البوابة العربية للأخبار التقنية البوابة العربية للأخبار التقنية نشرت شركة مايكروسوفت تحديثات أمان طارئة لمعالجة مشكلات الأمان في مكتبة (Windows Codecs) وتطبيق (Visual Studio Code). ويأتي التحديثان في البوابة العربية …
In from source: AitNews by Blog Writer
In from source: AitNews by Blog Writer
In from source: AitNews by Blog Writer
In from source: AitNews by Blog Writer
In from source: AitNews by Blog Writer
In from source: AitNews by Blog Writer
In from source: AitNews by Blog Writer
In from source: AitNews by Blog Writer
In from source: AitNews by Blog Writer
In from source: AitNews by Blog Writer
Lumos System Can Find Hidden Cameras and IoT Devices in Your Airbnb or Hotel Room - Interpol Arrests Leader of SilverTerrier Cybercrime Gang Behind BEC Attacks - [Template] Incident Response for Management Presentation - Researchers Find New Malware Attacks Targeting Russian Government Entities - Learn How Hackers Can Hijack Your Online Accounts Even Before You Create Them - How Secrets Lurking in Source Code Lead to Major Breaches - New Chaos Ransomware Builder Variant "Yashma" Discovered in the Wild - SIM-based Authentication Aims to Transform Device Binding Security to End Phishing - Popular PyPI Package 'ctx' and PHP Library 'phpass' Hijacked to Steal AWS Keys - New Zoom Flaws Could Let Attackers Hack Victims Just by Sending them a Message - Microsoft Warns of Web Skimmers Mimicking Google Analytics and Meta Pixel Code - Conti Ransomware Operation Shut Down After Splitting into Smaller Groups - Malware Analysis: Trickbot - New Unpatched Bug Could Let Attackers Steal Money from PayPal Users - Fronton: Russian IoT Botnet Designed to Run Social Media Disinformation Campaigns - Yes, Containers Are Terrific, But Watch the Security Risks - Chinese "Twisted Panda" Hackers Caught Spying on Russian Defense Institutes - Researchers Find Backdoor in School Management Plugin for WordPress - Researchers Uncover Rust Supply Chain Attack Targeting Cloud CI Pipelines - Cytrox's Predator Spyware Targeted Android Users with Zero-Day Exploits - Microsoft Warns Rise in XorDdos Malware Targeting Linux Devices - Cisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the Wild - New Bluetooth Hack Could Let Attackers Remotely Unlock Smart Locks and Cars - QNAP Urges Users to Update NAS Devices to Prevent Deadbolt Ransomware Attacks - Hackers Trick Users with Fake Windows 11 Downloads to Distribute Vidar Malware - Hackers Exploiting VMware Horizon to Target South Korea with NukeSped Backdoor - 7 Key Findings from the 2022 SaaS Security Survey Report - Web Trackers Caught Intercepting Online Forms Even Before Users Hit Submit - How to Protect Your Data When Ransomware Strikes - VMware Releases Patches for New Vulnerabilities Affecting Multiple Products - U.S. Warns Against North Korean Hackers Posing as IT Freelancers - [eBook] Your 90-Day MSSP Plan: How to Improve Margins and Scale-Up Service Delivery - Hackers Gain Fileless Persistence on Targeted SQL Servers Using a Built-in Utility - Researchers Expose Inner Workings of Billion-Dollar Wizard Spider Cybercrime Gang - Microsoft Warns of "Cryware" Info-Stealing Malware Targeting Crypto Wallets - Russian Conti Ransomware Gang Threatens to Overthrow New Costa Rican Government - Are You Investing in Securing Your Data in the Cloud? - UpdateAgent Returns with New macOS Malware Dropper Written in Swift - Over 200 Apps on Play Store Caught Spying on Android Users Using Facestealer - New Sysrv Botnet Variant Hijacking Windows and Linux with Crypto Miners - U.S. Charges Venezuelan Doctor for Using and Selling Thanos Ransomware - Fake Clickjacking Bug Bounty Reports: The Key Facts - Researchers Find Potential Way to Run Malware on iPhone Even When it's OFF - Watch Out! Hackers Begin Exploiting Recent Zyxel Firewalls RCE Vulnerability - Researchers Warn of "Eternity Project" Malware Service Being Sold via Telegram - Europe Agrees to Adopt New NIS2 Directive Aimed at Hardening Cybersecurity - Ukrainian Hacker Jailed for 4-Years in U.S. for Selling Access to Hacked Servers - New Saitama backdoor Targeted Official from Jordan's Foreign Ministry - Google Created 'Open Source Maintenance Crew' to Help Secure Critical Projects - SonicWall Releases Patches for New Flaws Affecting SSLVPN SMA1000 Devices - Get Lifetime Access to 2022 Cybersecurity Certification Prep Courses @ 95% Off - E.U. Proposes New Rules for Tech Companies to Combat Online Child Sexual Abuse - Iranian Hackers Leveraging BitLocker and DiskCryptor in Ransomware Attacks - Zyxel Releases Patch for Critical Firewall OS Command Injection Vulnerability - Everything We Learned From the LAPSUS$ Attacks - Android and Chrome Users Can Soon Generate Virtual Credit Cards to Protect Real Ones - Thousands of WordPress Sites Hacked to Redirect Visitors to Scam Sites - Government Agencies Warned of Increase in Cyberattacks Targeting MSPs - Bitter APT Hackers Add Bangladesh to Their List of Targets in South Asia - CISA Urges Organizations to Patch Actively Exploited F5 BIG-IP Vulnerability - Hackers Deploy IceApple Exploitation Framework on Hacked MS Exchange Servers - E.U. Blames Russia for Cyberattack on KA-SAT Satellite Network Operated by Viasat - Malicious NPM Packages Target German Companies in Supply Chain Attack - [White Paper] Social Engineering: What You Need to Know to Stay Resilient - Researchers Warn of Nerbian RAT Targeting Entities in Italy, Spain, and the U.K - 5 Benefits of Detection-as-Code - New REvil Samples Indicate Ransomware Gang is Back After Months of Inactivity - Microsoft Releases Fix for New Zero-Day with May 2022 Patch Tuesday Updates - U.S. Proposes $1 Million Fine on Colonial Pipeline for Safety Violations After Cyberattack - Microsoft Mitigates RCE Vulnerability Affecting Azure Synapse and Data Factory - Experts Detail Saintstealer and Prynt Stealer Info-Stealing Malware Families - Another Set of Joker Trojan-Laced Android Apps Resurfaces on Google Play Store - SHIELDS UP in bite sized chunks - Experts Sound Alarm on DCRat Backdoor Being Sold on Russian Hacking Forums - Critical Gems Takeover Bug Reported in RubyGems Package Manager - Ukrainian CERT Warns Citizens of a New Wave of Attacks Distributing Jester Malware - U.S. Offering $10 Million Reward for Information on Conti Ransomware Hackers - Researchers Develop RCE Exploit for the Latest F5 BIG-IP Vulnerability - U.S. Sanctions Cryptocurrency Mixer Blender for Helping North Korea Launder Millions - Hackers Using PrivateLoader PPI Service to Distribute New NetDooka Malware - Researchers Warn of 'Raspberry Robin' Malware Spreading via External Drives - QNAP Releases Firmware Patches for 9 New Flaws Affecting NAS Devices - This New Fileless Malware Hides Shellcode in Windows Event Logs - Google to Add Passwordless Authentication Support to Android and Chrome - NIST Releases Updated Cybersecurity Guidance for Managing Supply Chain Risks - Google Releases Android Update to Patch Actively Exploited Vulnerability - Experts Uncover New Espionage Attacks by Chinese 'Mustang Panda' Hackers - The Importance of Defining Secure Code - SEC Plans to Hire More Staff in Crypto Enforcement Unit to Fight Frauds - F5 Warns of a New Critical BIG-IP Remote Code Execution Vulnerability - Cisco Issues Patches for 3 New Flaws Affecting Enterprise NFVIS Software - Critical RCE Bug Reported in dotCMS Content Management Software - Chinese Hackers Caught Stealing Intellectual Property from Multinational Companies - Ukraine War Themed Files Become the Lure of Choice for a Wide Range of Hackers - Critical TLStorm 2.0 Bugs Affect Widely-Used Aruba and Avaya Network Switches - Experts Analyze Conti and Hive Ransomware Gangs' Chats With Their Victims - New Hacker Group Pursuing Corporate Employees Focused on Mergers and Acquisitions - Unpatched DNS Related Vulnerability Affects a Wide Range of IoT Devices - Chinese Hackers Caught Exploiting Popular Antivirus Products to Target Telecom Sector - AvosLocker Ransomware Variant Using New Trick to Disable Antivirus Protection - Which Hole to Plug First? Solving Chronic Vulnerability Patching Overload - Chinese "Override Panda" Hackers Resurface With New Espionage Attacks - GitHub Says Recent Attack Involving Stolen OAuth Tokens Was "Highly Targeted" - Russian Hackers Targeting Diplomatic Entities in Europe, Americas, and Asia - Google Releases First Developer Preview of Privacy Sandbox on Android 13 - Here's a New Tool That Scans Open-Source Repositories for Malicious Packages - Experts Detail 3 Hacking Teams Working Under the Umbrella of TA410 Group - Indian Govt Orders Organizations to Report Security Breaches Within 6 Hours to CERT-In - Microsoft Azure Vulnerability Exposes PostgreSQL Databases to Other Customers - Microsoft Documents Over 200 Cyberattacks by Russia Against Ukraine - New RIG Exploit Kit Campaign Infecting Victims' PCs with RedLine Stealer - Twitter's New Owner Elon Musk Wants DMs to be End-to-End Encrypted like Signal - Cybercriminals Using New Malware Loader 'Bumblebee' in the Wild - Everything you need to know to create a Vulnerability Assessment Report - U.S Cybersecurity Agency Lists 2021's Top 15 Most Exploited Software Vulnerabilities - [eBook] Your First 90 Days as MSSP: 10 Steps to Success - QNAP Advises to Mitigate Remote Hacking Flaws Until Patches are Available - CloudFlare Thwarts Record DDoS Attack Peaking at 15 Million Requests Per Second - U.S. Offers $10 Million Bounty for Information on 6 Russian Military Hackers - Google's New Safety Section Shows What Data Android Apps Collect About Users - Chinese Hackers Targeting Russian Military Personnel with Updated PlugX Malware - NPM Bug Allowed Attackers to Distribute Malware as Legitimate Packages - Gold Ulrick Hackers Still in Action Despite Massive Conti Ransomware Leak - Emotet Testing New Delivery Ideas After Microsoft Disables VBA Macros by Default - Microsoft Discovers New Privilege Escalation Flaws in Linux Operating System - North Korean Hackers Target Journalists with GOLDBACKDOOR Malware - Iranian Hackers Exploiting VMware RCE Bug to Deploy 'Code Impact' Backdoor - New BotenaGo Malware Variant Targeting Lilin Security Camera DVR Devices - Critical Bug in Everscale Wallet Could've Let Attackers Steal Cryptocurrencies - Researchers Report Critical RCE Vulnerability in Google's VirusTotal Platform - FBI Warns of BlackCat Ransomware That Breached Over 60 Organisations Worldwide - Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability - T-Mobile Admits Lapsus$ Hackers Gained Access to its Internal Tools and Source Code - QNAP Advises Users to Update NAS Firmware to Patch Apache HTTP Vulnerabilities - Watch Out! Cryptocurrency Miners Targeting Dockers, AWS and Alibaba Cloud - Researcher Releases PoC for Recent Java Cryptographic Vulnerability - Unpatched Bug in RainLoop Webmail Could Give Hackers Access to all Emails - Amazon's Hotpatch for Log4j Flaw Found Vulnerable to Privilege Escalation Bug - Hackers Sneak 'More_Eggs' Malware Into Resumes Sent to Corporate Hiring Managers - Cisco Releases Security Patches for TelePresence, RoomOS and Umbrella VA - Critical Chipset Bugs Open Millions of Android Devices to Remote Spying - Google Project Zero Detects a Record Number of Zero-Day Exploits in 2021 - Five Eyes Nations Warn of Russian Cyber Attacks Against Critical Infrastructure - [eBook] The Ultimate Security for Management Presentation Template - Researchers Detail Bug That Could Paralyze Snort Intrusion Detection System - Okta Says Security Breach by Lapsus$ Hackers Impacted Only Two of Its Customers - Experts Uncover Spyware Attacks Against Catalan Politicians and Activists - New Lenovo UEFI Firmware Vulnerabilities Affect Millions of Laptops - Hackers Exploiting Recently Reported Windows Print Spooler Vulnerability in the Wild - FBI, U.S. Treasury and CISA Warns of North Korean Hackers Targeting Blockchain Companies - Researchers Share In-Depth Analysis of PYSA Ransomware Group - Github Notifies Victims Whose Private Data Was Accessed Using OAuth Tokens - New SolarMarker Malware Variant Using Updated Techniques to Stay Under the Radar - Benchmarking Linux Security – Latest Research Findings - Critical RCE Flaw Reported in WordPress Elementor Website Builder Plugin - New Hacking Campaign Targeting Ukrainian Government with IcedID Malware - GitHub Says Hackers Breached Dozens of Organizations Using Stolen OAuth Access Tokens - Get Lifetime Access to This 60-Hour Java Programming Training Bundle @ 97% Discount - Lazarus Group Behind $540 Million Axie Infinity Crypto Hack and Attacks on Chemical Sector - As State-Backed Cyber Threats Grow, Here's How the World Is Reacting - Critical Auth Bypass Bug Reported in Cisco Wireless LAN Controller Software - Haskers Gang Gives Away ZingoStealer Malware to Other Cybercriminals for Free - JekyllBot:5 Flaws Let Attackers Take Control of Aethon TUG Hospital Robots - Ethereum Developer Jailed 63 Months for Helping North Korea Evade Sanctions - Google Releases Urgent