With 'more_eggs' Malware via LinkedIn Job Offers - How the Work-From-Home Shift Impacts SaaS Security - 533 Million Facebook Users' Phone Numbers and Personal Data Leaked Online - How Cyrebro Can Unify Multiple Cybersecurity Defenses to Optimize Protection - DeepDotWeb Admin Pleads Guilty to Money Laundering Charges - Google limits which apps can access the list of installed apps on your device - 22-Year-Old Charged With Hacking Water System and Endangering Lives - Hackers Using a Windows OS Feature to Evade Firewall and Gain Persistence - How to Vaccinate Against the Poor Password Policy Pandemic - Hackers Set Up a Fake Cybersecurity Firm to Target Security Experts - Decided to move on from your NGAV/EDR? A Guide for Small Security Teams to What's Next - Hackers are implanting multiple backdoors at industrial targets in Japan - MobiKwik Suffers Major Breach — KYC Data of 3.5 Million Users Exposed - New Bugs Could Let Hackers Bypass Spectre Attack Mitigations On Linux Systems - Flaws in Ovarro TBox RTUs Could Open Industrial Systems to Remote Attacks - How to Effectively Prevent Email Spoofing Attacks in 2021? - PHP's Git Server Hacked to Insert Secret Backdoor to Its Source code - Watch Out! That Android System Update May Contain A Powerful Spyware - OpenSSL Releases Patches for 2 High-Severity Security Vulnerabilities - Apple Issues Urgent Patch Update for Another Zero‑Day Under Attack - Another Critical RCE Flaw Discovered in SolarWinds Orion Platform - New 5G Flaw Exposes Priority Networks to Location Tracking and Other Attacks - Black Kingdom Ransomware Hunting Unpatched Microsoft Exchange Servers - Critical Cisco Jabber Bug Could Let Attackers Hack Remote Systems - Forcing Self-Service Password Reset (SSPR) Registration to Increase ROI - Chinese Hackers Used Facebook to Hack Uighur Muslims Living Abroad - Purple Fox Rootkit Can Now Spread Itself to Other Windows Computers - Critical Flaws Affecting GE's Universal Relay Pose Threat to Electric Utilities - WARNING: A New Android Zero-Day Vulnerability Is Under Active Attack - Popular Netop Remote Learning Software Found Vulnerable to Hacking - Critical RCE Vulnerability Found in Apache OFBiz ERP Software—Patch Now - Critical F5 BIG-IP Bug Under Active Attacks After PoC Exploit Posted Online - Hackers Infecting Apple App Developers With Trojanized Xcode Projects - Tesla Ransomware Hacker Pleads Guilty; Swiss Hacktivist Charged for Fraud - New Zoom Screen-Sharing Bug Lets Other Users Access Restricted Apps - Critical RCE Flaw Reported in MyBB Forum Software—Patch Your Sites - How to Successfully Pursue a Career in Malware Analysis - Why Cached Credentials Can Cause Account Lockouts and How to Stop it - Google Reveals What Personal Data Chrome and Its Apps Collect On You - Flaws in Two Popular WordPress Plugins Affect Over 7 Million Websites - [Webinar] Oy Vey, We Hired a Large, Hairy Hacker… - Mimecast Finds SolarWinds Hackers Stole Some of Its Source Code - 18-Year-Old Hacker Gets 3 Years in Prison for Massive Twitter 'Bitcoin Scam' Hack - Apple May Start Delivering Security Patches Separately From Other OS Updates - New Mirai Variant and ZHtrap Botnet Malware Emerge in the Wild - Use This One-Click Mitigation Tool from Microsoft to Prevent Exchange Attacks - Rising Demand for DDoS Protection Software Market By 2020-2028 - CEO of Encrypted Chat Platform Indicted for Aiding Organised Criminals - CompTIA Security Certification Prep — Lifetime Access for just $30 - Hackers Are Targeting Microsoft Exchange Servers With Ransomware - Researchers Spotted Malware Written in Nim Programming Language - Another Google Chrome 0-Day Bug Found Actively Exploited In-the-Wild - ProxyLogon PoC Exploit Released; Likely to Fuel More Disruptive Cyber Attacks - New Browser Attack Allows Tracking Users Online With JavaScript Disabled - Fixing the Weakest Link — The Passwords — in Cybersecurity Today - Critical Pre-Auth RCE Flaw Found in F5 Big-IP Platform — Patch ASAP! - Researchers Unveil New Linux Malware Linked to Chinese Hackers - FIN8 Hackers Return With More Powerful Version of BADHATCH PoS Malware - Microsoft Issues Security Patches for 82 Flaws — IE 0-Day Under Active Attacks - 9 Android Apps On Google Play Caught Distributing AlienBot Banker and MRAT Malware - SolarWinds Hack — New Evidence Suggests Potential Links to Chinese Hackers - Cybersecurity Webinar — SolarWinds Sunburst: The Big Picture - Microsoft Exchange Hackers Also Breached European Banking Authority - Apple Issues Patch for Remote Hacking Bug Affecting Billions of its Devices - Malware Can Exploit New Flaw in Intel CPUs to Launch Side-Channel Attacks - Iranian Hackers Using Remote Utilities Software to Spy On Its Targets - Microsoft Exchange Cyber Attack — What Do We Know So Far? - Bug in Apple's Find My Feature Could've Exposed Users' Location Histories - Google Cloud Certifications — Get Prep Courses and Practice Tests at 95% Discount - Mazafaka — Elite Hacking and Cybercrime Forum — Got Hacked! - Researchers Find 3 New Malware Strains Used by SolarWinds Hackers - Google Will Use 'FLoC' for Ad Targeting Once 3rd-Party Cookies Are Dead - Extortion Gang Breaches Cybersecurity Firm Qualys Using Accellion Exploit - CISA Issues Emergency Directive on In-the-Wild Microsoft Exchange Flaws - Replacing EDR/NGAV with Autonomous XDR Makes a Big Difference for Small Security Teams - Hackers Now Hiding ObliqueRAT Payload in Images to Evade Detection - A $50,000 Bug Could've Allowed Hackers Access Any Microsoft Account - URGENT — 4 Actively Exploited 0-Day Flaws Found in Microsoft Exchange - New Chrome 0-day Bug Under Active Attacks – Update Your Browser ASAP! - Researchers Unearth Links Between SunCrypt and QNAPCrypt Ransomware - New 'unc0ver' Tool Can Jailbreak All iPhone Models Running iOS 11.0 - 14.3 - Why do companies fail to stop breaches despite soaring IT security investment? - Gootkit RAT Using SEO to Distribute Malware Through Compromised Sites - Chinese Hackers Targeted India's Power Grid Amid Geopolitical Tensions - SolarWinds Blames Intern for 'solarwinds123' Password Lapse - ALERT: Malicious Amazon Alexa Skills Can Easily Bypass Vetting Process - North Korean Hackers Targeting Defense Firms with ThreatNeedle Malware - Chinese Hackers Using Firefox Extension to Spy On Tibetan Organizations - Cisco Releases Security Patches for Critical Flaws Affecting its Products - Russian Hackers Targeted Ukraine Authorities With Supply-Chain Malware Attack - The Top Free Tools for Sysadmins in 2021 - Experts Warns of Notable Increase in QuickBooks Data Files Theft Attacks - Online Trackers Increasingly Switching to Invasive CNAME Cloaking Technique - Everything You Need to Know About Evolving Threat of Ransomware - Critical RCE Flaws Affect VMware ESXi and vSphere Client — Patch Now - Experts Find a Way to Learn What You're Typing During Video Calls - Shadow Attacks Let Attackers Replace Content in Digitally Signed PDFs - 5 Security Lessons for Small Security Teams for the Post COVID19 Era - Hackers Exploit Accellion Zero-Days in Recent Data Theft and Extortion Attacks - Chinese Hackers Had Access to a U.S. Hacking Tool Years Before It Was Leaked Online - How to Fight Business Email Compromise (BEC) with Email Authentication? - New 'Silver Sparrow' Malware Infected Nearly 30,000 Apple Macs - Masslogger Trojan Upgraded to Steal All Your Outlook, Chrome Credentials - New Hack Lets Attackers Bypass MasterCard PIN by Using Them As Visa Card - Privacy Bug in Brave Browser Exposes Dark-Web Browsing History of Its Users - First Malware Designed for Apple M1 Chip Discovered in the Wild - SolarWinds Hackers Stole Some Source Code for Microsoft Azure, Exchange, Intune - U.S. Charges 3 North Korean Hackers Over $1.3 Billion Cryptocurrency Heist - Agora SDK Bug Left Several Video Calling Apps Vulnerable to Snooping - Researchers Unmask Hackers Behind APOMacroSploit Malware Builder - Malvertisers Exploited WebKit 0-Day to Redirect Browser Users to Scam Sites - Learn How to Manage and Secure Active Directory Service Accounts - Unpatched ShareIT Android App Flaw Could Let Hackers Inject Malware - Managed Service Provider? Watch This Video to Learn about Autonomous XDR - Hackers Exploit IT Monitoring Tool Centreon to Target Several French Entities - A Sticker Sent On Telegram Could Have Exposed Your Secret Chats - Apple will proxy Safe Browsing requests to hide iOS users' IP from Google - Yandex Employee Caught Selling Access to Users' Email Inboxes - Secret Chat in Telegram Left Self-Destructing Media Files On Devices - Researchers Uncover Android Spying Campaign Targeting Pakistan Officials - 10 SIM Swappers Arrested for Stealing $100M in Crypto from Celebrities - The Weakest Link in Your Security Posture: Misconfigured SaaS Settings - Poor Password Security Led to Recent Water Treatment Facility Hack - Iranian Hackers Utilize ScreenConnect to Spy On UAE, Kuwait Government Agencies - Dependency Confusion Supply-Chain Attack Hit Over 35 High-Profile Companies - LodaRAT Windows Malware Now Also Targets Android Devices - Apple Patches 10-Year-Old macOS SUDO Root Privilege Escalation Bug - Microsoft Issues Patches for In-the-Wild 0-day and 55 Others Windows Bugs - Webinar and eBook: The Dark Side of EDR. Are You Prepared? - Ukrainian Police Arrest Author of World's Largest Phishing Service U-Admin - Hacker Tried Poisoning Water Supply After Breaking Into Florida's Treatment System - Detailed: Here's How Iran Spies on Dissidents with the Help of Hackers - Top 5 Bug Bounty Programs to Watch in 2021 - WARNING — Hugely Popular 'The Great Suspender' Chrome Extension Contains Malware - Critical Flaws Reported in Cisco VPN Routers for Businesses—Patch ASAP - Cybercriminals Now Using Plex Media Servers to Amplify DDoS Attacks - New Chrome Browser 0-day Under Active Attack—Update Immediately! - Beware: New Matryosh DDoS Botnet Targeting Android-Based Devices - How to Audit Password Changes in Active Directory - Why Human Error is #1 Cyber Security Threat to Businesses in 2021 - Critical Bugs Found in Popular Realtek Wi-Fi Module for Embedded Devices - Over a Dozen Chrome Extensions Caught Hijacking Google Search Results for Millions - 3 New Severe Security Vulnerabilities Found In SolarWinds Software - Guide: How Security Consolidation Helps Small Cybersecurity Teams - A New Linux Malware Targeting High-Performance Computing Clusters - Data Breach Exposes 1.6 Million Jobless Claims Filed in the Washington State - Agent Tesla Malware Spotted Using New Delivery & Evasion Techniques - Sigma Rules to Live Your Best SOC Life - Hackers Exploiting Critical Zero-Day Bug in SonicWall SMA 100 Devices - A New Software Supply‑Chain Attack Targeted Millions With Spyware - LIVE Webinar: Major Lessons to be Learned from Top Cyber Attacks in 2020 - New Cryptojacking Malware Targeting Apache, Oracle, Redis Servers - Google Discloses Severe Bug in Libgcrypt Encryption Library—Impacting Many Projects - Google uncovers new iOS security feature Apple quietly added after zero-day attacks - Italy CERT Warns of a New Credential Stealing Android Malware - Hezbollah Hacker Group Targeted Telecoms, Hosting, ISPs Worldwide - New CISOs Survey Reveals How Small Cybersecurity Teams Can Confront 2021 - Authorities Seize Dark-Web Site Linked to the Netwalker Ransomware - European Authorities Disrupt Emotet — World's Most Dangerous Malware - New Docker Container Escape Bug Affects Microsoft Azure Functions - Warning Issued Over Hackable ADT's LifeShield Home Security Cameras - Top Cyber Attacks of 2020 - New Attack Could Let Remote Hackers Target Devices On Internal Networks - Using the Manager Attribute in Active Directory (AD) for Password Resets - Apple Warns of 3 iOS Zero-Day Security Vulnerabilities Exploited in the Wild - Targeted Phishing Attacks Strike High-Ranking Company Executives - In the Wake of the SolarWinds Hack, Here's How Businesses Should Respond - TikTok Bug Could Have Exposed Users' Profile Data and Phone Numbers - vCISO Shares Most Common Risks Faced by Companies With Small Security Teams - N. Korean Hackers Targeting Security Experts to Steal Undisclosed Researches - Enhancing Email Security with MTA-STS and SMTP TLS Reporting - Pen Testing By Numbers: Tracking Pen Testing Trends and Challenges - Beware — A New Wormable Android Malware Spreading Through WhatsApp - Experts Detail A Recent Remotely