Chrome Update to Patch Actively Exploited Zero-Day Flaw - Critical VMware Cloud Director Bug Could Let Hackers Takeover Entire Cloud Infrastructure - Critical VMware Workspace ONE Access Flaw Under Active Exploitation in the Wild - U.S. Warns of APT Hackers Targeting ICS/SCADA Systems with Specialized Malware - Russian Hackers Tried Attacking Ukraine's Power Grid with Industroyer2 Malware - Microsoft Exposes Evasive Chinese Tarrask Malware Attacking Windows Computers - Webinar: How The Right XDR Can Be a Game-Changer for Lean Security Teams - FBI, Europol Seize RaidForums Hacker Forum and Arrest Admin - Critical LFI Vulnerability Reported in Hashnode Blogging Platform - Cross-Regional Disaster Recovery with Elasticsearch - Microsoft Issues Patches for 2 Windows Zero-Days and 126 Other Vulnerabilities - Finding Attack Paths in Cloud Environments - NGINX Shares Mitigations for Zero-Day Bug Affecting LDAP Implementation - E.U. Officials Reportedly Targeted with Israeli Pegasus Spyware - Google Sues Scammer for Running 'Puppy Fraud Scheme' Website - Over 16,500 Sites Hacked to Distribute Malware via Web Redirect Service - Researchers warn of FFDroider and Lightning info-stealers targeting users in the wild - Microsoft's New Autopatch Feature to Help Businesses Keep Their Systems Up-to-Date - Ukrainian FIN7 Hacker Gets 5-Year Sentence in the United States - Researchers Connect BlackCat Ransomware with Past BlackMatter Malware Activity - Chinese Hacker Groups Continue to Target Indian Power Grid Assets - Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware - Hamas-linked Hackers Targeting High-Ranking Israelis Using 'Catfish' Lures - First Malware Targeting AWS Lambda Serverless Platform Discovered - New Octo Banking Trojan Spreading via Fake Apps on Google Play Store - Microsoft Obtains Court Order to Take Down Domains Used to Target Ukraine - SharkBot Banking Trojan Resurfaces On Google Play Store Hidden Behind 7 New Apps - Into the Breach: Breaking Down 3 SaaS App Cyber Attacks in 2022 - VMware Releases Critical Patches for New Vulnerabilities Affecting Multiple Products - Germany Shuts Down Russian Hydra Darknet Market; Seizes $25 Million in Bitcoin - Battling Cybersecurity Risk: How to Start Somewhere, Right Now - FIN7 Hackers Leveraging Password Reuse and Software Supply Chain Attacks - Hackers Breach Mailchimp Email Marketing Firm to Launch Crypto Phishing Scams - Is API Security on Your Radar? - Researchers Trace Widespread Espionage Attacks Back to Chinese 'Cicada' Hackers - CISA Warns of Active Exploitation of Critical Spring4Shell Vulnerability - Researchers Uncover New Android Spyware With C2 Server Linked to Turla Hackers - Experts Shed Light on BlackGuard Infostealer Malware Sold on Russian Hacking Forums - Brokenwire Hack Could Let Remote Attackers Disrupt Charging for Electric Vehicles - Multiple Hacker Groups Capitalizing on Ukraine Conflict for Distributing Malware - Beastmode DDoS Botnet Exploiting New TOTOLINK Bugs to Enslave More Routers - GitLab Releases Patch for Critical Vulnerability That Could Let Attackers Hijack Accounts - British Police Charge Two Teenagers Linked to LAPSUS$ Hacker Group - 15-Year-Old Bug in PEAR PHP Repository Could've Enabled Supply Chain Attacks - Results Overview: 2022 MITRE ATT&CK Evaluation – Wizard Spider and Sandworm Edition - Chinese Hackers Target VMware Horizon Servers with Log4Shell to Deploy Rootkit - Critical Bugs in Rockwell PLC Could Allow Hackers to Implant Malicious Code - Russian Wiper Malware Likely Behind Recent Cyberattack on Viasat KA-SAT Modems - Apple Issues Patches for 2 Actively Exploited Zero-Days in iPhone, iPad and Mac Devices - Zyxel Releases Patches for Critical Bug Affecting Business Firewall and VPN Devices - North Korean Hackers Distributing Trojanized DeFi Wallet Apps to Steal Victims' Crypto - Researchers Expose Mars Stealer Malware Campaign Using Google Ads to Spread - QNAP Warns of OpenSSL Infinite Loop Vulnerability Affecting NAS Devices - Unpatched Java Spring Framework 0-Day RCE Bug Threatens Enterprise Web Apps Security - Improve Your Hacking Skills with 9 Python Courses for Just $39 - Honda’s Keyless Access Bug Could Let Thieves Remotely Unlock and Start Vehicles - IT Firm Globant Confirms Breach after LAPSUS$ Leaks 70GB of Data - CISA Warns of Ongoing Cyber Attacks Targeting Internet-Connected UPS Devices - Critical Sophos Firewall RCE Vulnerability Under Active Exploitation - Privid: A Privacy-Preserving Surveillance Video Analytics System - New Hacking Campaign by Transparent Tribe Hackers Targeting Indian Officials - Critical SonicOS Vulnerability Affects SonicWall Firewall Appliances - A Large-Scale Supply Chain Attack Distributed Over 800 Malicious NPM Packages - Experts Detail Virtual Machine Used by Wslink Malware Loader for Obfuscation - New Malware Loader 'Verblecon' Infects Hacked PCs with Cryptocurrency Miners - New Report on Okta Hack Reveals the Entire Episode LAPSUS$ Attack - 'Purple Fox' Hackers Spotted Using New Variant of FatalRAT in Recent Malware Attacks - Of Cybercriminals and IP Addresses - Hackers Hijack Email Reply Chains on Unpatched Exchange Servers to Spread Malware - Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability - FCC Adds Kaspersky and Chinese Telecom Firms to National Security Threat List - 7 Suspected Members of LAPSUS$ Hacker Gang, Aged 16 to 21, Arrested in U.K. - U.S. Charges 4 Russian Govt. Employees Over Hacking Critical Infrastructure Worldwide - Google Issues Urgent Chrome Update to Patch Actively Exploited Zero-Day Vulnerability - Another Chinese Hacking Group Spotted Targeting Ukraine Amid Russia Invasion - Chinese APT Hackers Targeting Betting Companies in Southeast Asia - 23-Year-Old Russian Hacker Wanted by FBI for Running Marketplace of Stolen Logins - North Korean Hackers Exploited Chrome Zero-Day to Target Fintech, IT, and Media Firms - Experts Uncover Campaign Stealing Cryptocurrency from Android and iPhone Users - How to Build a Custom Malware Analysis Sandbox - VMware Issues Patches for Critical Flaws Affecting Carbon Black App Control - New Variant of Chinese Gimmick Malware Targeting macOS Users - Chinese 'Mustang Panda' Hackers Spotted Deploying New 'Hodur' Malware - LAPSUS$ Hackers Claim to Have Breached Microsoft and Authentication Firm Okta - Microsoft and Okta Confirm Breach by LAPSUS$ Extortion Group - New Dell BIOS Bugs Affect Millions of Inspiron, Vostro, XPS, Alienware Systems - U.S. Government Warns Companies of Potential Russian Cyber Attacks - Wazuh Offers XDR Functionality at a Price Enterprises Will Love — Free! - New Browser-in-the Browser (BITB) Attack Makes Phishing Nearly Undetectable - South Korean DarkHotel Hackers Targeted Luxury Hotels in Macau - 'CryptoRom' Crypto Scam Abusing iPhone Features to Target Mobile Users - New Backdoor Targets French Entities via Open-Source Package Installer - Google Uncovers 'Initial Access Broker' Working with Conti Ransomware Gang - Experts Find Some Affiliates of BlackMatter Now Spreading BlackCat Ransomware - Hackers Target Bank Networks with new Rootkit to Steal Money from ATM Machines - The Golden Hour of Incident Response - DirtyMoe Botnet Gains New Exploits in Wormable Module to Spread Rapidly - Popular NPM Package Updated to Wipe Russia, Belarus Systems to Protest Ukraine Invasion - New Variant of Russian Cyclops Blink Botnet Targeting ASUS Routers - New Vulnerability in CRI-O Engine Lets Attackers Escape Kubernetes Containers - Ukraine Secret Service Arrests Hacker Helping Russian Invaders - TrickBot Malware Abusing MikroTik Routers as Proxies for Command-and-Control - New "B1txor20" Linux Botnet Uses DNS Tunnel and Exploits Log4J Flaw - German Government Warns Against Using Russia's Kaspersky Antivirus Software - Unpatched RCE Bug in dompdf Project Affects HTML to PDF Converters - FBI, CISA Warn of Russian Hackers Exploiting MFA and PrintNightmare Bug - New Infinite Loop Bug in OpenSSL Could Let Attackers Crash Remote Servers - Multiple Flaws Uncovered in ClickHouse OLAP Database System for Big Data - Build Your 2022 Cybersecurity Plan With This Free PPT Template - Facebook Hit With $18.6 Million GDPR Fine Over 12 Data Breaches in 2018 - Massive DDoS Attack Knocked Israeli Government Websites Offline - CaddyWiper: Yet Another Data Wiping Malware Targeting Ukrainian Networks - Nearly 34 Ransomware Variants Observed in Hundreds of Cyberattacks in Q4 2021 - Gaming Company Ubisoft Confirms It was Hacked, Resets Staff Passwords - 'Dirty Pipe' Linux Flaw Affects a Wide Range of QNAP NAS Devices - Researchers Find New Evidence Linking Kwampirs Malware to Shamoon APT Hackers - New Linux Bug in Netfilter Firewall Module Lets Attackers Gain Root Access - Russian Ransomware Gang Retool Custom Hacking Tools of Other APT Groups - Why Enterprise Threat Mitigation Requires Automated, Single-Purpose Tools - New Exploit Bypasses Existing Spectre-V2 Mitigations in Intel and Arm CPUs - Iranian Hackers Targeting Turkey and Arabian Peninsula in New Malware Campaign - Here's How to Find if WhatsApp Web Code on Your Browser Has Been Hacked - Russian Pushing New State-run TLS Certificate Authority to Deal With Sanctions - Multiple Security Flaws Discovered in Popular Software Package Managers - Emotet Botnet's Latest Resurgence Spreads to Over 100,000 Computers - Ukrainian Hacker Linked to REvil Ransomware Attacks Extradited to United States - Critical Bugs Could Let Attackers Remotely Hack, Damage APC Smart-UPS Devices - Hackers Abuse Mitel Devices to Amplify DDoS Attacks by 4 Billion Times - Google Buys Cybersecurity Firm Mandiant for $5.4 Billion - Google: Russian Hackers Target Ukrainians, European Allies via Phishing Attacks - New 16 High-Severity UEFI Firmware Flaws Discovered in Millions of HP Devices - Critical Security Patches Issued by Microsoft, Adobe and Other Major Software Firms - The Continuing Threat of Unpatched Security Vulnerabilities - Critical "Access:7" Supply Chain Vulnerabilities Impact ATMs, Medical and IoT Devices - Samsung Confirms Data Breach After Hackers Leak Galaxy Source Code - Researchers Warn of Linux Kernel ‘Dirty Pipe’ Arbitrary File Overwrite Vulnerability - Microsoft Azure 'AutoWarp' Bug Could Have Let Attackers Access Customers' Accounts - SharkBot Banking Malware Spreading via Fake Android Antivirus App on Google Play Store - Ukrainian CERT Warns Citizens of Phishing Attacks Using Compromised Accounts - Understanding How Hackers Recon - Critical Bugs in TerraMaster TOS Could Open NAS Devices to Remote Hacking - 2 New Mozilla Firefox 0-Day Bugs Under Active Attack — Patch Your Browser ASAP! - New Linux Kernel cgroups Vulnerability Could Let Attackers Escape Container - New Security Vulnerability Affects Thousands of Self-Managed GitLab Instances - Both Sides in Russia-Ukraine War Heavily Using Telegram for Disinformation and Hacktivism - CISA Adds Another 95 Flaws to its Actively Exploited Vulnerabilities Catalog - Imperva Thwarts 2.5 Million RPS Ransom DDoS Extortion Attacks - Critical Patches Issued for Cisco Expressway Series, TelePresence VCS Products - Researchers Demonstrate New Side-Channel Attack on Homomorphic Encryption - Russia Releases List of IPs, Domains Attacking Its Infrastructure with DDoS Attacks - Hackers Who Broke Into NVIDIA's Network Leak DLSS Source Code Online - How to Automate Offboarding to Keep Your Company Safe - Hackers Try to Target European Officials to Get Info on Ukrainian Refugees, Supplies - Critical Bugs Reported in Popular Open Source PJSIP SIP and Media Stack - LIVE Webinar: Key Lessons Learned from Major Cyberattacks in 2021 and What to Expect in 2022 - Hackers Begin Weaponizing TCP Middlebox Reflection for Amplified DDoS Attacks - Critical Security Bugs Uncovered in VoIPmonitor Monitoring Software - TeaBot Android Banking Malware Spreads Again Through Google Play Store Apps - Break into Ethical Hacking with 18 Advanced Online Courses for Just $42.99 - Second New 'IsaacWiper' Data Wiper Targets Ukraine After Russian Invasion - China-linked Daxin Malware Targeted Multiple Governments in Espionage Attacks - Microsoft Finds FoxBlade Malware Hit Ukraine Hours Before Russian Invasion - TrickBot Malware Gang Upgrades its AnchorDNS Backdoor to AnchorMail - Conti Ransomware Gang's Internal Chats Leaked Online After Siding With Russia - 100 Million Samsung Galaxy Phones Affected with Flawed Hardware Encryption Feature - CISA adds recently disclosed Zimbra bug to its Exploited Vulnerabilities Catalog - Experts Create Apple AirTag Clone That Can Bypass Anti-Tracking Measures - Reborn of Emotet: New Features of the Botnet and How to Detect it - CISA Warns of High-Severity Flaws in Schneider and GE Digital's SCADA Software - Iranian Hackers Using New Spying Malware That Abuses Telegram Messenger API - Social Media Hijacking Malware Spreading Through Gaming Apps on Microsoft Store - Putin Warns Russian Critical Infrastructure to Brace for Potential Cyber Attacks - Iran's MuddyWater Hacker Group Using New Malware in Worldwide Cyber Attacks - New "SockDetour" Fileless, Socketless Backdoor Targets U.S. Defense Contractors - Russia-Ukraine War: Phishing, Malware and Hacker Groups Taking Sides - From Pet Systems to Cattle Farm — What Happened to the Data Center? - TrickBot Gang Likely Shifting Operations to Switch to New Malware - New Flaws Discovered in Cisco's Network Operating System for Switches - Notorious TrickBot Malware Gang Shuts Down its Botnet Infrastructure - Warning — Deadbolt Ransomware Targeting ASUSTOR NAS Devices - Dridex Malware Deploying Entropy Ransomware on Hacked Computers - New Wiper Malware Targeting Ukraine Amid Russia's Military Operation - 9-Year-Old Unpatched Email Hacking Bug Uncovered in Horde Webmail Software - Chinese Experts Uncover Details of Equation Group's Bvp47 Covert Hacking Tool - 25 Malicious JavaScript Libraries Distributed via Official NPM Package Repository - Chinese Hackers Target Taiwan's Financial Trading Sector with Supply Chain Attack - Hackers Stole $1.7 Million Worth of NFTs from Users of OpenSea Marketplace - Hackers Backdoor Unpatched Microsoft SQL Database Servers with Cobalt Strike - Iranian State Broadcaster IRIB Hit by Destructive Wiper Malware - New Android Banking Trojan Spreading via Google Play Store Targets Europeans - Hackers Exploiting Infected Android Devices to Register Disposable Accounts - A Free Solution to Protect Your Business from 6 Biggest Cyber Threats in 2022 - Master Key for Hive Ransomware Retrieved Using a Flaw in its Encryption Algorithm - U.S. Cybersecurity Agency Publishes List of Free Security Tools and Services - Justice Department Appoints First Director of National Cryptocurrency Enforcement Team - New Linux Privilege Escalation Flaw Uncovered in Snap Package Manager - PseudoManuscrypt Malware Spreading the Same Way as CryptBot Targets Koreans - Microsoft Warns of 'Ice Phishing' Threat on Web3 and Decentralized Networks - Critical Flaw Uncovered in WordPress Backup Plugin Used by Over 3 Million Sites - Another Critical RCE Discovered in Adobe Commerce and Magento Platforms - Attackers Can Crash Cisco Email Security Appliances by Sending Malicious Emails - 4 Cloud Data Security Best Practices All Businesses Should Follow Today - Iranian Hackers Targeting VMware Horizon Log4j Flaws to Deploy Ransomware - U.S. Says Russian Hackers Stealing Sensitive Data from Defense Contractors - VMware Issues Security Patches for High-Severity Flaws Affecting Multiple Products - Trickbot Malware Targeted Customers of 60 High-Profile Companies Since 2020 - [Webinar] When More Is Not Better: Solving Alert Overload - EU Data Protection Watchdog Calls for Ban on Pegasus-like Commercial Spyware - SafeDNS: Cloud-based Internet Security and Web Filtering Solution for MSPs - Researchers Link ShadowPad Malware Attacks to Chinese Ministry and PLA - Facebook Agrees to Pay $90 Million to Settle Decade-Old Privacy Violation Case - High-Severity RCE Security Bug Reported in Apache Cassandra Database Software - New MyloBot Malware Variant Sends Sextortion Emails Demanding $2,732 in Bitcoin - Experts Warn of Hacking Group Targeting Aviation and Defense Sectors - Critical Security Flaws Reported in Moxa MXview Network Management Software - Spanish Police Arrest SIM Swappers Who Stole Money from Victims Bank Accounts - New Chrome 0-Day Bug Under Active Attack – Update Your Browser ASAP! - Critical Magento 0-Day Vulnerability Under Active Exploitation — Patch Released - Apple Releases iOS, iPadOS, macOS Updates to Patch Actively Exploited Zero-Day Flaw - France Rules That Using Google Analytics Violates GDPR Data Protection Law - Hackers Planted Fake Digital Evidence on Devices of Indian Activists and Lawyers - Russia Cracks Down on 4 Dark Web Marketplaces for Stolen Credit Cards - CISA, FBI, NSA Issue Advisory on Severe Increase in Ransomware Attacks - COVID Does Not Spread to Computers - FritzFrog P2P Botnet Attacking Healthcare, Education and Government Sectors - Critical RCE Flaws in 'PHP Everywhere' Plugin Affect Thousands of WordPress Sites - Guide: Alert Overload and Handling for Lean IT Security Teams - U.S. Arrests Two and Seizes $3.6 Billion Cryptocurrency Stolen in 2016 Bitfinex Hack - Russian APT Hackers Used COVID-19 Lures to Target European Diplomats - Iranian Hackers Using New Marlin Backdoor in 'Out to Sea' Espionage Campaign - Microsoft and Other Major Software Firms Release February 2022 Patch Updates - Several Malware Families Using Pay-Per-Install Service to Expand Their Targets - Palestinian Hackers Use New NimbleMamba Implant in Recent Attacks - How Attack Surface Management Preempts Cyberattacks - Medusa Android Banking Trojan Spreading Through Flubot's Attacks Network - 'Roaming Mantis' Android Malware Targeting Europeans via Smishing Campaigns - Microsoft Temporarily Disables MSIX App Installers to Prevent Malware Abuse - Microsoft Disables Internet Macros in Office Apps by Default to Block Malware Attacks - Chinese Hackers Target Taiwanese Financial Institutions with a new Stealthy Backdoor - IoT/connected Device Discovery and Security Auditing in Corporate Networks - Hackers Backdoored Systems at China's National Games Just Before Competition - New CapraRAT Android Malware Targets Indian Government and Military Personnel - CISA Orders Federal Agencies to Patch Actively Exploited Windows Vulnerability - Microsoft Uncovers New Details of Russian Hacking Campaign Targeting Ukraine - New Argo CD Bug Could Let Hackers Steal Secret Info from Kubernetes Apps - Cynet Log4Shell Webinar: A Thorough - And Clear - Explanation - Russian Gamaredon Hackers Targeted 'Western Government Entity' in Ukraine - U.S. Authorities Charge 6 Indian Call Centers Scamming Thousands of Americans - Another Israeli Firm, QuaDream, Caught Weaponizing iPhone Bug for Spyware - New SEO Poisoning Campaign Distributing Trojanized Versions of Popular Software - Critical Flaws Discovered in Cisco Small Business RV Series Routers - Hackers Exploited 0-Day Vulnerability in Zimbra Email Platform to Spy on Users - CISA Warns of Critical Vulnerabilities Discovered in Airspan Networks Mimosa - Cynet's Keys to Extend Threat Visibility - New Malware Used by SolarWinds Attackers Went Undetected for Years - Dozens of Security Flaws Discovered in UEFI Firmware Used by Several Vendors - Hacker Group 'Moses Staff' Using New StrifeWater RAT in Ransomware Attacks - Iranian Hackers Using New PowerShell Backdoor in Cyber Espionage Attacks - SolarMarker Malware Uses Novel Techniques to Persist on Hacked Systems - Critical Bug Found in WordPress Plugin for Elementor with Over a Million Installations - Researchers Uncover New Iranian Hacking Campaign Targeting Turkish Users - Reasons Why Every Business is a Target of DDoS Attacks - Ukraine Continues to Face Cyber Espionage Attacks from Russian Hackers - New Samba Bug Allows Remote Attackers to Execute Arbitrary Code as Root - New SureMDM Vulnerabilities Could Expose Companies to Supply Chain Attacks - German Court Rules Websites Embedding Google Fonts Violates GDPR - Your Graphics Card Fingerprint Can Be Used to Track Your Activities Across the Web - Behind The Buzzword: Four Ways to Assess Your Zero Trust Security Posture - Researchers Use Natural Silk Fibers to Generate Secure Keys for Strong Authentication - Apple Pays $100,500 Bounty to Hacker Who Found Way to Hack MacBook Webcam - DeepDotWeb News Site Operator Sentenced to 8 Years for Money Laundering - North Korean Hackers Using Windows Update Service to Infect PCs with Malware - How Wazuh Can Improve Digital Security for Businesses - Hackers Using Device Registration Trick to Attack Enterprises with Lateral Phishing - Patching the CentOS 8 Encryption Bug is Urgent – What Are Your Plans? - QNAP Warns of DeadBolt Ransomware Targeting Internet-Facing NAS Devices - Microsoft Mitigated Record-Breaking 3.47 Tbps DDoS Attack on Azure Customers - North Korean Hackers Return with Stealthier Variant of KONNI RAT Malware - Hackers Using New Evasive Technique to Deliver AsyncRAT Malware - Widespread FluBot and TeaBot Malware Campaigns Targeting Android Devices - Chaes Banking Trojan Hijacks Chrome Browser with Malicious Extensions - Initial Access Broker Involved in Log4Shell Attacks Against VMware Horizon Servers - Apple Releases iOS and macOS Updates to Patch Actively Exploited 0-Day Vulnerability - Google Drops FLoC and Introduces Topics API to Replace Tracking Cookies for Ads - Webinar: How to See More, But Respond Less with Enhanced Threat Visibility - Hackers Exploited MSHTML Flaw to Spy on Government and Defense Targets - 12-Year-Old Polkit Flaw Lets Unprivileged Linux Users Gain Root Access - Mobile Banking Trojan BRATA Gains New, Dangerous Capabilities - TrickBot Malware Using New Techniques to Evade Web Injection Attacks - Hackers Infect macOS with New DazzleSpy Backdoor in Watering-Hole Attacks - Hackers Using New Malware Packer DTPacker to Avoid Analysis, Detection - Emotet Now Using Unconventional IP Address Formats to Evade Detection - Hackers Creating Fraudulent Crypto Tokens as Part of 'Rug Pull' Scams - ZTNAs Address Requirements VPNs Cannot. Here's Why. - High-Severity Rust Programming Bug Could Lead to File, Directory Deletion - Molerats Hackers Hiding New Espionage Attacks Behind Public Cloud Infrastructure - Experts Find Strategic Similarities b/w NotPetya and WhisperGate Attacks on Ukraine - U.S. Sanctions 4 Ukrainians for Working with Russia to Destabilize Ukraine - Chinese Hackers Spotted Using New UEFI Firmware Implant in Targeted Attacks - Critical Bugs in Control Web Panel Expose Linux Servers to RCE Attacks - Hackers Planted Secret Backdoor in Dozens of WordPress Plugins and Themes - Interpol Busted 11 Members of Nigerian BEC Cybercrime Gang - Google Details Two Zero-Day Bugs Reported in Zoom Clients and MMR Servers - Cisco Issues Patch for Critical RCE Vulnerability in RCM for StarOS Software - DoNot Hacking Team Targeting Government and Military Entities in South Asia - Cyber Threat Protection — It All Starts with Visibility - Russian Hackers Heavily Using Malicious Traffic Direction System to Distribute Malware - Microsoft: Hackers Exploiting New SolarWinds Serv-U Bug Related to Log4j Attacks - New BHUNT Password Stealer Malware Targeting Cryptocurrency Wallets - DDoS IRC Bot Malware Spreading Through Korean WebHard Platforms - FIN8 Hackers Spotted Using New 'White Rabbit' Ransomware in Recent Attacks - Ukraine: Recent Cyber Attacks Part of Wider Plot to Sabotage Critical Infrastructure - Don't Use Public Wi-Fi Without DNS Filtering - Europol Shuts Down VPNLab, Cybercriminals' Favourite VPN Service - Researchers Bypass SMS-based Multi-Factor Authentication Protecting Box Accounts - Earth Lusca Hackers Aimed at High-Value Targets in Government and Private Sectors - Dark Web's Largest Marketplace for Stolen Credit Cards is Shutting Down - Chrome Limits Websites' Direct Access to Private Networks for Security Reasons - Zoho Releases Patch for Critical Flaw Affecting ManageEngine Desktop Central - A New Destructive Malware Targeting Ukrainian Government and Business Entities - New Unpatched Apple Safari Browser Bug Allows Cross-Site User Tracking - Ukrainian Government Officially Accuses Russia of Recent Cyberattacks - High-Severity Vulnerability in 3 WordPress Plugins Affected 84,000 Websites - North Korean Hackers Stole Millions from Cryptocurrency Startups Worldwide - Massive Cyber Attack Knocks Down Ukrainian Government Websites - Get Lifetime Access to Cybersecurity Certification Prep Courses - Russia Arrests REvil Ransomware Gang Responsible for High-Profile Cyber Attacks - GootLoader Hackers Targeting Employees of Law and Accounting Firms - Cisco Releases Patch for Critical Bug Affecting Unified CCMP and Unified CCDM - Husband-Wife Arrested in Ukraine for Ransomware Attacks on Foreign Companies - U.K. Hacker Jailed for Spying on Children and Downloading Indecent Images - Iranian Hackers Exploit Log4j Vulnerability to Deploy PowerShell Backdoor - Researchers Decrypted Qakbot Banking Trojan’s Encrypted Registry Keys - Hackers Use Cloud Services to Distribute Nanocore, Netwire, and AsyncRAT Malware - Apple Releases iPhone and iPad Updates to Patch HomeKit DoS Vulnerability - FBI, NSA and CISA Warns of Russian Hackers Targeting Critical Infrastructure - XDR: Redefining the game for MSSPs serving SMBs and SMEs - New SysJoker Espionage Malware Targeting Windows, macOS, and Linux Users - First Patch Tuesday of 2022 Brings Fix for a Critical 'Wormable' Windows Vulnerability - New KCodes NetUSB Bug Affect Millions of Routers from Different Vendors - How Can You Leave Log4J in 2021? - Microsoft Details macOS Bug That Could Let Attackers Gain Access to User Data - 2022 Cybersecurity Predictions from Lookout: Work From Anywhere Ends On-Premises Security - Signal CEO Resigns, WhatsApp Co-Founder Takes Over as Interim CEO - Abcbot Botnet Linked to Operators of Xanthe Cryptomining malware - Researchers Find Bugs in