Exploitable Windows Vulnerability - Exclusive: SonicWall Hacked Using 0-Day Bugs In Its Own VPN Product - Beware! Fully-Functional Exploit Released Online for SAP Solution Manager Flaw - MrbMiner Crypto-Mining Malware Links to Iranian Software Company - Missing Link in a 'Zero Trust' Security Model—The Device You're Connecting With! - Sharing eBook With Your Kindle Could Have Let Hackers Hijack Your Account - Importance of Application Security and Customer Data Protection to a Startup - Here's How SolarWinds Hackers Stayed Undetected for Long Enough - Hackers Accidentally Expose Passwords Stolen From Businesses On the Internet - Google Details Patched Bugs in Signal, FB Messenger, JioChat Apps - SolarWinds Hackers Also Breached Malwarebytes Cybersecurity Firm - Researchers Discover Raindrop — 4th Malware Linked to the SolarWinds Attack - New Educational Video Series for CISOs with Small Security Teams - A Set of Severe Flaws Affect Popular DNSMasq DNS Forwarder - FreakOut! Ongoing Botnet Attack Exploiting Recent Linux Vulnerabilities - Apple Removes macOS Feature That Allowed Apps to Bypass Firewall Security - Joker's Stash, The Largest Carding Marketplace, Announces Shutdown - NSA Suggests Enterprises Use 'Designated' DNS-over-HTTPS' Resolvers - WhatsApp Delays Controversial 'Data-Sharing' Privacy Policy Update By 3 Months - Researchers Disclose Undocumented Chinese Malware Used in Recent Attacks - Experts Uncover Malware Attacks Against Colombian Government and Companies - Intel Adds Hardware-Enabled Ransomware Detection to 11th Gen vPro Chips - Buyer's Guide for Securing Internal Environment with a Small Cybersecurity Team - Authorities Take Down World's Largest Illegal Dark Web Marketplace - Hackers Steal Mimecast Certificate Used to Securely Connect with Microsoft 365 - Warning — 5 New Trojanized Android Apps Spying On Users In Pakistan - Microsoft Issues Patches for Defender Zero-Day and 82 Other Windows Flaws - Experts Sound Alarm On New Android Malware Sold On Hacking Forums - Researchers Find Links Between Sunburst and Russian Kazuar Malware - Unveiled: SUNSPOT Malware Was Used to Inject SolarWinds Backdoor - Russian Hacker Gets 12-Years Prison for Massive JP Morgan Chase Hack - How Does Your AD Password Policy Compare to NIST's Password Recommendations? - ALERT: North Korean hackers targeting South Korea with RokRat Trojan - New Attack Could Let Hackers Clone Your Google Titan 2FA Security Keys - SolarWinds Hackers Also Accessed U.S. Justice Department's Email Server - WhatsApp Will Delete Your Account If You Don't Agree Sharing Data With Facebook - Hackers Using Fake Trump's Scandal Video to Spread QNode Malware - FBI, CISA, NSA Officially Blame Russia for SolarWinds Cyber Attack - Healthcare Industry Witnessed 45% Spike in Cyber Attacks Since Nov 20 - Warning: Cross-Platform ElectroRAT Malware Targeting Cryptocurrency Users - Google Speech-to-Text API Can Help Attackers Easily Bypass Google reCAPTCHA - British Court Rejects U.S. Request to Extradite WikiLeaks' Julian Assange - Ticketmaster To Pay $10 Million Fine For Hacking A Rival Company - Secret Backdoor Account Found in Several Zyxel Firewall, VPN Products - Microsoft Says SolarWinds Hackers Accessed Some of Its Source Code - A Google Docs Bug Could Have Allowed Hackers See Your Private Documents - AutoHotkey-Based Password Stealer Targeting US, Canadian Banking Users - A New SolarWinds Flaw Likely Had Let Hackers Install SUPERNOVA Malware - Police Arrest 21 WeLeakInfo Customers Who Bought Breached Personal Data - Attackers Abusing Citrix NetScaler Devices to Launch Amplified DDoS Attacks - Microsoft Warns CrowdStrike of Hackers Targeting Azure Cloud Customers - Google Discloses Poorly-Patched, Now Unpatched, Windows 0-Day Bug - North Korean Hackers Trying to Steal COVID-19 Vaccine Research - How to Defend Against Malware, Phishing, and Scams During COVID-19 Crisis - Law Enforcement Seizes Joker's Stash — Stolen Credit Card Marketplace - New Critical Flaws in Treck TCP/IP Stack Affect Millions of IoT Devices - Cybercriminals' Favorite Bulletproof VPN Service Shuts Down In Global Action - A Second Hacker Group May Have Also Breached SolarWinds, Microsoft Says - Two Critical Flaws — CVSS Score 10 — Affect Dell Wyse Thin Client Devices - Common Security Misconfigurations and Their Consequences - iPhones of 36 Journalists Hacked Using iMessage Zero-Click Exploit - How to Use Password Length to Set Best Password Expiration Policy - Microsoft Says Its Systems Were Also Breached in Massive SolarWinds Hack - Software Supply-Chain Attack Hits Vietnam Government Certification Authority - New 5G Network Flaws Let Attackers Track Users' Locations and Steal Data - Ransomware Attackers Using SystemBC Malware With RAT and Tor Proxy - New Evidence Suggests SolarWinds' Codebase Was Hacked to Inject Backdoor - What is Geocoding? — How to Find Coordinates of An Address - SolarWinds Issues Second Hotfix for Orion Platform Supply Chain Attack - Download the Essential Guide to Response Automation - Wormable Gitpaste-12 Botnet Returns to Target Linux Servers, IoT Devices - Nearly 18,000 SolarWinds Customers Installed Backdoored Software - Exfiltrating Data from Air-Gapped Computers via Wi-Fi Signals (Without Wi-Fi Hardware) - SoReL-20M: A Huge Dataset of 20 Million Malware Samples Released Online - US Agencies and FireEye Were Hacked Using SolarWinds Software Backdoor - Mount Locker Ransomware Offering Double Extortion Scheme to Other Hackers - Governance Considerations for Democratizing Your Organization's Data in 2021 - Watch Out! Adrozek Malware Hijacking Chrome, Firefox, Edge, Yandex Browsers - Valve's Steam Server Bugs Could've Let Hackers Hijack Online Games - Cisco Reissues Patches for Critical Bugs in Jabber Video Conferencing Software - Facebook Tracks APT32 OceanLotus Hackers to IT Company in Vietnam - 48 U.S. States and FTC are suing Facebook for illegal monopolization - AWS, Cisco, and CompTIA Exam Prep — Get 22 Courses for $4.50 Each - Amnesia:33 — Critical TCP/IP Flaws Affect Millions of IoT Devices - Russian APT28 Hackers Using COVID-19 as Bait to Deliver Zebrocy Malware - Cybersecurity Firm FireEye Got Hacked; Red-Team Pentest Tools Stolen - WARNING — Critical Remote Hacking Flaws Affect D-Link VPN Routers - Microsoft Releases Windows Update (Dec 2020) to Fix 58 Security Flaws - Download: How XDR Platforms Are Changing The Game For Ransomware Protection - Zero-Click Wormable RCE Vulnerability Reported in Microsoft Teams - Iranian RANA Android Malware Also Spies On Instant Messengers - NSA Warns Russian Hacker Exploiting VMware Bug to Breach Corporate Networks - How DMARC Can Stop Criminals Sending Fake Emails on Behalf of Your Domain - Payment Card Skimmer Group Using Raccoon Info-Stealer to Siphon Off Data - How Organizations Can Prevent Users from Using Breached Passwords - Hackers Targeting Companies Involved in Covid-19 Vaccine Distribution - Several Unpatched Popular Android Apps Put Millions of Users at Risk of Hacking - Hackers-For-Hire Group Develops New 'PowerPepper' In-Memory Malware - TrickBot Malware Gets UEFI/BIOS Bootkit Feature to Remain Undetected - Multiple Botnets Exploiting Critical Oracle WebLogic Bug — PATCH NOW - Experts Uncover 'Crutch' Russian Malware Used in APT Attacks for 5 Years - CISO with a small security team? Learn from your peers' experience with this free e-book - Google Hacker Details Zero-Click 'Wormable' Wi-Fi Exploit to Hack iPhones - 4 Free Online Cyber Security Testing Tools For 2021 - Nation-State Hackers Caught Hiding Espionage Activities Behind Crypto Miners - Incomplete 'Go SMS Pro' Patch Left Millions of Users' Data Still Exposed Online - Indian National Gets 20-Year Jail in United States for Running Scam Call Centers - Quick Guide — How to Troubleshoot Active Directory Account Lockouts - Digitally Signed Bandook Malware Once Again Targets Multiple Sectors - Become a White Hat Hacker — Get 10 Top-Rated Courses at 97% OFF - Interpol Arrest 3 Nigerian BEC Scammers For Targeting Over 50,000 Entities - 2-Factor Authentication Bypass Flaw Reported in cPanel and WHM Software - Baidu's Android Apps Caught Collecting and Leaking Sensitive User Data - Stantinko Botnet Now Targeting Linux Servers to Hide Behind Proxies - Critical Unpatched VMware Flaw Affects Multiple Corporates Products - Why Replace Traditional Web Application Firewall (WAF) With New Age WAF? - WARNING: Unpatched Bug in GO SMS Pro App Exposes Millions of Media Messages - Facebook Messenger Bug Lets Hackers Listen to You Before You Pick Up the Call - Researchers Warn of Critical Flaw Affecting Industrial Automation Systems - Evolution of Emotet: From Banking Trojan to Malware Distributor - Use This Ultimate Template to Plan and Monitor Your Cybersecurity Budgets - Apple Lets Some of its Big Sur macOS Apps Bypass Firewall and VPNs - Chinese APT Hackers Target Southeast Asian Government Institutions - Researcher Discloses Critical RCE Flaws In Cisco Security Manager - Trojanized Security Software Hits South Korea Users in Supply-Chain Attack - Uncovered: APT 'Hackers For Hire' Target Financial, Entertainment Firms - SAD DNS — New Flaws Re-Enable DNS Cache Poisoning Attacks - Live Webinar: Reducing Complexity by Increasing Consolidation for SMEs - New ModPipe Point of Sale (POS) Malware Targeting Restaurants, Hotels - MISSIONS — The Next Level of Interactive Developer Security Training - Two New Chrome 0-Days Under Active Attacks – Update Your Browser - Build Your 2021 Cybersecurity Plan With This Free PPT Template - Over 2800 e-Shops Running Outdated Magento Software Hit by Credit Card Hackers - Microsoft Releases Windows Security Updates For Critical Flaws - Watch Out! New Android Banking Trojan Steals From 112 Financial Apps - Worried About SaaS Misconfigurations? Check These 5 Settings Everybody Misses - Windows 10, iOS, Chrome, Firefox and Others Hacked at Tianfu Cup Competition - North Korean Hackers Used 'Torisma' Spyware in Job Offers-based Attacks - Update Your iOS Devices Now — 3 Actively Exploited 0-Days Discovered - Deception Technology: No Longer Only A Fortune 2000 Solution - Premium-Rate Phone Fraudsters Hack VoIP Servers of 1200 Companies - If You Don't Have A SASE Cloud Service, You Don't Have SASE At All - New Kimsuky Module Makes North Korean Spyware More Powerful - New Chrome Zero-Day Under Active Attacks – Update Your Browser - How to Prevent Pwned and Reused Passwords in Your Active Directory - New NAT/Firewall Bypass Attack Lets Hackers Access Any TCP/UDP Service - WARNING: Google Discloses Windows Zero-Day Bug Exploited in the Wild - KashmirBlack Botnet Hijacks Thousands of Sites Running On Popular CMS Platforms - Browser Bugs Exploited to Install 2 New Backdoors on Targeted Computers - How to Run Google SERP API Without Constantly Changing Proxy Servers - [Webinar and eBook]: Are You’re Getting The Best Value From Your EDR Solution? - FBI, DHS Warn Of Possible Major Ransomware Attacks On Healthcare Systems - TrickBot Linux Variants Active in the Wild Despite Recent Takedown - Google Removes 21 Malicious Android Apps from Play Store - Experts Warn of Privacy Risks Caused by Link Previews in Messaging Apps - New Framework Released to Protect Machine Learning Systems From Adversarial Attacks - New Chrome 0-day Under Active Attacks – Update Your Browser Now - Popular Mobile Browsers Found Vulnerable To Address Bar Spoofing Attacks - Windows GravityRAT Malware Now Also Targets macOS and Android Devices - Download Ultimate 'Security for Management' Presentation Template - U.S. Charges 6 Russian Intelligence Officers Over Destructive Cyberattacks - مايكروسوفت تصدر تحديثات أمان طارئة لنظام ويندوز - فوكسكون تريد أن تصبح “أندرويد” السيارات الكهربائية - Google Warns of Zero-Click Bluetooth Flaws in Linux-based Devices - Breach at Dickey’s BBQ Smokes 3M Cards - Microsoft Patch Tuesday, October 2020 Edition - برمجية جديدة لطلب الفدية تحذر منها مايكروسوفت - 240 تطبيق أندرويد يقدم الإعلانات الاحتيالية - برامج مكافحة الفيروسات تعاني من ثغرات أمنية - مايكروسوفت تسمح لبعض موظفيها بالعمل من المنزل دائمًا - 55 New Security Flaws Reported in Apple Software and Services - AA20-280A: Emotet Malware - Attacks Aimed at Disrupting the Trickbot Botnet - Researchers Fingerprint Exploit Developers Who Help Several Malware Authors - FinSpy Spyware for Mac and Linux OS Targets Egyptian