Over A Dozen Widely Used URL Parser Libraries - Europol Ordered to Delete Data of Individuals With No Proven Links to Crimes - BADNEWS! Patchwork APT Hackers Score Own Goal in Recent Malware Attacks - Facebook Launches 'Privacy Center' to Educate Users on Data Collection and Privacy Options - North Korean Hackers Start New Year with Attacks on Russian Foreign Ministry - France Fines Google, Facebook €210 Million Over Privacy Violating Tracking Cookies - Log4Shell-like Critical RCE Flaw Discovered in H2 Database Console - NHS Warns of Hackers Targeting Log4j Flaws in VMware Horizon - New Trick Could Let Malware Fake iPhone Shutdown to Spy on Users Secretly - NIST Cybersecurity Framework: A Quick Guide for SaaS Security Compliance - VMware Patches Important Bug Affecting ESXi, Workstation and Fusion Products - New Zloader Banking Malware Campaign Exploiting Microsoft Signature Verification - Researchers Uncover Hacker Group Behind Organized Financial-Theft Operation - Google Releases New Chrome Update to Patch Dozens of New Browser Vulnerabilities - Hackers Target Real Estate Websites with Skimmer in Latest Supply Chain Attack - Microsoft Warns of Continued Attacks Exploiting Apache Log4j Vulnerabilities - Beware of Fake Telegram Messenger App Hacking PCs with Purple Fox Malware - Researchers Detail New HomeKit 'doorLock' Bug Affecting Apple iOS - SAILFISH System to Find State-Inconsistency Bugs in Smart Contracts - Detecting Evasive Malware on IoT Devices Using Electromagnetic Emanations - Are Medical Devices at Risk of Ransomware Attacks? - Microsoft Issues Fix for Exchange Y2K22 Bug That Crippled Email Delivery Service - New Apache Log4j Update Released to Patch Newly Discovered Vulnerability - Experts Detail Logging Tool of DanderSpritz Framework Used by Equation Group Hackers - Garrett Walk-Through Metal Detectors Can Be Hacked Remotely - 'Spider-Man: No Way Home' Pirated Downloads Contain Crypto-Mining Malware - PECB Certified Lead Ethical Hacker: Take Your Career to the Next Level - New Android Malware Targeting Brazil's Itaú Unibanco Bank Customers - New BLISTER Malware Using Code Signing Certificates to Evade Detection - New Ransomware Variants Flourish Amid Law Enforcement Actions - Expert Details macOS Bug That Could Let Malware Bypass Gatekeeper Security - IoT SAFE — An Innovative Way to Secure IoT - CISA, FBI and NSA Publish Joint Advisory and Scanner for Log4j Vulnerabilities - 4-Year-Old Bug in Azure App Service Exposed Hundreds of Source Code Repositories - Researchers Disclose Unpatched Vulnerabilities in Microsoft Teams Software - New Exploit Lets Malware Attackers Bypass Patch for Critical Microsoft MSHTML Flaw - China suspends deal with Alibaba for not sharing Log4j 0-day first with the government - Active Directory Bugs Could Let hackers Take Over Windows Domain Controllers - Top 7 common Cybersecurity Myths — Busted - Tropic Trooper Cyber Espionage Hackers Targeting Transportation Sector - Secret Backdoors Found in German-made Auerswald VoIP System - Meta Sues Hackers Behind Facebook, WhatsApp and Instagram Phishing Attacks - New Mobile Network Vulnerabilities Affect All Cellular Generations Since 2G - Experts Discover Backdoor Deployed on the U.S. Federal Agency's Network - CISA Compliance for 2022 - Over 500,000 Android Users Downloaded a New Joker Malware App from Play Store - New Local Attack Vector Expands the Attack Surface of Log4j Vulnerability - Apache Issues 3rd Patch to Fix New High-Severity Log4j Vulnerability - Facebook Bans 7 'Cyber Mercenary' Companies for Spying on 50,000 Users - New PseudoManuscrypt Malware Infected Over 35,000 Computers in 2021 - How to Prevent Customer Support Help Desk Fraud Using VPN and Other Tools - Researchers Uncover New Coexistence Attacks On Wi-Fi and Bluetooth Chips - New Phorpiex Botnet Variant Steals Half a Million Dollars in Cryptocurrency - The Guide to Automating Security Training for Lean Security Teams - New Fileless Malware Uses Windows Registry as Storage to Evade Detection - Hackers Begin Exploiting Second Log4j Vulnerability as a Third Flaw Emerges - Facebook to Pay Hackers for Reporting Data Scraping Bugs and Scraped Datasets - Hackers Using Malicious IIS Server Module to Steal Microsoft Exchange Credentials - Cynet's MDR Offers Organizations Continuous Security Oversight - Microsoft Issues Windows Update to Patch 0-Day Used to Spread Emotet Malware - Second Log4j Vulnerability (CVE-2021-45046) Discovered — New Patch Released - How Extended Security Posture Management Optimizes Your Security Stack - Hackers Exploit Log4j Vulnerability to Infect Computers with Khonsari Ransomware - Ransomware Affiliate Arrested in Romania; 51 Stolen Data Brokers Arrested in Ukraine - Latest Apple iOS Update Patches Remote Jailbreak Exploit for iPhones - Update Google Chrome to Patch New Zero-Day Exploit Detected in the Wild - Top 3 SaaS Security Threats for 2022 - Karakurt: A New Emerging Data Theft and Cyber Extortion Hacking Group - Microsoft Details Building Blocks of Widely Active Qakbot Banking Trojan - Apache Log4j Vulnerability — Log4Shell — Widely Under Active Attack - BlackCat: A New Rust-based Ransomware Malware Spotted in the Wild - Extremely Critical Log4J Vulnerability Leaves Much of the Internet at Risk - Over 300,000 MikroTik Devices Found Vulnerable to Remote Hacking Bugs - Russia Blocks Tor Privacy Service in Latest Censorship Move - 1.6 Million WordPress Sites Under Cyberattack From Over 16,000 IP Addresses - Why Holidays Put Your Company at Risk of Cyber Attack (And How to Take Precautions) - Over a Dozen Malicious NPM Packages Caught Hijacking Discord Servers - Google Disrupts Blockchain-based Glupteba Botnet; Sues Russian Hackers - SonicWall Urges Customers to Immediately Patch Critical SMA 100 Flaws - 140,000 Reasons Why Emotet is Piggybacking on TrickBot in its Return from the Dead - [eBook] Guide to Achieving 24x7 Threat Monitoring and Response for Lean IT Security Teams - Warning: Yet Another Bitcoin Mining Malware Targeting QNAP NAS Devices - SolarWinds Hackers Targeting Government and Business Entities Worldwide - Eltima SDK Contain Multiple Vulnerabilities Affecting Several Cloud Service Provides - Microsoft Seizes 42 Malicious Web Domains Used By Chinese Hackers - Latest Firefox 95 Includes RLBox Sandboxing to Protect Browser from Malicious Code - Hackers Steal $200 Million Worth of Cryptocurrency Tokens from BitMart Exchange - Vulnerability Scanning Frequency Best Practices - Malicious KMSPico Windows Activator Stealing Users' Cryptocurrency Wallets - 14 New XS-Leaks (Cross-Site Leaks) Attacks Affect All Modern Web Browsers - Pegasus Spyware Reportedly Hacked iPhones of U.S. State Department and Diplomats - Researchers Detail How Pakistani Hackers Targeting Indian and Afghan Governments - Warning: Yet Another Zoho ManageEngine Product Found Under Active Attacks - New Payment Data Stealing Malware Hides in Nginx Process on Linux Servers - Why Everyone Needs to Take the Latest CISA Directive Seriously - New Malvertising Campaigns Spreading Backdoors, Malicious Chrome Extensions - Researches Detail 17 Malicious Frameworks Used to Attack Air-Gapped Networks - Meta Expands Facebook Protect Program to Activists, Journalists, Government Officials - CISA Warns of Actively Exploited Critical Zoho ManageEngine ServiceDesk Vulnerability - Let there be light: Ensuring visibility across the entire API lifecycle - Critical Bug in Mozilla’s NSS Crypto Library Potentially Affects Several Other Software - Russian Man Gets 60 Months Jail for Providing Bulletproof Hosting to Cyber Criminals - Hackers Increasingly Using RTF Template Injection Technique in Phishing Attacks - New EwDoor Botnet Targeting Unpatched AT&T Network Edge Devices - Hacker Jailed for Stealing Millions of Dollars in Cryptocurrencies by SIM Hijacking - Twitter Bans Users From Posting ‘Private Media’ Without a Person's Consent - Critical Wormable Security Flaw Found in Several HP Printer Models - New Hub for Lean IT Security Teams - Panasonic Suffers Data Breach After Hackers Hack Into Its Network - Unpatched Unauthorized File Read Vulnerability Affects Microsoft Windows OS - WIRTE Hacker Group Targets Government, Law, Financial Entities in Middle East - Hackers Using Compromised Google Cloud Accounts to Mine Cryptocurrency - New Chinotto Spyware Targets North Korean Defectors, Human Rights Activists - 4 Android Banking Trojan Campaigns Targeted Over 300,000 Devices in 2021 - CleanMyMac X: Performance and Security Software for Macbook - Interpol Arrests Over 1,000 Cyber Criminals From 20 Countries; Seizes $27 Million - Italy's Antitrust Regulator Fines Google and Apple for "Aggressive" Data Practices - Hackers Targeting Biomanufacturing Facilities With Tardigrade Malware - CronRAT: A New Linux Malware That’s Scheduled to Run on February 31st - Crypto Hackers Using Babadeda Crypter to Make Their Malware Undetectable - Product Releases Should Not Be Scary - Israel Bans Sales of Hacking and Surveillance Tools to 65 Countries - Hackers Using Microsoft MSHTML Flaw to Spy on Targeted PCs with Malware - This New Stealthy JavaScript Loader Infecting Computers with Malware - If You're Not Using Antivirus Software, You're Not Paying Attention - Warning — Hackers Exploiting New Windows Installer Zero-Day Exploit in the Wild - VMware Warns of Newly Discovered Vulnerabilities in vSphere Web Client - Eavesdropping Bugs in MediaTek Chips Affect 37% of All Smartphones and IoT Globally - APT C-23 Hackers Using New Android Spyware Variant to Target Middle East Users - Apple Sues Israel's NSO Group for Spying on iPhone Users With Pegasus Spyware - Researchers Detail Privilege Escalation Bugs Reported in Oracle VirtualBox - What Avengers Movies Can Teach Us About Cybersecurity - The Importance of IT Security in Your Merger Acquisition - More Stealthier Version of BrazKing Android Malware Spotted in the Wild - GoDaddy Data Breach Exposes Over 1 Million WordPress Customers' Data - New Golang-based Linux Malware Targeting eCommerce Websites - Hackers Exploiting ProxyLogon and ProxyShell Flaws in Spam Campaigns - Facebook Postpones Plans for E2E Encryption in Messenger, Instagram Until 2023 - RedCurl Corporate Espionage Hackers Return With Updated Hacking Tools - U.S. Charged 2 Iranian Hackers for Threatening Voters During 2020 Presidential Election - 11 Malicious PyPI Python Libraries Caught Stealing Discord Tokens and Installing Shells - North Korean Hackers Found Behind a Range of Credential Theft Campaigns - Experts Expose Secrets of Conti Ransomware Group That Made 25 Million from Victims - A Simple 5-Step Framework to Minimize the Risk of a Data Breach - FBI Issues Flash Alert on Actively Exploited FatPipe VPN Zero-Day Bug - Critical Root RCE Bug Affects Multiple Netgear SOHO Router Models - New Side Channel Attacks Re-Enable Serious DNS Cache Poisoning Attacks - How to Build a Security Awareness Training Program that Yields Measurable Results - Hackers Targeting Myanmar Use Domain Fronting to Hide Malicious Activities - U.S., U.K. and Australia Warn of Iranian Hackers Exploiting Microsoft, Fortinet Flaws - Israel's Candiru Spyware Found Linked to Watering Hole Attacks in U.K and Middle East - On-Demand Webinar: Into the Cryptoverse - Facebook Bans Pakistani and Syrian Hacker Groups for Abusing its Platform - New Blacksmith Exploit Bypasses Current Rowhammer Attack Defenses - Researchers Demonstrate New Way to Detect MitM Phishing Kits in the Wild - Notorious Emotet Botnet Makes a Comeback with the Help of TrickBot Malware - New 'Moses Staff' Hacker Group Targets Israeli Companies With Destructive Attacks - SharkBot — A New Android Trojan Stealing Banking and Cryptocurrency Accounts - North Korean Hackers Target Cybersecurity Researchers with Trojanized IDA Pro - Researchers Demonstrate New Fingerprinting Attack on Tor Encrypted Traffic - How to Tackle SaaS Security Misconfigurations - FBI's Email System Hacked to Send Out Fake Cyber Security Alert to Thousands - Hackers Increasingly Using HTML Smuggling in Malware and Phishing Attacks - Researchers Uncover Hacker-for-Hire Group That's Active Since 2015 - Hackers Exploit macOS Zero-Day to Hack Hong Kong Users with new Implant - Abcbot — A New Evolving Wormable Botnet Malware Targeting Linux - TrickBot Operators Partner with Shathak Attackers for Conti Ransomware - Navigating The Threat Landscape 2021 – From Ransomware to Botnets - Iran's Lyceum Hackers Target Telecoms, ISPs in Israel, Saudi Arabia, and Africa - Palo Alto Warns of Zero-Day Bug in Firewalls Using GlobalProtect Portal VPN - 13 New Flaws in Siemens Nucleus TCP/IP Stack Impact Safety-Critical Equipment - Researchers Discover PhoneSpy Malware Spying on South Korean Citizens - 14 New Security Flaws Found in BusyBox Linux Utility for Embedded Devices - Microsoft Issues Patches for Actively Exploited Excel, Exchange Server 0-Day Bugs - Unique Challenges to Cyber-Security in Healthcare and How to Address Them - Robinhood