Organisations - Microsoft: Attackers Exploiting ‘ZeroLogon’ Windows Flaw - Govt. Services Firm Tyler Technologies Hit in Apparent Ransomware Attack - طفلة تكشف عددًا كبيرًا من تطبيقات الاحتيال - AA20-266A: LokiBot Malware - تسريب بيانات محرك بحث Bing من مايكروسوفت - أول حالة وفاة مرتبطة بهجوم طلب الفدية الإلكتروني - Due Diligence That Money Can’t Buy - New Linux Malware Steals Call Details from VoIP Softswitch Systems - Microsoft Patch Tuesday, Sept. 2020 Edition - تحذيرات من ارتفاع في هجمات إيموتيت - الملايين من مواقع وورد بريس عرضة للهجوم - Evilnum hackers targeting financial firms with a new Python-based RAT - The Joys of Owning an ‘OG’ Email Account - مستخدمو PayPal يتعرضون لعمليات احتيال - آبل وافقت بالخطأ على برامج ضارة متخفية - Terracotta .. تطبيقات كاذبة تعد بأحذية مجانية - Sendgrid Under Siege from Hacked Accounts - اكتشاف ثغرة في أندرويد تسمح للتطبيقات الضارة بسحب بيانات المستخدم الخاصة - ماسك يؤكد أن أحد مصانع تيسلا كان هدفًا لهجوم إلكتروني “خطير” - Confessions of an ID Theft Kingpin, Part II - AA20-239A: FASTCash 2.0: North Korea's BeagleBoyz Robbing Banks - FBI, CISA Echo Warnings on ‘Vishing’ Threat - زيادة حملات التصيد الصوتي بسبب وباء كورونا - Google Drive تسمح للمهاجمين بخداعك - Former Uber Security Chief Charged Over Covering Up 2016 Data Breach - Microsoft Put Off Fixing Zero Day for 2 Years - Medical Debt Collection Firm R1 RCM Hit in Ransomware Attack - AA20-227A: Phishing Emails Used to Deploy KONNI Malware - New Attack Lets Hackers Decrypt VoLTE Encryption to Spy on Phone Calls - Why & Where You Should You Plant Your Flag - AA20-225A: Malicious Cyber Actor Spoofing COVID-19 Loan Relief Webpage via Phishing Emails - Microsoft Patch Tuesday, August 2020 Edition - كروم يعرّض مليارات المستخدمين لخطر سرقة البيانات - الأمم المتحدة: الجرائم الإلكترونية تشهد زيادة حادة أثناء الوباء - Capital One Fined $80 Million for 2019 Data Breach Affecting 106 Million Users - Porn Clip Disrupts Virtual Court Hearing for Alleged Twitter Hacker - كانون تعاني من هجوم طلب الفدية - Robocall Legal Advocate Leaks Customer Data - Three Charged in July 15 Twitter Compromise - 17-Year-Old 'Mastermind', 2 Others Behind the Biggest Twitter Hack Arrested - Is Your Chip Card Secure? Much Depends on Where You Bank - Business ID Theft Soars Amid COVID Closures - AA20-209A: Potential Legacy Risk from Malware Targeting QNAP NAS Devices - قراصنة روسيا يضربون الشبكات الأمريكية مرة أخرى - فريق جوجل الأمني يقاطع برنامج آبل الأمني - AA20-206A: Threat Actor Exploitation of F5 BIG-IP CVE-2020-5902 - جوجل تستخدم أندرويد لتتبع استخدام التطبيقات المنافسة - شركة الساعات Garmin تصاب بالشلل بسبب هجوم فدية - NY Charges First American Financial for Massive Data Leak - Twitter Hacking for Profit and the LoLs - آبل تبدأ بتقديم هواتف معدلة للباحثين الأمنيين لإيجاد الثغرات في iOS - علامات تدل على أن هاتف أندرويد يحوي برامج ضارة - تويتر تكشف عن معلومات جديدة تخص الاختراق الكبير - تويتر تعلن عن عدد الحسابات المُستهدفة في الاختراق الأخير - أمريكا وبريطانيا وكندا تتهم روسيا بمحاولة اختراق وسرقة لقاح كورونا - AA20-198A: Malicious Cyber Actor Use of Network Tunneling and Spoofing to Obfuscate Geolocation - أدوات الموظفين ساهمت في اختراق تويتر - تويتر تتعرض لخرق أمني كبير - ‘Wormable’ Flaw Leads July Microsoft Patches - Breached Data Indexer ‘Data Viper’ Hacked - مايكروسوفت تُحذِّر من ثغرة خطرة عمرها 17 عامًا في Windows DNS Server - مايكروسوفت تريد التخلص من برمجيات لينكس الضارة - محتالو بيتكوين سرقوا 24 مليون دولار في عام 2020 - AA20-195A: Critical Vulnerability in SAP NetWeaver AS Java - Zoom تصحح ثغرة أمنية خطيرة تؤثر على ويندوز 7 - أجهزة التوجيه المنزلية الأكثر شيوعًا تعاني من عيوب خطيرة - Unpatched Critical Flaw Disclosed in Zoom Software for Windows 7 or Earlier - حملة تصيد تستهدف مستخدمي مايكروسوفت في 62 دولة - E-Verify’s “SSN Lock” is Nothing of the Sort - كيفية تأمين أجهزة إنترنت الأشياء الخاصة بشركتك - اختراق نظام EncroChat المشفر للدردشة - Police Arrested Hundreds of Criminals After Hacking Into Encrypted Chat Network - Ransomware Gangs Don’t Need PR Help - كيفية تجنب برنامج الفدية الجديد EvilQuest على أجهزة Mac - AA20-182A: EINSTEIN Data Trends – 30-day Lookback - فيسبوك تشارك بيانات المستخدم مع المطورين - باحث يكشف عن ثغرة خصوصية في macOS وينتقد آبل - COVID-19 ‘Breach Bubble’ Waiting to Pop? - الولايات المتحدة تبدأ بإنهاء المعاملة الخاصة لهونج كونج لدواعٍ أمنية - TikTok يتجسس سرًا على مستخدمي آيفون - 'Satori' IoT DDoS Botnet Operator Sentenced to 13 Months in Prison - New Charges, Sentencing in Satori IoT Botnet Conspiracy - تويتر يحظر مجموعة سرَّبت سجلات الشرطة من العديد من الدول - ‘BlueLeaks’ Exposes Files from Hundreds of Police Departments - Turn on MFA Before Crooks Do It For You - وكالة المخابرات المركزية مسؤولة عن سرقة أدواتها للقرصنة السرية - أمازون تعرضت لأكبر هجوم DDoS تم تسجيله على الإطلاق - InvisiMole Hackers Target High-Profile Military and Diplomatic Entities - FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy - When Security Takes a Backseat to Productivity - حملة تجسس هائلة تهاجم مستخدمي متصفح كروم - LinkedIn تساهم في اختراق شركات الدفاع الأوروبية - Zoom تتراجع وتَعِد بتوفير تقنية التشفير لجميع المستخدمين دون استثناء - أدوبي تحدد الموعد النهائي لإنهاء الدعم عن Flash Player - Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com - هجوم Lamphone يتيح استعادة المحادثات من مصباح الإضاءة - ActionSpy .. برمجية أندرويد ضارة تستهدف الأويغور - A Bug in Facebook Messenger for Windows Could've Helped Malware Gain Persistence - شركة هندية غامضة تدير أكبر خدمة قرصنة في العالم - Microsoft Patch Tuesday, June 2020 Edition - Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity - هوندا توقف الإنتاج مؤقتًا بسبب هجوم سيبراني - كاسبرسكي تتعاون مع الاتحاد السعودي للأمن السيبراني في التدريب على الأمن الرقمي - Owners of DDoS-for-Hire Service vDOS Get 6 Months Community Service - دراسة: نحو نصف الموظفين العرب العاملين من منازلهم لم يتلقوا إرشادات في الأمن الرقمي - New USBCulprit Espionage Tool Steals Data From Air-Gapped Computers - Romanian Skimmer Gang in Mexico Outed by KrebsOnSecurity Stole $1.2 Billion - اكتشاف برنامج فدية خبيث يتستّر بثوب ملفات جافا - برنامج تدريب مبتكر على الوعي الأمني من كاسبرسكي - كاسبرسكي تكشف تفاصيل جديدة لهجمات استهدفت الشركات الصناعية - REvil Ransomware Gang Starts Auctioning Victim Data - Anonymous تعود للظهور وسط الاضطرابات الأمريكية - آبل تطلق تحديثًا يصلح الثغرة وراء أحدث أداة “جيلبريك” - كاسبرسكي تعرض Kaspersky Total Security مجانًا لثلاثة أشهر - Career Choice Tip: Cybercrime is Mostly Boring - A New Free Monitoring Tool to Measure Your Dark Web Exposure - UK Ad Campaign Seeks to Deter Cybercrime - Report: ATM Skimmer Gang Had Protection from Mexican Attorney General’s Office - اكتشاف ثغرة خطرة في جميع إصدارات أندرويد تقريبًا - Riding the State Unemployment Fraud ‘Wave’ - NSO Group تنتحل شخصية فيسبوك لنشر برامج التجسس - How Cybersecurity Enables Government, Health, EduTech Cope With COVID-19 - آبل وجوجل تطلقان رسميًا الإصدار الأولي من تقنية مكافحة كورونا - Ukraine Nabs Suspect in 773M Password ‘Megabreach’ - مليارات الأجهزة معرضة للقرصنة بسبب البلوتوث - تسريب التعليمات البرمجية لميزة السيارة الذكية من مرسيدس - قراصنة هددوا بنشر “غسيل ترامب الوسخ” ينشرون عشرات الرسائل - قراصنة يهددون ترامب بنشر “غسيله الوسخ” ما لم يدفع فدية 42 مليون دولار - ورشة التصدي للهجمات المتقدمة واختراق الدومين - تروجان جديد يستهدف هيئات دبلوماسية في أوروبا - HTTP Status Codes Command This Malware How to Control Hacked Systems - 73 % من الموظفين العاملين من منازلهم لم يتلقوا إرشادات في الأمن الرقمي - Microsoft Patch Tuesday, May 2020 Edition - Ransomware Hit ATM Giant Diebold Nixdorf - 84% من المستخدمين في الإمارات يحاولون حذف معلوماتهم الخاصة من الإنترنت - الآلاف من تطبيقات أندرويد تسرب بيانات المستخدمين - الملايين من الحواسيب عرضة للقرصنة بسبب Thunderbolt - هجمات DDoS على المواقع التعليمية والحكومية تتضاعف 3 مرات في 2020 - فيسبوك تطلق تصميمها الداكن الجديد لجميع المستخدمين - DigitalOcean Data Leak Incident Exposed Some of Its Customers Data - Meant to Combat ID Theft, Unemployment Benefits Letter Prompts ID Theft Worries - Tech Support Scam Uses Child Porn Warning - Europe’s Largest Private Hospital Operator Fresenius Hit by Ransomware - خلل في إنستاجرام يسمح بنشر صور طويلة جدًا - ثغرة تؤثر على جميع هواتف سامسونج المباعة منذ 2014 - AA20-126A: APT Groups Target Healthcare and Essential Services - مايكروسوفت تعرض 100,000 دولار مكافأةً لمن يخترق أحد أنظمتها - تويتر تختبر ميزة تُحذر من يرد بتغريدات مسيئة - خدمة جديدة من كاسبرسكي تتيح إنذارات فورية بالتهديدات الرقمية - تيسلا تكشف عن معلومات العملاء الحساسة - الجهات التخريبية تنشط بتهديداتها الرقمية المتقدمة في آسيا - خدمات Meet و Teams و WebEx تجمع عنك بيانات أكثر مما تعتقد - Critical SaltStack RCE Bug (CVSS Score 10) Affects Thousands of Data Centers - اكتشاف برمجية خبيثة في أندرويد تسرق كلمات المرور - الأمن الإلكتروني في أسبوع: تحديث لتأمين Zoom واختراق حسابات Nintendo والمزيد - AA20-120A: Microsoft Office 365 Security Recommendations - PhantomLance حملة تجسس إلكتروني معقدة تستهدف أجهزة أندرويد - Would You Have Fallen for This Phone Scam? - آبل: لا دليل على استغلال ثغرة تطبيق البريد في آيفون وآيباد - احذر .. رسالة نصية بسيطة تعطل جهاز آيفون - Malicious USB Drives Infect 35,000 Computers With Crypto-Mining Botnet - When in Doubt: Hang Up, Look Up, & Call Back - تطبيق Zoom يحلق عاليًا بالرغم من المنع في بعض الدول - Zoom تطلق تحديثًا لحل مشكلات الخصوصية والأمن - كاسبرسكي تقدم أداة لحماية الموظفين العاملين عن بعد - اكتشاف ثغرة في آيفون وآيباد سمحت للمتسللين بسرقة البيانات لسنوات - كاسبرسكي: برمجيات خبيثة تتستر بأسماء منسّقي الموسيقى العالميين - الإمارات تتعرض إلى 1,541 هجوم إلكتروني خلال انتشار كورونا - جوجل تحظر 18 مليون رسالة احتيالية يوميًا - فيسبوك تضيف تفاعلات جديدة لإظهار الاهتمام في زمن كورونا - CISA Warns Patched Pulse Secure VPNs Could Still Expose Organizations to Hackers - فيسبوك ستُنبّه من يتفاعل مع المعلومات غير الصحيحة عن كورونا - AA20-107A: Continued Threat Actor Exploitation Post Pulse Secure VPN Patching - AA20-106A: Guidance on the North Korean Cyber Threat - Microsoft Patch Tuesday, April 2020 Edition - New IRS Site Could Make it Easy for Thieves to Intercept Some Stimulus Payments - 7 Ways Hackers and Scammers Are Exploiting Coronavirus Panic - مجرمو الإنترنت يتخفون تحت أسماء تطبيقات الاجتماعات لتوزيع البرمجيات الخبيثة - AA20-099A: COVID-19 Exploited by Malicious Cyber Actors - تويتر تُلغي خيارًا كان يمنعها من مشاركة بيانات المستخدمين مع المعلنين - دعوى جماعية ضد Zoom بسبب المشكلات الأمنية - Microsoft Buys Corp.com So Bad Guys Can’t - سامسونج توقف الدعم الأمني عن اثنين من أشهر هواتفها - التروجان xHelper يواصل إصابة آلاف الأجهزة.. وإزالته شبه مستحيلة - احذر .. الآلاف من تطبيقات أندرويد تتضمن أبوابًا خلفية - بريطانيا: ربط انتشار كورونا بشبكات 5G “مجرد هراء وخطير” - iPad Pro مزود بميزة لمنع إساءة استخدام الميكروفون - How Just Visiting A Site Could Have Hacked Your iPhone or MacBook Camera - ‘War Dialing’ Tool Exposes Zoom’s Password Problems - 28 % من الآباء في الشرق الأوسط قلقون من محتوى الإنترنت - Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others - Annual Protest to ‘Fight Krebs’ Raises €150K+ - كاسبرسكي: خطر تنزيل البرمجيات الخبيثة في الإمارات أيام العمل أعلى بنسبة 66% - تقرير: Zoom ليس آمنًا كما يدعي - تطبيق Houseparty يعرض مليون دولار لمن يثبت أنه يسرق البيانات - كاسبرسكي تكشف عن هجوم يستهدف الهواتف المحمولة في جنوب شرق آسيا - احذر .. حيلة بسيطة عبر تطبيق واتساب تخطف حسابك - خدمة Zoom تطلق تحديثًا يمنع فيسبوك من جمع بيانات المستخدمين - خلل في iOS يمنع تطبيقات VPN من تشفير البيانات - تطبيق مكالمات الفيديو Zoom يرسل البيانات سرًا إلى فيسبوك - Hackers Exploit Zero-Day Bugs in Draytek Devices to Target Enterprise Networks - US Government Sites Give Bad Security Advice - التروجان Ginp يطلب المال لتعريف المستخدم بالمصابين بفيروس كورونا من حوله - Who’s Behind the ‘Web Listings’ Mail Scam? - كاسبرسكي تكتشف تهديدًا خبيثًا ضمن حملة رقمية تخريبية موجهة في الشرق الأوسط - مايكروسوفت: هناك مهاجمون يستغلون ثغرة اكتشفوها في ويندوز - الكشف عن نتائج الدراسة الاستطلاعية المشتركة بين كاسبرسكي والبوابة العربية للأخبار التقنية - Warning — Two Unpatched Critical 0-Day RCE Flaws Affect All Windows Versions - Zyxel Flaw Powers New Mirai IoT Botnet Strain - أوبر توقف بعض خدماتها في السعودية بسبب كورونا - شركات البث تخفض جودة الفيديو في أوروبا بسبب كورونا - مؤامرات فيروس كورونا تنتشر على واتساب مع استمرار تفشيه - كاسبرسكي: تأمين العمل عن بعد أولوية قصوى في هذه المرحلة - برنامج الحماية المتقدمة من جوجل يحظر تطبيقات أندرويد الخارجية - AA20-073A: Enterprise VPN Security - Amazon GuardDuty Enhanced Findings - AA20-049A: Ransomware