Trading App Suffers Data Breach Exposing 7 Million Users' Information - U.S. Charges Ukrainian Hacker for Kaseya Attack; Seizes $6 Million from REvil Gang - Experts Detail Malicious Code Dropped Using ManageEngine ADSelfService Exploit - Suspected REvil Ransomware Affiliates Arrested in Global Takedown - Types of Penetration Testing - BlackBerry Uncovers Initial Access Broker Linked to 3 Distinct Hacker Groups - Critical Flaws in Philips TASY EMR Could Expose Patient Data - Two NPM Packages With 22 Million Weekly Downloads Found Backdoored - Ukraine Identifies Russian FSB Officers Hacking As Gamaredon Group - U.S. Federal Agencies Ordered to Patch Hundreds of Actively Exploited Flaws - Hardcoded SSH Key in Cisco Policy Suite Lets Remote Hackers Gain Root Access - U.S. Offers $10 Million Reward for Information on DarkSide Ransomware Group - Critical RCE Vulnerability Reported in Linux Kernel's TIPC Module - Our journey to API security at Raiffeisen Bank International - US Sanctions Pegasus-maker NSO Group and 3 Others For Selling Spyware - BlackMatter Ransomware Reportedly Shutting Down; Latest Analysis Released - Mekotio Banking Trojan Resurfaces with New Attacking and Stealth Techniques - Product Overview - Cynet Centralized Log Management - Facebook to Shut Down Facial Recognition System and Delete Billions of Records - Alert! Hackers Exploiting GitLab Unauthenticated RCE Flaw in the Wild - Google Warns of New Android 0-Day Vulnerability Under Active Targeted Attacks - Google to Pay Hackers $31,337 for Exploiting Patched Linux Kernel Flaws - Critical Flaws Uncovered in Pentaho Business Analytics Software - Securing SaaS Apps — CASB vs. SSPM - New 'Trojan Source' Technique Lets Hackers Hide Vulnerabilities in Source Code - Researchers Uncover 'Pink' Botnet Malware That Infected Over 1.6 Million Devices - This New Android Malware Can Gain Root Access to Your Smartphones - Police Arrest Suspected Ransomware Hackers Behind 1,800 Attacks Worldwide - Winter is Coming for CentOS 8 - New 'Shrootless' Bug Could Let Attackers Install Rootkit on macOS Systems - Russian TrickBot Gang Hacker Extradited to U.S. Charged with Cybercrime - Google Releases Urgent Chrome Update to Patch 2 Actively Exploited 0-Day Bugs - Israeli Researcher Cracked Over 3,500 Wi-Fi Networks in Tel Aviv City - A Guide to Shift Away from Legacy Authentication Protocols in Microsoft 365 - New Wslink Malware Loader Runs as a Server and Executes Modules in Memory - Malicious NPM Libraries Caught Installing Password Stealer and Ransomware - Hackers Using Squirrelwaffle Loader to Deploy Qakbot and Cobalt Strike - Cyber Attack in Iran Reportedly Cripples Gas Stations Across the Country - [eBook] The Guide to Centralized Log Management for Lean IT Security Teams - Latest Report Uncovers Supply Chain Attacks by North Korean Hackers - Over 10 Million Android Users Targeted With Premium SMS Scam Apps - Malicious Firefox Add-ons Block Browser From Downloading Security Updates - Hardware-grade enterprise authentication without hardware: new SIM security solution for IAM - New Attack Lets Hackers Collect and Spoof Browser's Digital Fingerprints - Microsoft Warns of Continued Supply-Chain Attacks by the Nobelium Hacker Group - Hackers Exploited Popular BillQuick Billing Software to Deploy Ransomware - NYT Journalist Repeatedly Hacked with Pegasus after Reporting on Saudi Arabia - Microsoft Warns of TodayZoo Phishing Kit Used in Extensive Credential Stealing Attacks - Feds Reportedly Hacked REvil Ransomware Group and Forced it Offline - 'Lone Wolf' Hacker Group Targeting Afghanistan and India with Commodity RATs - Popular NPM Package Hijacked to Publish Crypto-mining Malware - Hackers Set Up Fake Company to Get IT Experts to Launch Ransomware Attacks - Before and After a Pen Test: Steps to Get Through It - Researchers Discover Microsoft-Signed FiveSys Rootkit in the Wild - Product Overview: Cynet SaaS Security Posture Management (SSPM) - Bug in Popular WinRAR Software Could Let Attackers Hack Your Computer - Malicious NPM Packages Caught Running Cryptominer On Windows, Linux, macOS Devices - Two Eastern Europeans Sentenced for Providing Bulletproof Hosting to Cyber Criminals - OWASP's 2021 List Shuffle: A New Battle Plan and Primary Foe - Researchers Break Intel SGX With New 'SmashEx' CPU Attack Technique - LightBasin Hackers Breach at Least 13 Telecom Service Providers Since 2019 - Microsoft Warns of New Security Flaw Affecting Surface Pro 3 Devices - Squirrel Engine Bug Could Let Attackers Hack Games and Cloud Services - A New Variant of FlawedGrace Spreading Through Mass Email Campaigns - Cybersecurity Experts Warn of a Rise in Lyceum Hacker Group Activities in Tunisia - Why Database Patching Best Practice Just Doesn't Work and How to Fix It - Over 30 Countries Pledge to Fight Ransomware Attacks in US-led Global Meeting - REvil Ransomware Gang Goes Underground After Tor Sites Were Compromised - Windows 10, Linux, iOS, Chrome and Many Others at Hacked Tianfu Cup 2021 - Ad-Blocking Chrome Extension Caught Injecting Ads in Google Search Pages - Attackers Behind Trickbot Expanding Malware Distribution Channels - Google: We're Tracking 270 State-Sponsored Hacker Groups From Over 50 Countries - CISA Issues Warning On Cyber Threats Targeting Water and Wastewater Systems - Critical Remote Hacking Flaws Disclosed in Linphone and MicroSIP Softphones - The Ultimate SaaS Security Posture Management (SSPM) Checklist - VirusTotal Releases Ransomware Report Based on Analysis of 80 Million Samples - Experts Warn of Unprotected Prometheus Endpoints Exposing Sensitive Information - Critical Flaw in OpenSea Could Have Let Hackers Steal Cryptocurrency From Wallets - [eBook] The Guide for Reducing SaaS Applications Risk for Lean IT Security Teams - Update Your Windows PCs Immediately to Patch 4 New 0-Days Under Active Attack - GitHub Revoked Insecure SSH Keys Generated by a Popular git Client - Digital Signature Spoofing Flaws Uncovered in OpenOffice and LibreOffice - Microsoft Fended Off a Record 2.4 Tbps DDoS Attack Targeting Azure Customers - Microsoft Warns of Iran-Linked Hackers Targeting US and Israeli Defense Firms - Apple Releases Urgent iPhone and iPad Updates to Patch New Zero-Day Vulnerability - Ukraine Arrests Operator of DDoS Botnet with 100,000 Compromised Devices - Verify End-Users at the Helpdesk to Prevent Social Engineering Cyber Attack - Indian-Made Mobile Spyware Targeted Human Rights Activist in Togo - Researchers Warn of FontOnLake Rootkit Malware Targeting Linux Systems - Ransomware Group FIN12 Aggressively Going After Healthcare Targets - New Patch Released for Actively Exploited 0-Day Apache Path Traversal to RCE Attacks - Penetration Testing Your AWS Environment - A CTO's Guide - Code Execution Bug Affects Yamale Python Package — Used by Over 200 Projects - New U.S. Government Initiative Holds Contractors Accountable for Cybersecurity - Apple now requires all apps to make it easy for users to delete their accounts - Twitch Suffers Massive 125GB Data and Source Code Leak Due to Server Misconfiguration - Cyber Security WEBINAR — How to Ace Your InfoSec Board Deck - Iranian Hackers Abuse Dropbox in Cyberattacks Against Aerospace and Telecom Firms - Google to turn on 2-factor authentication by default for 150 million users - Multiple Critical Flaws Discovered in Honeywell Experion PKS and ACE Controllers - Researchers Discover UEFI Bootkit Targeting Windows Computers Since 2012 - New Study Links Seemingly Disparate Malware Attacks to Chinese Hackers - Apache Warns of Zero-Day Exploit in the Wild — Patch Your Web Servers Now! - Ransomware Hackers Who Attacked Over 100 Companies Arrested in Ukraine - Poorly Configured Apache Airflow Instances Leak Credentials for Popular Services - Creating Wireless Signals with Ethernet Cable to Steal Data from Air-Gapped Systems - A New APT Hacking Group Targeting Fuel, Energy, and Aviation Industries - The Shortfalls of Mean Time Metrics in Cybersecurity - Beware of Fake Amnesty International Antivirus for Pegasus that Hacks PCs with Malware - Chinese Hackers Used a New Rootkit to Spy on Targeted Windows 10 Users - Apple Pay Can be Abused to Make Contactless Payments From Locked iPhones - Incentivizing Developers is the Key to Better Security Practices - New Azure AD Bug Lets Hackers Brute-Force Passwords Without Getting Caught - Update Google Chrome ASAP to Patch 2 New Actively Exploited Zero-Day Flaws - New Tomiris Backdoor Found Linked to Hackers Behind SolarWinds Cyberattack - Here's a New Free Tool to Discover Unprotected Cloud Storage Instances - Cybersecurity Firm Group-IB's CEO Arrested Over Treason Charges in Russia - Facebook Releases New Tool That Finds Security and Privacy Bugs in Android Apps - [eBook] Your First 90 Days as CISO — 9 Steps to Success - Beware! This Android Trojan Stole Millions of Dollars from Over 10 Million Users - Hackers Targeting Brazil's PIX Payment System to Drain Users' Bank Accounts - New FinSpy Malware Variant Infects Windows Systems With UEFI Bootkit - Atlassian Confluence RCE Flaw Abused in Multiple Cyberattack Campaigns - New BloodyStealer Trojan Steals Gamers' Epic Games and Steam Accounts - Microsoft Warns of FoggyWeb Malware Targeting Active Directory FS Servers - New Android Malware Steals Financial Data from 378 Banking and Wallet Apps - Russian Turla APT Group Deploying New Backdoor on Targeted Systems - How Does DMARC Prevent Phishing? - A New Jupyter Malware Version is Being Distributed via MSI Installers - SonicWall Issues Patches for a New Critical Flaw in SMA 100 Series Devices - Urgent Chrome Update Released to Patch Actively Exploited Zero-Day Vulnerability - A New APT Hacker Group Spying On Hotels and Governments Worldwide - Cisco Releases Patches 3 New Critical Flaws Affecting IOS XE Software - Google Warns of a New Way Hackers Can Make Malware Undetectable on Windows - Apple's New iCloud Private Relay Service Leaks Users' Real IP Addresses - Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days - A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit - Microsoft Exchange Bug Exposes ~100,000 Windows Domain Credentials - Why You Should Consider QEMU Live Patching - Microsoft Warns of a Wide-Scale Phishing-as-a-Service Operation - New Nagios Software Bugs Could Let Hackers Take Over IT Infrastructures - How Cynet's Response Automation Helps Organizations Mitigate Cyber Threats - US Sanctions Cryptocurrency Exchange SUEX for Aiding Ransomware Gangs - The Gap in Your Zero Trust Implementation - High-Severity RCE Flaw Disclosed in Several Netgear Router Models - VMware Warns of Critical File Upload Vulnerability Affecting vCenter Server - Unpatched High-Severity Vulnerability Affects Apple macOS Computers - Cring Ransomware Gang Exploits 11-Year-Old ColdFusion Bug - New Capoae Malware Infiltrates WordPress Sites and Installs Backdoored Plugin - Cybersecurity Priorities in 2021: How Can CISOs Re-Analyze and Shift Focus? - Europol Busts Major Crime Ring, Arrests Over 100 Online Fraudsters - A New Wave of Malware Attack Targeting Organizations in South America - Google to Auto-Reset Unused Android App Permissions for Billions of Devices - Numando: A New Banking Trojan Targeting Latin American Users - New Malware Targets Windows Subsystem for Linux to Evade Detection - Malware Attack on Aviation Sector Uncovered After Going Unnoticed for 2 Years - Third Critical Bug Affects Netgear Smart Switches — Details and PoC Released - Travis CI Flaw Exposes Secrets of Thousands of Open Source Projects - Windows MSHTML 0-Day Exploited to Deploy Cobalt Strike Beacon in Targeted Attacks - You Can Now Sign-in to You Microsoft Accounts Without a Password - Critical Flaws Discovered in Azure App That Microsoft Secretly Installs on Linux VMs - 3 Former U.S. Intelligence Officers Admit to Hacking for UAE Company - Microsoft Releases Patch for Actively Exploited Windows Zero-Day Vulnerability - New Stealthier ZLoader Variant Spreading Via Fake TeamViewer Download Ads - HP OMEN Gaming Hub Flaw Affects Millions of Windows Computers - Zero Trust Requires Cloud Data Security with Integrated Continuous Endpoint Risk Assessment - Apple Issues Urgent Updates to Fix New Zero-Day Linked to Pegasus Spyware - Update Google Chrome to Patch 2 New Zero-Day Flaws Under Attack - Linux Implementation of Cobalt Strike Beacon Targeting Organizations Worldwide - Critical Bug Reported in NPM Package With Millions of Downloads Weekly - New SpookJS Attack Bypasses Google Chrome’s Site Isolation Protection - WhatsApp to Finally Let Users Encrypt Their Chat Backups in the Cloud - Mēris Botnet Hit Russia's Yandex With Massive 22 Million RPS DDoS Attack - Moving Forward After CentOS 8 EOL - SOVA: New Android Banking Trojan Emerges With Growing Capabilities - Experts Link Sidewalk Malware Attacks to Grayfly Chinese Hacker Group - Microsoft Warns of Cross-Account Takeover Bug in Azure Container Instances - Fighting the Rogue Toaster Army: Why Secure Coding in