Impacting Pipeline Operations - AA20-031A: Detecting Citrix CVE-2019-19781 - شبكات الاتصالات البريطانية تتعطل بسبب كورونا - كاسبرسكي: برمجية تعقب خطرة تفتح الأجهزة والتطبيقات وتقرأ برمجيات التراسل - Europol Arrests 26 SIM Swapping Fraudsters For Stealing Over $3 Million - The Web’s Bot Containment Unit Needs Your Help - CovidLock .. برنامج ضار يتنكر كتطبيق لتتبع فيروس كورونا - تطبيقات آيفون وآيباد شهيرة تتجسس على البيانات - New Android Cookie-Stealing Malware Found Hijacking Facebook Accounts - مايكروسوفت تصدر تحديثًا عاجلًا لثغرة أمنية “مسربة” في ويندوز 10 - كاسبرسكي: ملفات تعريف الارتباط مُعرضة للسرقة - Microsoft Patch Tuesday, March 2020 Edition - مايكروسوفت تصدر أكبر حزمة تصحيحات في تاريخ الشركة - كورونا يصل إلى موظفي آبل - كاسبرسكي تكتشف برمجية خبيثة تنتشر عبر شهادات أمنية مزيفة - جوجل تحذف تطبيقًا إيرانيًا رسميًا لاكتشاف فيروس كورونا - U.S. Govt. Makes it Harder to Get .Gov Domains - مجموعات قرصنة حكومية تخترق خوادم Microsoft Exchange - مفاتيح سيارات تويوتا وهيونداي وكيا قابلة للاستنساخ - معالجات AMD عرضة لهجمات جديدة - معالجات إنتل تعاني من عيب أمني غير قابل للإصلاح - أكثر من مليار هاتف أندرويد معرض لخطر الاختراق - This Unpatchable Flaw Affects All Intel CPUs Released in Last 5 Years - الهجمات ضد مزودي خدمات الاتصالات تهدف للحرمان من الخدمة - The Case for Limiting Your Browser Extensions - French Firms Rocked by Kasbah Hacker? - جوني كرم: البيانات هي النفط الجديد وحمايتها ضرورة ملحة - Kr00k.. ثغرة أمنية تؤثر على مليار جهاز متصل بالإنترنت - FCC Proposes to Fine Wireless Carriers $200M for Selling Customer Location Data - الاستخبارات البريطانية تريد وصولًا استثنائيًا إلى الرسائل المشفرة - GhostCat: New High-Risk Vulnerability Affects Servers Running Apache Tomcat - Zyxel 0day Affects its Firewall Products, Too - تضاعف إصابات الجوال بالهجمات الخبيثة في السعودية خلال 2019 - موزيلا تجعل فايرفوكس أكثر خصوصية وأمان - Signal .. تطبيق المراسلة المفضل لدى المفوضية الأوروبية - سوفوس تطلق نسخة إكستريم من جدار حماية XG - سيكيوروركس: تنامي تهديد برمجيات طلب الفدية بسبب أرباحها المادية - وحدة مانديانت تكشف عن اعتماد هجمات الفدية كمصدر ثانوي للدخل - مؤسس الويب يكثف جهوده لإعادة تشكيل الإنترنت - السويد تبدأ اختبار أول عملة رقمية في العالم تابعة لبنك مركزي - Encoding Stolen Credit Card Data on Barcodes - Pay Up, Or We’ll Make Google Ban Your Ads - حملة من أزورولت AZORult للاستيلاء على العملات الرقمية المشفرة - التروجان المصرفي Ginp يدفع ضحاياه إلى كشف بياناتهم المصرفية - A Light at the End of Liberty Reserve’s Demise? - جوجل تزيل أكثر من 500 إضافة ضارة لمتصفح كروم - U.S. Charges Huawei with Stealing Trade Secrets from 6 Companies - مسؤولون سويسريون يضغطون للتحقيق في عملية التجسس الأمريكية الألمانية - كورونا ينعش قيمة البيتكوين لتتجاوز 10,000 دولار - لأول مرة .. تهديدات البرامج الضارة على ماكنتوش تتجاوز ويندوز - Microsoft Patch Tuesday, February 2020 Edition - مايكروسوفت تصحح 99 عيبًا أمنيًا في أنظمة ويندوز - أندرويد يتيح للمهاجمين إرسال برامج ضارة عبر البلوتوث - Dangerous Domain Corp.com Goes Up for Sale - برمجيات خبيثة تتستر وراء أنجح الأفلام - جوجل كروم يحظر التنزيلات غير الآمنة في أبريل - حساب فيسبوك على تويتر يتعرض للاختراق - The Rise of the Open Bug Bounty Project - When Your Used Car is a Little Too ‘Mobile’ - أرامكو السعودية تنجح في التصدي للهجمات الإلكترونية المتزايدة - أبرز تهديدات أمن الحوسبة السحابية وفقًا لبالو ألتو نتوركس - آبل تصلح ثغرة في macOS تكشف عن لقطات غير مشفرة للرسائل المشفرة - اتفاقية بين UL والهيئة الوطنية السعودية لتعزيز الأمن السيبراني - Booter Boss Busted By Bacon Pizza Buy - واتساب يعاني من ثغرة تسمح للمهاجمين بالوصول إلى الملفات - جوجل تعترف بإرسال مقاطع فيديو خاصة لمستخدمين على Google Photos إلى غرباء - برامج الفدية الجديدة تتطفل على البنية التحتية الحيوية - تويتر تصلح ثغرة سمحت بمطابقة أرقام الهواتف مع الحسابات - Iowa Prosecutors Drop Charges Against Men Hired to Test Their Security - 6 إعدادات يجب ضبطها على نظام ويندوز 10 لتأمينه - كيف يمكنك إخفاء ملفاتك وتطبيقاتك المهمة على هاتف سامسونج؟ - برمجيات خبيثة تستغل جوائز جرامي العالمية للانتشار - 6 نصائح لتأمين جهازك الذي يعمل بنظام ويندوز 7 - مشروع قانون أمريكي قد يعاقب الشركات التي تشفر بيانات المستخدمين - Wawa Breach: Hackers Put 30 Million Stolen Payment Card Details for Sale - Sprint Exposed Customer Support Site to Web - Wawa Breach May Have Compromised More Than 30 Million Payment Cards - مكافح الفيروسات الشهير أفاست يبيع بياناتك الشخصية - إضافة ووردبريس مجانية لتأمين موقعك ضد الهجمات الإلكترونية - فيسبوك تطلق ميزة “النشاط خارج فيسبوك” المثيرة لجميع المستخدمين - حتى بعد انتهاء الدعم.. مايكروسوفت تُجبر على إطلاق تحديث لويندوز 7 - تعرف على المختبر السيبراني الذي يحاول فك تشفير جهاز آيفون - تطبيقات أندرويد تناقض نفسها حول جمع البيانات - آبل تفي بوعدها من خلال تخفيض تتبع بيانات الموقع - Apple Addresses iPhone 11 Location Privacy Concern - كيف يمكنك تأمين رسائل البريد الإلكتروني والرسائل النصية؟ - مايكروسوفت تكشف عن خرق أمني لقاعدة بيانات دعم العملاء - DDoS Mitigation Firm Founder Admits to DDoS - انقطاع خدمات جوجل للبعض في تركيا بسبب هجوم إلكتروني - انتبه .. الأخ الكبير يراقب كيف تكتب أو تحمل هاتفك - خلل مفاجئ في تطبيق واتساب يؤدي إلى توقفه عن العمل - الإنفاق العالمي على تقنية المعلومات سيبلغ 3.9 تريليون دولار في 2020 - تقرير: فيسبوك تتراجع عن عرض الإعلانات داخل واتساب - 6 خطوات لمواجهة الهجمات الإلكترونية الرامية إلى طلب الفدية - مخطط احتيالي جديد يستغل التعويض عن حوادث تسرب البيانات - Broadening the Scope: A Comprehensive View of Pen Testing - ثغرة أمنية في ويندوز 10 وتيسلا تتخطى قيمة فورد وجنرال موتورز معًا والمزيد - اكتشاف 17 تطبيقًا تستنزف البطارية على متجر جوجل - جوجل تحول آيفون إلى مفتاح أمان للمصادقة الثنائية - ويندوز 7.. إليك الخيارات المتاحة بعد توقف مايكروسوفت عن دعمه - Patch Tuesday, January 2020 Edition - Cryptic Rumblings Ahead of First 2020 Patch Tuesday - بادر بالتحديث.. مايكروسوفت تصلح ثغرة تؤثر على مئات الملايين من حواسيب ويندوز 10 - 89% من مسؤولي أمن المعلومات: الموازنات التقنية في نصف الشركات تضغط على الأمن الرقمي - Alleged Member of Neo-Nazi Swatting Group Charged - شركات الاتصالات الأمريكية عرضة لهجمات مبادلة بطاقة الاتصال - أمازون تفصل موظفين شاركوا معلومات عملائها مع جهات خارجية - انكشاف أكثر من مليار صور طبية على الإنترنت بسبب إهمال الأطباء - باستغلاله لـ Google Accessibility تطبيق خبيث ينشر تقييمات مزيفة - Critical Firefox 0-Day Under Active Attacks – Update Your Browser Now! - Lawmakers Prod FCC to Act on SIM Swapping - اختراق حساب وكالة الأنباء الكويتية على تويتر - تويتر تريد منحك القدرة على تحديد من يمكنه الرد على تغريداتك - كيف يمكنك استخدام هاتف أندرويد كمفتاح أمان؟ - ما المتوقع بعد مقتل قاسم سليماني في مجال الأمن الإلكتروني؟ - كاسبرسكي: ثلثا الشركات الصناعية لا تبلغ بحوادث الأمن الرقمي - كاسبرسكي تتيح استخدام أداة Kaspresso لمطوري تطبيقات أندرويد - Tricky Phish Angles for Persistence, Not Passwords - The Hidden Cost of Ransomware: Wholesale Password Theft - Xiaomi Cameras Connected to Google Nest Expose Video Feeds From Others - حصاد 2019.. أبرز تطورات الذكاء الاصطناعي خلال العام - Happy 10th Birthday, KrebsOnSecurity.com - Ransomware at IT Services Provider Synoptek - How Organizations Can Defend Against Advanced Persistent Threats - آبل تجعل التوثيق إلزاميًا لتطبيقات macOS - كاسبرسكي تتيح للعملاء حماية معززة من تهديدات الويب - تطبيق Speedtest يدعم خدمة VPN على أندرويد وآي أو إس - تويتر تحظر ملفات PNG المتحركة لحماية المستخدمين - هل اختراق أجهزة آيفون المحمية ممكن؟ - جامعة سعودية تطور رقاقة تشفير غير قابلة للاختراق - تويتر تحذر مستخدمي أندرويد من ثغرة أمنية خطيرة - آبل تتيح برنامج اكتشاف الثغرات للجميع والمكافآت تصل إلى مليون دولار - فيسبوك تحقق في تسريب معلومات أكثر من 267 مليون مستخدم - فيسبوك تحقق في تسريب بيانات شخصية لأكثر من 260 مليون مستخدم - Apple Opens Its Invite-Only Bug Bounty Program to All Researchers - كاسبرسكي: احذر حملات التصيد والفيروسات مع انطلاق Star Wars - فنلندا تتيح دروتها لتعليم الذكاء الاصطناعي مجانًا للجميع حول العالم - الرئيس الروسي عرضة للقرصنة بسبب ويندوز إكس بي - Nuclear Bot Author Arrested in Sextortion Case - Ransomware Gangs Now Outing Victim Businesses That Don’t Pay Up - خلل في واتساب يعطل التطبيق ويحذف دردشات المجموعة - قراصنة يخترقون كاميرات Ring التابعة لأمازون - ثغرة في iOS 13 تتيح للأطفال الالتفاف على الرقابة الأبوية - لص يسرق بيانات مهمة لعشرات الآلاف من موظفي فيسبوك - حصاد 2019.. أبرز ما قدمته تويتر للمستخدمين خلال العام - Flaw in Elementor and Beaver Addons Let Anyone Hack WordPress Sites - The Great $50M African IP Address Heist - متصفح كروم ينبهك الآن عندما يسرق شخص ما كلمة مرورك - 9 توقعات للأمن الإلكتروني في الشرق الأوسط خلال 2020 - كاسبرسكي: 174 هجوم طلب فدية استهدفت بلديات حول العالم في 2019 - خبايا التصفح المتخفي - Patch Tuesday, December 2019 Edition - CISO MAG Honors KrebsOnSecurity - أكثر من نصف مستخدمي الإنترنت العرب عرضًة للخطر بسبب البرمجيات المقرصنة - Ransomware at Colorado IT Provider Affects 100+ Dental Offices - مايكروسوفت: 44 مليون حساب يستخدمون كلمات مرور مخترقة - جوجل تختبر ميزة لتتبع الطرود على محركها مباشرةً! - New Linux Bug Lets Attackers Hijack Encrypted VPN Connections - Apple Explains Mysterious iPhone 11 Location Requests - آيفون 11 برو يجمع بيانات الموقع حتى لو عطلتها - The iPhone 11 Pro’s Location Data Puzzler - هل يستطيع تطبيق فيسبوك التجسس عليك فعلًا؟ - يوتيوب ستسمح برفع الألعاب ذات المحتوى العنيف إلى منصتها - تويتر تطلق مركزًا للخصوصية وحماية البيانات - اكتشاف ثغرة خطرة في نظام تسجيل الدخول الخاص بمايكروسوفت - العثور على قاعدة بيانات تحتوي عشرات الملايين من رسائل SMS - Europol Shuts Down 'Imminent Monitor' RAT Operations With 13 Arrests - NordVPN تطلق تطبيق مدير كلمات المرور NordPass - كاسبرسكي تكشف عن 37 ثغرة في أنظمة VNC مفتوحة المصدر - كيف يمكنك حذف تطبيقات أندرويد غير المستخدمة لحماية جهازك؟ - Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains - تضاعف محاولات الاحتيال عبر إشعارات متصفحات الويب 3 مرات هذا العام - مايكروسوفت تحذر من برمجية خبيثة جديدة - برمجية خطرة معروفة تستخدم يوتيوب لتعدين العملات الرقمية - 5 طرق تساعدك في الحفاظ على أمان أجهزة أندرويد - 110 Nursing Homes Cut Off from Health Records in Ransomware Attack - أوروبا تفشل في الاتفاق على قواعد الخصوصية التي تحكم واتساب وسكايب - فنلندا تستعد لحرب إلكترونية بعد طلب فدية عبر بيتكوين - تويتر تدعم المصادقة الثنائية بدون رقم الهاتف - OnePlus Suffers New Data Breach Impacting Its Online Store Customers - Boost Your Personal Security With These Killer 2019 Black Friday and Cyber Monday Deals - DDoS-for-Hire Boss Gets 13 Months Jail Time - جوجل ستدفع لك مليون دولار إن تمكنت من اختراق Titan M - رغم التحديث.. تطبيقات أندرويد الشعبية لا تزال تحتوي على ثغرات - Introduction to SIEM مدخل الى - Introduction to Phishing مدخل الى - Ransomware Bites 400 Veterinary Hospitals - تعرف على أبرز الهجمات السيبرانية خلال 2019 - الخدع والحيل والهجمات الإلكترونية.. التهديدات التي تستهدف صناعة الرياضات الإلكترونية - تطبيق كاميرا أندرويد يتيح تسجيل الفيديو دون إذن - 5 طرق للتحقق من أمان اتصالك بالإنترنت - اكتشاف 146 ثغرة في تطبيقات مثبتة مسبقًا على هواتف أندرويد - واتساب تصلح ثغرة خطرة تسمح باستغلال ملفات MP4 للاختراق - واتساب يعاني من ثغرة تسمح بتثبيت برامج التجسس سرًا - تحقيق صحفي يكشف تلاعب جوجل بنتائج البحث - رقاقات كوالكوم تسرب البيانات من هواتف أندرويد - Two Arrested for Stealing $550,000 in Cryptocurrency Using Sim Swapping - Orcus RAT Author Charged in Malware Scheme - اكتشاف ثغرة خطرة جديدة تؤثر على أحدث معالجات إنتل - فيسبوك تكشف عن سبب تشغيل كاميرا آيفون سرًا أثناء تصفح تطبيقها - Patch Tuesday, November 2019 Edition - Retailer Orvis.com Leaked Hundreds of Internal Passwords on Pastebin - ليست آمنة كما يُعتقد! باحثون يجدون ثغرات خطرة في شبكات 5G - احذر! فيسبوك تشغل كاميرا آيفون سرًا أثناء تصفح تطبيقها - تويتر يطلق استبيانًا عامًا حول آلية تعامله مع الوسائط المضلِّلة أو المزيفة - أكثر دول المنطقة استهدافًا من التهديدات المتقدمة المستمرة حسب كاسبرسكي - Ransomware Hits B2B Payments Firm Billtrust - هجمات طلب الفدية تجعل المستشفيات خاوية من المرضى - Phishers are Angling for Your Cloud Providers - Ransomware Bites Dental Data Backup Firm - فحص وتقييم أمن المعلومات IT Security Assessment - لماذا تحتاج اتفاقية مستوى خدمة حقيقية SLA - Protect Your Organization from Petya / NotPetya Ransomware with Carbon Black - Cybersecurity Firm Imperva Discloses Breach - Hacker Ordered to Pay Back Nearly £1 Million to Phishing Victims - SOAPA العمليات الأمنية وهيكلة منصة التحليلات - Security Operations and Analytics Platform SOAPA - Meet Bluetana, the Scourge of Pump Skimmers - Patch Tuesday, August 2019 Edition - Is ‘REvil’ the New GandCrab Ransomware? - Cybersecurity Frameworks — Types, Strategies, Implementation and Benefits - “بطل” صد هجوم WannaCry العالمي في 2017 يقر بتطوير برامج لسرقة البنوك - 7 عوامل أمان مهمة لأصحاب المتاجر الإلكترونية