Embedded Systems is Our Defensive Edge - Russian Ransomware Group REvil Back Online After 2-Month Hiatus - Hackers Leak VPN Account Passwords From 87,000 Fortinet FortiGate Devices - CISA Warns of Actively Exploited Zoho ManageEngine ADSelfService Vulnerability - HAProxy Found Vulnerable to Critical HTTP Request Smuggling Attack - 3 Ways to Secure SAP SuccessFactors and Stay Compliant - Experts Uncover Mobile Spyware Attacks Targeting Kurdish Ethnic Group - [Ebook] The Guide for Speeding Time to Response for Lean IT Security Teams - New 0-Day Attack Targeting Windows Users With Microsoft Office Documents - Latest Atlassian Confluence Flaw Exploited to Breach Jenkins Project Server - Traffic Exchange Networks Distributing Malware Disguised as Cracked Software - ProtonMail Shares Activist's IP Address With Authorities Despite Its "No Log" Claims - Critical Auth Bypass Bug Affect NETGEAR Smart Switches — Patch and PoC Released - Microsoft Says Chinese Hackers Were Behind SolarWinds Serv-U SSH 0-Day Attack - Apple Delays Plans to Scan Devices for Child Abuse Images After Privacy Backlash - This New Malware Family Using CLFS Log Files to Avoid Detection - U.S. Cyber Command Warns of Ongoing Attacks Exploiting Atlassian Confluence Flaw - Cisco Issues Patch for Critical Enterprise NFVIS Flaw — PoC Exploit Available - FIN7 Hackers Using Windows 11 Themed Documents to Drop Javascript Backdoor - New BrakTooth Flaws Leave Millions of Bluetooth-enabled Devices Vulnerable - What is AS-REP Roasting attack, really? - WhatsApp Photo Filter Bug Could Have Exposed Your Data to Remote Attackers - Is Traffic Mirroring for NDR Worth the Trouble? We Argue It Isn't - FTC Bans Stalkerware App SpyFone; Orders Company to Erase Secretly Stolen Data - Cybercriminals Abusing Internet-Sharing Services to Monetize Malware Campaigns - Linphone SIP Stack Bug Could Let Attackers Remotely Crash Client Devices - [LIVE WEBINAR] How Lean Security Teams Can Improve Their Time to Response - QNAP Working on Patches for OpenSSL Flaws Affecting its NAS Devices - Attackers Can Remotely Disable Fortress Wi-Fi Home Security Alarms - Researchers Propose Machine Learning-based Bluetooth Authentication Scheme - New Microsoft Exchange 'ProxyToken' Flaw Lets Attackers Reconfigure Mailboxes - CISA Adds Single-Factor Authentication to the List of Bad Practices - How Does MTA-STS Improve Your Email Security? - Get Lifetime Access to 24 Professional Cybersecurity Certification Prep Courses - Microsoft Warns of Widespread Phishing Attacks Using Open Redirects - LockFile Ransomware Bypasses Protection Using Intermittent File Encryption - Kaseya Issues Patches for Two New 0-Day Flaws Affecting Unitrends Servers - Microsoft, Google to Invest $30 Billion in Cybersecurity Over Next 5 Years - The Increased Liability of Local In-home Propagation - Critical Cosmos Database Flaw Affected Thousands of Microsoft Azure Customers - F5 Releases Critical Security Patch for BIG-IP and BIG-IQ Devices - New Passwordless Verification API Uses SIM Security for Zero Trust Remote Access - VMware Issues Patches to Fix New Flaws Affecting Multiple Products - Critical Flaw Discovered in Cisco APIC for Switches — Patch Released - Preventing your Cloud 'Secrets' from Public Exposure: An IDE plugin solution - Researchers Uncover FIN8's New Backdoor Targeting Financial Institutions - B. Braun Infusomat Pumps Could Let Attackers Remotely Alter Medication Dosages - New SideWalk Backdoor Targets U.S.-based Computer Retail Business - Modified Version of WhatsApp for Android Spotted Installing Triada Trojan - Bahraini Activists Targeted Using a New iPhone Zero-Day Exploit From NSO Group - Researchers Warn of 4 Emerging Ransomware Groups That Can Cause Havoc - 38 Million Records Exposed from Microsoft Power Apps of Dozens of Organisations - Navigating Vendor Risk Management as IT Professionals - Researchers Detail Modus Operandi of ShinyHunters Cyber Crime Group - Top 15 Vulnerabilities Attackers Exploited Millions of Times to Hack Linux Systems - WARNING: Microsoft Exchange Under Attack With ProxyShell Flaws - ShadowPad Malware is Becoming a Favorite Choice of Chinese Espionage Groups - Cloudflare mitigated one of the largest DDoS attack involving 17.2 million rps - Cybercrime Group Asking Insiders for Help in Planting Ransomware - Critical Flaw Found in Older Cisco Small Business Routers Won't Be Fixed - Mozi IoT Botnet Now Also Targets Netgear, Huawei, and ZTE Network Gateways - Researchers Find New Evidence Linking Diavol Ransomware to TrickBot Gang - Critical ThroughTek SDK Bug Could Let Attackers Spy On Millions of IoT Devices - Iranian Hackers Target Several Israeli Organizations With Supply-Chain Attacks - BadAlloc Flaw Affects BlackBerry QNX Used in Millions of Cars and Medical Devices - Does a VPN Protect You from Hackers? - NK Hackers Deploy Browser Exploits on South Korean Sites to Spread Malware - Unpatched Remote Hacking Flaw Disclosed in Fortinet's FortiWeb WAF - Malicious Ads Target Cryptocurrency Users With Cinobi Banking Trojan - Solution Providers Can Now Add Incident Response to Their Services Portfolio For Free - Multiple Flaws Affecting Realtek Wi-Fi SDKs Impact Nearly a Million IoT Devices - Attackers Can Weaponize Firewalls and Middleboxes for Amplified DDoS Attacks - Dozens of STARTTLS Related Flaws Found Affecting Popular Email Clients - New AdLoad Variant Bypasses Apple's Security Defenses to Target macOS Systems - New Glowworm Attack Recovers Device's Sound from Its LED Power Indicator - Learn Ethical Hacking From Scratch — 18 Online Courses for Just $43 - Hackers Spotted Using Morse Code in Phishing Attacks to Evade Detection - Facebook Adds End-to-End Encryption for Audio and Video Calls in Messenger - Hackers Actively Searching for Unpatched Microsoft Exchange Servers - Why Is There A Surge In Ransomware Attacks? - Ransomware Gangs Exploiting Windows Print Spooler Vulnerabilities - Experts Shed Light On New Russian Malware-as-a-Service Written in Rust - How Companies Can Protect Themselves from Password Spraying Attacks - IT Giant Accenture Hit by LockBit Ransomware; Hackers Threaten to Leak Data - Microsoft Security Bulletin Warns of New Windows Print Spooler RCE Vulnerability - Bugs in Managed DNS Services Cloud Let Attackers Spy On DNS Traffic - MSPs and MSSPs Can Increase Profit Margins With Cynet 360 Platform - Hackers Steal Over $600 Million Worth of Cryptocurrencies from Poly Network - Magento Update Released Fix Critical Flaws Affecting E-Commerce Sites - Microsoft Releases Windows Updates to Patch Actively Exploited Vulnerability - Experts Believe Chinese Hackers Are Behind Several Attacks Targeting Israel - Hackers Exploiting New Auth Bypass Bug Affecting Millions of Arcadyan Routers - A Critical Random Number Generator Flaw Affects Billions of IoT Devices - Users Can Be Just As Dangerous As Hackers - Beware! New Android Malware Hacks Thousands of Facebook Accounts - Pulse Secure VPNs Get New Urgent Update for Poorly Patched Critical Flaw - Apple to Scan Every Device for Child Abuse Content — But Experts Fear for Privacy - New Amazon Kindle Bug Could've Let Attackers Hijack Your eBook Reader - India's Koo, a Twitter-like Service, Found Vulnerable to Critical Worm Attacks - VMware Issues Patches to Fix Critical Bugs Affecting Multiple Products - Salesforce Release Updates — A Cautionary Tale for Security Teams - A Wide Range of Cyber Attacks Leveraging Prometheus TDS Malware Service - Unpatched Security Flaws Expose Mitsubishi Safety PLCs to Remote Attacks - Cisco Issues Critical Security Patches to Fix Small Business VPN Router Bugs - Several Malware Families Targeting IIS Web Servers With Malicious Modules - Russian Federal Agencies Were Attacked With Chinese Webdav-O Virus - New Chinese Spyware Being Used in Widespread Cyber Espionage Attacks - Critical Flaws Affect Embedded TCP/IP Stack Widely Used in Industrial Control Devices - Chinese Hackers Target Major Southeast Asian Telecom Companies - Cynet Empowers IT Resellers and Service Providers to Become Fully Qualified MSSPs - PwnedPiper PTS Security Flaws Threaten 80% of Hospitals in the U.S. - New APT Hacking Group Targets Microsoft IIS Servers with ASP.NET Exploits - PyPI Python Package Repository Patches Critical Supply Chain Flaw - Solarmarker InfoStealer Malware Once Again Making its Way Into the Wild - Several Malicious Typosquatted Python Libraries Found On PyPI Repository - Experts Uncover Several C&C Servers Linked to WellMess Malware - A New Wiper Malware Was Behind Recent Cyberattack On Iranian Train System - Phony Call Centers Tricking Users Into Installing Ransomware and Data-Stealers - Hackers Exploit Microsoft Browser Bug to Deploy VBA Malware on Targeted PCs - New Ransomware Gangs — Haron and BlackMatter — Emerge on Cybercrime Forums - New Android Malware Uses VNC to Spy and Steal Passwords from Victims - Best Practices to Thwart Business Email Compromise (BEC) Attacks - Top 30 Critical Security Vulnerabilities Most Exploited by Hackers - UBEL is the New Oscorp — Android Credential Stealing Malware Active in the Wild - Chinese Hackers Implant PlugX Variant on Compromised MS Exchange Servers - Hackers Posed as Aerobics Instructors for Years to Target Aerospace Employees - New Bug Could Let Attackers Hijack Zimbra Server by Sending Malicious Email - Several Bugs Found in 3 Open-Source Software Used by Several Businesses - Hackers Turning to 'Exotic' Programming Languages for Malware Development - Apple Releases Urgent 0-Day Bug Patch for Mac, iPhone and iPad Devices - BIMI: A Visual Take on Email Authentication and Security - How to Mitigate Microsoft Windows 10, 11 SeriousSAM Vulnerability - Microsoft Warns of LemonDuck Malware Targeting Windows and Linux Systems - New PetitPotam NTLM Relay Attack Lets Hackers Take Over Windows Domains - Nasty macOS Malware XCSSET Now Targets Google Chrome, Telegram Software - Wake up! Identify API Vulnerabilities Proactively, From Production Back to Code - Dutch Police Arrest Two Hackers Tied to "Fraud Family" Cybercrime Ring - Kaseya Gets Universal Decryptor to Help REvil Ransomware Victims - APT Hackers Distributed Android Trojan via Syrian e-Government Portal - Reduce End-User Password Change Frustrations - Oracle Warns of Critical Remotely Exploitable Weblogic Server Flaws - Another Hacker Arrested for 2020 Twitter Hack and Massive Bitcoin Scam - Malicious NPM Package Caught Stealing Users' Saved Passwords From Browsers - XLoader Windows InfoStealer Malware Now Upgraded to Attack macOS Systems - Several New Critical Flaws Affect CODESYS Industrial Automation Software - [eBook] A Guide to Stress-Free Cybersecurity for Lean IT Security Teams - New Windows and Linux Flaws Give Attackers Highest System Privileges - 16-Year-Old Security Bug Affects Millions of HP, Samsung, Xerox Printers - This New Malware Hides Itself Among Windows Defender Exclusions to Evade Detection - US and Global Allies Accuse China of Massive Microsoft Exchange Attack - Researchers Warn of Linux Cryptojacking Attackers Operating from Romania - Turns Out That Low-Risk iOS Wi-Fi Naming Bug Can Hack iPhones Remotely - Five Critical Password Security Rules Your Employees Are Ignoring - Researcher Uncover Yet Another Unpatched Windows Printer Spooler Vulnerability - New Leak Reveals Abuse of Pegasus Spyware to Target Journalists Globally - China's New Law Requires Researchers to Report All Zero-Day Bugs to Government - Instagram Launches 'Security Checkup' to Help Users Recover Hacked Accounts - CloudFlare CDNJS Bug Could Have Led to Widespread Supply-Chain Attacks - Israeli Firm Helped Governments Target Journalists, Activists with 0-Days and Spyware - The Definitive RFP Templates for EDR/EPP and APT Protection - Facebook Suspends Accounts Used by Iranian Hackers to Target US Military Personnel - Update Your Chrome Browser to Patch New Zero‑Day Bug Exploited in the Wild - Microsoft Warns of New Unpatched Windows Print Spooler Vulnerability - China's Cyberspies Targeting Southeast Asian Government Entities - New Zero-Trust API Offers Mobile Carrier Authentication to Developers - REvil Ransomware Gang Mysteriously Disappears After High-Profile Attacks - 16 Cybercriminals Behind Mekotio and Grandoreiro Banking Trojan Arrested in Spain - Use This Definitive RFP Template to Effectively Evaluate XDR solutions - Update Your Windows PCs to Patch 117 New Flaws, Including 9 Zero-Days - Critical Flaws Reported in Etherpad — a Popular Google Docs Alternative - Chinese Hackers Exploit Latest SolarWinds 0-Day to Target U.S. Defense Firms - Iranian Hackers Posing as Scholars Target Professors and Writers in Middle-East - Trickbot Malware Returns with a new VNC Module to Spy on its Victims - Critical RCE Flaw in ForgeRock Access Manager Under Active Attack - A New Critical SolarWinds Zero-Day Vulnerability Under Active Attack - Crafting a Custom Dictionary for Your Password Policy - Hackers Spread BIOPASS Malware via Chinese Online Gambling Sites - Kaseya Releases Patches for Flaws Exploited in Widespread Ransomware Attack - New SaaS Security Report Dives into the Concerns and Plans of CISOs in 2021 - Magecart Hackers Hide Stolen Credit Card Data Into Images for Evasive Exfiltration - Critical Flaws Reported in Philips Vue PACS Medical Imaging Systems - Hackers Use New Trick to Disable Macro Security Warnings in Malicious Office Files - Experts Uncover Malware Attacks Targeting Corporate Networks in Latin America - Critical Flaws Reported in Sage X3 Enterprise Management Software - Security Awareness Training is Broken. Human Risk Management (HRM) is the Fix - How to Mitigate Microsoft Print Spooler Vulnerability – PrintNightmare - SideCopy Hackers Target Indian Government Officials With New Malware - Microsoft's Emergency Patch Fails to Fully Fix PrintNightmare RCE Vulnerability - WildPressure APT Emerges With New Malware Targeting Windows and macOS - Dozens of Vulnerable NuGet Packages Allow Attackers to Target .NET Platform - [Whitepaper] XDR vs. NDR/NTA – What do Organizations Truly Need to Stay Safe? - Microsoft Issues Emergency Patch for Critical Windows PrintNightmare Vulnerability - Interpol Arrests Moroccan Hacker Engaged in Nefarious Cyber Activities - Kaseya Rules Out Supply-Chain Attack; Says VSA 0-Day Hit Its Customers Directly - Getting Started with Security Testing: A Practical Guide for Startups - TrickBot Botnet Found Deploying A New Ransomware Called Diavol - Microsoft Urges Azure Users to Update PowerShell to Patch RCE Flaw - REvil Used 0-Day in Kaseya Ransomware Attack, Demands $70 Million Ransom - Android Apps with 5.8 million Installs Caught Stealing Users' Facebook Passwords - Kaseya Supply-Chain Attack Hits Nearly 40 Service Providers With REvil Ransomware - Learn to Code — Get 2021 Master Bundle of 13 Online Courses @ 99% OFF - New Mirai-Inspired Botnet Could Be Using Your KGUARD DVRs in Cyber Attacks - Mongolian Certificate Authority Hacked to Distribute Backdoored CA Software - NSA, FBI Reveal Hacking Methods Used by Russian Military Hackers - New Google Scorecards Tool Scans Open-Source Software for More Security Risks - Microsoft Warns of Critical "PrintNightmare" Flaw Being Exploited in the Wild - IndigoZebra APT Hacking Campaign Targets the Afghan Government - Rethinking Application Security in the API-First Era - Microsoft Discloses Critical Bugs Allowing Takeover of NETGEAR Routers - Hacker Wanted in the U.S. for Spreading Gozi Virus Arrested in Colombia - Authorities Seize DoubleVPN Service Used by Cybercriminals - [Webinar] How Cyber Attack Groups Are Spinning a Larger Ransomware Web - Researchers Leak PoC Exploit for a Critical Windows RCE Vulnerability - GitHub Launches 'Copilot' — AI-Powered Code Completion Tool - Unpatched Virtual Machine Takeover Bug Affects Google Compute Engine - New API Lets App Developers Authenticate Users via SIM Cards - Google now requires app developers to verify their address and use 2FA - Hackers Trick Microsoft Into Signing Netfilter Driver Loaded With Rootkit Malware - Microsoft Edge Bug Could've Let Hackers Steal Your Secrets for Any Site - DMARC: The First Line of Defense Against Ransomware - Cisco ASA Flaw Under Active Attack After PoC Exploit Posted Online - SolarWinds Hackers Breach Microsoft Customer Support to Target its Customers - Google Extends Support for Tracking Party Cookies Until 2023 - Watch Out! Zyxel Firewalls and VPNs Under Active Cyberattack - Crackonosh virus mined $2 million of Monero from 222,000 hacked computers - FIN7 Supervisor Gets 7-Year Jail Term for Stealing Millions of Credit Cards - BIOS Disconnect: New High-Severity Bugs Affect 128 Dell PC and Tablet Models - Clop Gang Partners Laundered $500 Million in Ransomware Payments - Reduce Business Risk By Fixing 3 Critical Endpoint-to-Cloud Security Requirements - One-Click Exploit Could Have Let Attackers Hijack Any Atlassian Account - Critical Auth Bypass Bug Affects VMware Carbon Black App Control - Antivirus Pioneer John McAfee Found Dead in Spanish Jail - Pakistan-linked hackers targeted Indian power company with ReverseRat - [Whitepaper] Automate Your Security with Cynet to Protect from Ransomware - Patch Tor Browser Bug to Prevent Tracking of Your Online Activities - SonicWall Left a VPN Flaw Partially Unpatched Amidst 0-Day Attacks - Unpatched Flaw in Linux Pling Store Apps Could Lead to Supply-Chain Attacks - Wormable DarkRadiation Ransomware Targets Linux and Docker Instances - NVIDIA Jetson Chipsets Found Vulnerable to High-severity Flaws - 5 Critical Steps to Recover From a Ransomware Attack - DroidMorph Shows Popular Android Antivirus Fail to Detect Cloned Malicious Apps - Beware! Connecting to This Wireless Network Can Break Your iPhone's Wi-Fi Feature - North Korea Exploited VPN Flaw to Hack South's Nuclear Research Institute - Cyber espionage by Chinese hackers in neighbouring nations is on the rise - Russia bans VyprVPN, Opera VPN services for not complying with blacklist request - Google Releases New Framework to Prevent Software Supply Chain Attacks - Update Your Chrome Browser to Patch Yet Another 0-Day Exploited in-the-Wild - [eBook] 7 Signs You Might Need a New Detection and Response Tool - Molerats Hackers Return With New Attacks Targeting Middle Eastern Governments - Strengthen Your Password Policy With GDPR Compliance - A New Spyware is Targeting Telegram and Psiphon VPN Users in Iran - Researchers Uncover 'Process Ghosting' — A New Malware Evasion Technique - Ukraine Police Arrest Cyber Criminals Behind Clop Ransomware Attacks - Malware Attack on South Korean Entities Was Work of Andariel Group - Ransomware Attackers Partnering With Cybercrime Groups to Hack High-Profile Targets - Critical ThroughTek Flaw Opens Millions of Connected Cameras to Eavesdropping - Experts Shed Light On Distinctive Tactics Used by Hades Ransomware - Instagram Bug Allowed Anyone to View Private Accounts Without Following Them - Apple Issues Urgent Patches for 2 Zero-Day Flaws Exploited in the Wild - Google Workspace Now Offers Client-side Encryption For Drive and Docs - NoxPlayer Supply-Chain Attack is Likely the Work of Gelsemium Hackers - Cybersecurity Executive Order 2021: What It Means for Cloud and SaaS Security - Chinese Hackers Believed to be Behind SITA, Air India Data Breach - Mozilla Says Google's New Ad Tech—FLoC—Doesn't Protect User Privacy - Hackers Can Exploit Samsung Pre-Installed Apps to Spy On Users - Live Cybersecurity Webinar — Deconstructing Cobalt Strike - 7-Year-Old Polkit Flaw Lets Unprivileged Linux Users Gain Root Access - New Cyber Espionage Group Targeting Ministries of Foreign Affairs - Emerging Ransomware Targets Dozens of Businesses Worldwide - U.S. Authorities Shut Down Slilpp—Largest Marketplace for Stolen Logins - Using Breached Password Detection Services to Prevent Cyberattack - Beef Supplier JBS Paid Hackers $11 Million Ransom After Cyberattack - Update Your Windows Computers to Patch 6 New In-the-Wind Zero-Day Bugs - Feds Secretly Ran a Fake Encrypted Chat App and Busted Over 800 Criminals - New UAF Vulnerability Affecting Microsoft Office to be Patched Today - Top 10 Privacy and Security Features Apple Announced at WWDC 2021 - U.S. Recovers $2.3 Million Ransom Paid to Colonial Pipeline Hackers - Researchers Discover First Known Malware Targeting Windows Containers - Shifting the focus from reactive to proactive, with human-led secure coding - Hackers Breached Colonial Pipeline Using Compromised VPN Password - Latvian Woman Charged for Her Role in Creating Trickbot Banking Malware - Break Into Ethical Hacking With 18 Training Courses For Just $42.99 - GitHub Updates Policy to Remove Exploit Code When Used in Active Attacks - ALERT: Critical RCE Bug in VMware vCenter Server Under Active Attack - TikTok Quietly Updated Its Privacy Policy to Collect Users' Biometric Data - Google to Let Android Users Opt-Out to Stop Ads From Tracking Them - Google Chrome to Help Users Identify Untrusted Extensions Before Installation - 10 Critical Flaws Found in CODESYS Industrial Automation Software - The Vulnerabilities of the Past Are the Vulnerabilities of the Future - Necro Python Malware Upgrades With New Exploits and Crypto Mining Capabilities - Researchers Warn of Critical Bugs Affecting Realtek Wi-Fi Module - Cybercriminals Hold $115,000-Prize Contest to Find New Cryptocurrency Hacks - The Incident Response Plan - Preparing for a Rainy Day - Researchers Uncover Hacking Operations Targeting Government Entities in South Korea - Hackers Actively Exploiting 0-Day in WordPress Plugin Installed on Over 17,000 Sites - US Seizes Domains Used by SolarWinds Hackers in Cyber Espionage Attacks - Malware Can Use This Trick to Bypass Ransomware Defense in Antivirus Solutions - Report: Danish Secret Service Helped NSA Spy On European Politicians - Your Amazon Devices to Automatically Share Your Wi-Fi With Neighbors - Can Your Business Email Be Spoofed? Check Your Domain Security Now! - A New Bug in Siemens PLCs Could Let Hackers Run Malicious Code Remotely - Researchers Demonstrate 2 New Hacks to Modify Certified PDF Documents - SolarWinds Hackers Target Think Tanks With New 'NativeZone' Backdoor - Researchers Warn of Facefish Backdoor Spreading Linux Rootkits - Malvertising Campaign On Google Distributed Trojanized AnyDesk Installer - Chinese Cyber Espionage Hackers Continue to Target Pulse Secure VPN Devices - Hackers Using Fake Foundations to Target Uyghur Minority in China - Newly Discovered Bugs in VSCode Extensions Could Lead to Supply Chain Attacks - WhatsApp Sues Indian Government Over New Internet Regulations - Data Wiper Malware Disguised As Ransomware Targets Israeli Entities - Google Researchers Discover A New Variant of Rowhammer Attack - Russian Hydra DarkNet Market Made Over $1.3 Billion in 2020 - Critical RCE Vulnerability Found in VMware vCenter Server — Patch Now! - New Bluetooth Flaws Let Attackers Impersonate Legitimate Devices - Apple Issues Patches to Combat Ongoing 0-Day Attacks on macOS, tvOS - What To Do When Your Business Is Hacked - Researchers Link CryptoCore Attacks On Cryptocurrency Exchanges to North Korea - Details Disclosed On Critical Flaws Affecting Nagios IT Monitoring Software - FBI Warns Conti Ransomware Hit 16 U.S. Health and Emergency Services - FBI Analyst Charged With Stealing Counterterrorism and Cyber Threat Info - Insurance Firm CNA Financial Reportedly Paid Hackers $40 Million in Ransom - Air India Hack Exposes Credit Card and Passport Info of 4.5 Million Passengers - 23 Android Apps Expose Over 100,000,000 Users' Personal Data - Microsoft Warns of Data Stealing Malware That Pretends to Be Ransomware - Is Single Sign-On Enough to Secure Your SaaS Applications? - Watering Hole Attack Was Used to Target Florida Water Utilities - DarkSide Ransomware Gang Extorted $90 Million from Several Victims in 9 Months - Android Issues Patches for 4 New Zero-Day Bugs Exploited in the Wild - Mozilla Begins Rolling Out 'Site Isolation' Security Feature to Firefox Browser - A Simple 1-Click Compromised Password Reset Feature Coming to Chrome Browser - How Apple Gave Chinese Government Access to iCloud Data and Censored Apps - Experts Reveal Over 150 Ways to Steal Control of 58 Android Stalkerware Apps - Free "vCISO Clinic" offers Resource-Constrained InfoSec Leaders a Helping Hand - 70 European and South American Banks Under Attack By Bizarro Banking Malware - Apple's Find My Network Can be Abused to Exfiltrate Data From Nearby Devices - Experts Warn About Ongoing AutoHotkey-Based Malware Attacks - Why Password Hygiene Needs a Reboot - U.S. Pipeline Ransomware Attackers Go Dark After Servers and Bitcoin Are Seized - Report to Your Management with the Definitive 'Incident Response for Management' Presentation Template - Hackers Using Microsoft Build Engine to Deliver Malware Filelessly - Pakistan-Linked Hackers Added New Windows Malware to Its Arsenal - Magecart Hackers Now hide PHP-Based Backdoor In Website Favicons - Colonial Pipeline Paid Nearly $5 Million in Ransom to Cybercriminals - Big Cybersecurity Tips For Remote Workers Who Use Their Own Tech - Can Data Protection Systems Prevent Data At Rest Leakage? - Rapid7 Source Code Breached in Codecov Supply-Chain Attack - Dark Web Getting Loaded With Bogus Covid-19 Vaccines and Forged Cards - Latest Microsoft Windows Updates Patch Dozens of Security Flaws - Nearly All Wi-Fi Devices Are Vulnerable to New FragAttacks - Ransomware Gang Leaks Metropolitan Police Data After Failed Negotiations - Alert: Hackers Exploit Adobe Reader 0-Day Vulnerability in the Wild - U.S. Intelligence Agencies Warn About 5G Network Weaknesses - LIVE Webinar — The Rabbit Hole of Automation - Experts warn of a new Android banking trojan stealing users' credentials - U.S. Declares Emergency in 17 States Over Fuel Pipeline Cyber Attack - Over 25% Of Tor Exit Relays Spied On Users' Dark Web Activities - Is it still a good idea to require users to change their passwords? - Four Plead Guilty to Aiding Cyber Criminals with Bulletproof Hosting - Ransomware Cyber Attack Forced the Largest U.S. Fuel Pipeline to Shut Down - Facebook Will Limit Your WhatsApp Features For Not Accepting Privacy Policy - 4 Major Privacy and Security Updates From Google You Should Know About - Top 12 Security Flaws Russian Spy Hackers Are Exploiting in the Wild - New TsuNAME Flaw Could Let Attackers Take Down Authoritative DNS Servers - 6 Unpatched Flaws Disclosed in Remote Mouse App for Android and iOS - Critical Flaws Hit Cisco SD-WAN vManage and HyperFlex Software - CISO Challenge: Check Your Cybersecurity Skills On This New Competition Site - New Stealthy Rootkit Infiltrated Networks of High-Profile Organizations - New Qualcomm Chip Bug Could Let Hackers Spy On Android Devices - New Spectre Flaws in Intel and AMD CPUs Affect Billions of Computers - New Study Warns of Security Threats Linked to Recycled Phone Numbers - BIOS PrivEsc Bugs Affect Hundreds of Millions of Dell PCs Worldwide - ALERT — New 21Nails Exim Bugs Expose Millions of Email Servers to Hacking - New Pingback Malware Using ICMP Tunneling to Evade C&C Detection - How Should the Service Desk Reset Passwords? - Critical Patch Out for Critical Pulse Secure VPN 0-Day Under Attack - Apple Releases Urgent Security Patches For Zero‑Day Bugs Under Active Attacks - Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys - A Rust-based Buer Malware Variant Has Been Spotted in the Wild - Researchers Uncover Iranian State-Sponsored Ransomware Operation - New Chinese Malware Targeted Russia's Largest Nuclear Submarine Designer - Hackers Exploit SonicWall Zero-Day Bug in FiveHands Ransomware Attacks - Microsoft Finds 'BadAlloc' Flaws Affecting Wide-Range of IoT and OT Devices - A New Slack channel for Cybersecurity Leaders Outside of the Fortune 2000 - A New PHP Composer Bug Could Enable Widespread Supply-Chain Attacks - Passwordstate Warns of Ongoing Phishing Attacks Following Data Breach - LuckyMouse Hackers Target Banks, Companies and Governments in 2020 - How to Conduct Vulnerability Assessments: An Essential Guide for 2021 - Chinese Hackers Attacking Military Organizations With New Backdoor - Researchers Uncover Stealthy Linux Malware That Went Undetected for 3 Years - Cybercriminals Widely Abusing Excel 4.0 Macro to Distribute Malware - F5 BIG-IP Found Vulnerable to Kerberos KDC Spoofing Vulnerability - Attention! FluBot Android Banking Malware Spreads Quickly Across Europe - Hackers Threaten to Leak D.C. Police Informants' Info If Ransom Is Not Paid - Cybersecurity Webinar: Understanding the 2020 MITRE ATT&CK Results - Hackers Exploit 0-Day Gatekeeper Flaw to Attack MacOS Computers - FBI, CISA Uncover Tactics Employed by Russian Intelligence Hackers - Minnesota University Apologizes for Contributing Malicious Code to the Linux Project - Apple AirDrop Bug Could Leak Your Personal Info to Anyone Nearby - How to Test and Improve Your Domain's Email Security? - Emotet Malware Destroys Itself From All Infected Computers - 3.2 Billion Leaked Passwords Contain 1.5 Million Records with Government Emails - Critical RCE Bug Found in Homebrew Package Manager for macOS and Linux - Passwordstate Password Manager Update Hijacked to Install Backdoor on Thousands of PCs - New QNAP NAS Flaws Exploited In Recent Ransomware Attacks - Patch It! - Prometei Botnet Exploiting Unpatched Microsoft Exchange Servers - Researchers Find Additional Infrastructure Used By SolarWinds Hackers - Hackers Exploit VPN to Deploy SUPERNOVA malware on SolarWinds Orion - Cost of Account Unlocks, and Password Resets Add Up - Cybercriminals Using Telegram Messenger to Control ToxicEye Malware - Facebook Busts Palestinian Hackers' Operation Spreading Mobile Spyware - Hackers threaten to leak stolen Apple blueprints if $50 million ransom isn't paid - Improve Your Cyber Security Posture by Combining State of the Art Security Tools - Update Your Chrome Browser ASAP to Patch a Week Old Public Exploit - 3 Zero-Day Exploits Hit SonicWall Enterprise Email Security Appliances - WARNING: Hackers Exploit Unpatched Pulse Secure 0-Day to Breach Organizations - Over 750,000 Users Downloaded New Billing Fraud Apps From Google Play Store - [eBook] Why Autonomous XDR Is Going to Replace NGAV/EDR - 120 Compromised Ad Servers Target Millions of Internet Users - Lazarus APT Hackers are now using BMP images to hide RAT malware - Passwordless: More Mirage Than Reality - Malware That Spreads Via Xcode Projects Now Targeting Apple's M1-based Macs - SysAdmin of Billion-Dollar Hacking Group Gets 10-Year Sentence - What are the different roles within cybersecurity? - Severe Bugs Reported in EtherNet/IP Stack for Industrial Systems - US Sanctions Russia and Expels 10 Diplomats Over SolarWinds Cyberattack - 1-Click Hack Found in Popular Desktop Apps — Check If You're Using Them - Malware Variants: More Sophisticated, Prevalent and Evolving in 2021 - YIKES! Hackers flood the web with 100,000 pages offering malicious PDFs - New WhatsApp Bugs Could've Let Attackers Hack Your Phone Remotely - New JavaScript Exploit Can Now Carry Out DDR4 Rowhammer Attacks - Simplify, then Add Lightness – Consolidating the Technology to Better Defend Ourselves - 2 New Chrome 0-Days Under Attack — Update Your Browser ASAP! - NSA Discovers New Vulnerabilities Affecting Microsoft Exchange Servers - New NAME:WRECK Vulnerabilities Impact Nearly 100 Million IoT Devices - Hackers Using Website's Contact Forms to Deliver IcedID Malware - Detecting the "Next" SolarWinds-Style Cyber Attack - BRATA Malware Poses as Android Security Scanners on Google Play Store - RCE Exploit Released for Unpatched Chrome, Opera, and Brave Browsers - Indian Brokerage Firm Upstox Suffers Data Breach Leaking 2.5 Millions Users' Data - What Does It Take To Be a Cybersecurity Researcher? - Windows, Ubuntu, Zoom, Safari, MS Exchange Hacked at Pwn2Own 2021 - Hackers Tampered With APKPure Store to Distribute Malware Apps - Alert — There's A New Malware Out There Snatching Users' Passwords - [WHITEPAPER] How to Achieve CMMC Security Compliance for Your Business - Gigaset Android Update Server Hacked to Install Malware on Users' Devices - Cisco Will Not Patch Critical RCE Flaw Affecting End-of-Life Business Routers - Researchers uncover a new Iranian malware used in recent cyberattacks - Hackers Exploit Unpatched VPNs to Install Ransomware on Industrial Targets - NIST and HIPAA: Is There a Password Connection? - Android to Support Rust Programming Language to Prevent Memory Flaws - PHP Site's User Database Was Hacked In Recent Source Code Backdoor Attack - WhatsApp-based wormable Android malware spotted on the Google Play Store - Critical Auth Bypass Bug Found in VMware Data Center Security Product - 11 Useful Security Tips for Securing Your AWS Environment - Pre-Installed Malware Dropper Found On German Gigaset Android Phones - Experts uncover a new Banking Trojan targeting Latin American users - Watch Out! Mission Critical SAP Applications Are Under Active Attack - MITRE Madness: A Guide to Weathering the Upcoming Vendor Positioning Storm - Hackers From China Target Vietnamese Military and Government - Hackers Targeting professionals With 'more_eggs' Malware via LinkedIn Job Offers - How the Work-From-Home Shift Impacts SaaS Security - 533 Million Facebook Users' Phone Numbers and Personal Data Leaked Online - How Cyrebro Can Unify Multiple Cybersecurity Defenses to Optimize Protection - DeepDotWeb Admin Pleads Guilty to Money Laundering Charges - Google limits which apps can access the list of installed apps on your device - 22-Year-Old Charged With Hacking Water System and Endangering Lives - Hackers Using a Windows OS Feature to Evade Firewall and Gain Persistence - How to Vaccinate Against the Poor Password Policy Pandemic - Hackers Set Up a Fake Cybersecurity Firm to Target Security Experts - Decided to move on from your NGAV/EDR? A Guide for Small Security Teams to What's Next - Hackers are implanting multiple backdoors at industrial targets in Japan - MobiKwik Suffers Major Breach — KYC Data of 3.5 Million Users Exposed - New Bugs Could Let Hackers Bypass Spectre Attack Mitigations On Linux Systems - Flaws in Ovarro TBox RTUs Could Open Industrial Systems to Remote Attacks - How to Effectively Prevent Email Spoofing Attacks in 2021? - PHP's Git Server Hacked to Insert Secret Backdoor to Its Source code - Watch Out! That Android System Update May Contain A Powerful Spyware - OpenSSL Releases Patches for 2 High-Severity Security Vulnerabilities - Apple Issues Urgent Patch Update for Another Zero‑Day Under Attack - Another Critical RCE Flaw Discovered in SolarWinds Orion Platform - New 5G Flaw Exposes Priority Networks to Location Tracking and Other Attacks - Black Kingdom Ransomware Hunting Unpatched Microsoft Exchange Servers - Critical Cisco Jabber Bug Could Let Attackers Hack Remote Systems - Forcing Self-Service Password Reset (SSPR) Registration to Increase ROI - Chinese Hackers Used Facebook to Hack Uighur Muslims Living Abroad - Purple Fox Rootkit Can Now Spread Itself to Other Windows Computers - Critical Flaws Affecting GE's Universal Relay Pose Threat to Electric Utilities - WARNING: A New Android Zero-Day Vulnerability Is Under Active Attack - Popular Netop Remote Learning Software Found Vulnerable to Hacking - Critical RCE Vulnerability Found in Apache OFBiz ERP Software—Patch Now - Critical F5 BIG-IP Bug Under Active Attacks After PoC Exploit Posted Online - Hackers Infecting Apple App Developers With Trojanized Xcode Projects - Tesla Ransomware Hacker Pleads Guilty; Swiss Hacktivist Charged for Fraud - New Zoom Screen-Sharing Bug Lets Other Users Access Restricted Apps - Critical RCE Flaw Reported in MyBB Forum Software—Patch Your Sites - How to Successfully Pursue a Career in Malware Analysis - Why Cached Credentials Can Cause Account Lockouts and How to Stop it - Google Reveals What Personal Data Chrome and Its Apps Collect On You - Flaws in Two Popular WordPress Plugins Affect Over 7 Million Websites - [Webinar] Oy Vey, We Hired a Large, Hairy Hacker… - Mimecast Finds SolarWinds Hackers Stole Some of Its Source Code - 18-Year-Old Hacker Gets 3 Years in Prison for Massive Twitter 'Bitcoin Scam' Hack - Apple May Start Delivering Security Patches Separately From Other OS Updates - New Mirai Variant and ZHtrap Botnet Malware Emerge in the Wild - Use This One-Click Mitigation Tool from Microsoft to Prevent Exchange Attacks - Rising Demand for DDoS Protection Software Market By 2020-2028 - CEO of Encrypted Chat Platform Indicted for Aiding Organised Criminals - CompTIA Security Certification Prep — Lifetime Access for just $30 - Hackers Are Targeting Microsoft Exchange Servers With Ransomware - Researchers Spotted Malware Written in Nim Programming Language - Another Google Chrome 0-Day Bug Found Actively Exploited In-the-Wild - ProxyLogon PoC Exploit Released; Likely to Fuel More Disruptive Cyber Attacks - New Browser Attack Allows Tracking Users Online With JavaScript Disabled - Fixing the Weakest Link — The Passwords — in Cybersecurity Today - Critical Pre-Auth RCE Flaw Found in F5 Big-IP Platform — Patch ASAP! - Researchers Unveil New Linux Malware Linked to Chinese Hackers - FIN8 Hackers Return With More Powerful Version of BADHATCH PoS Malware - Microsoft Issues Security Patches for 82 Flaws — IE 0-Day Under Active Attacks - 9 Android Apps On Google Play Caught Distributing AlienBot Banker and MRAT Malware - SolarWinds Hack — New Evidence Suggests Potential Links to Chinese Hackers - Cybersecurity Webinar — SolarWinds Sunburst: The Big Picture - Microsoft Exchange Hackers Also Breached European Banking Authority - Apple Issues Patch for Remote Hacking Bug Affecting Billions of its Devices - Malware Can Exploit New Flaw in Intel CPUs to Launch Side-Channel Attacks - Iranian Hackers Using Remote Utilities Software to Spy On Its Targets - Microsoft Exchange Cyber Attack — What Do We Know So Far? - Bug in Apple's Find My Feature Could've Exposed Users' Location Histories - Google Cloud Certifications — Get Prep Courses and Practice Tests at 95% Discount - Mazafaka — Elite Hacking and Cybercrime Forum — Got Hacked! - Researchers Find 3 New Malware Strains Used by SolarWinds Hackers - Google Will Use 'FLoC' for Ad Targeting Once 3rd-Party Cookies Are Dead - Extortion Gang Breaches Cybersecurity Firm Qualys Using Accellion Exploit - CISA Issues Emergency Directive on In-the-Wild Microsoft Exchange Flaws - Replacing EDR/NGAV with Autonomous XDR Makes a Big Difference for Small Security Teams - Hackers Now Hiding ObliqueRAT Payload in Images to Evade Detection - A $50,000 Bug Could've Allowed Hackers Access Any Microsoft Account - URGENT — 4 Actively Exploited 0-Day Flaws Found in Microsoft Exchange - New Chrome 0-day Bug Under Active Attacks – Update Your Browser ASAP! - Researchers Unearth Links Between SunCrypt and QNAPCrypt Ransomware - New 'unc0ver' Tool Can Jailbreak All iPhone Models Running iOS 11.0 - 14.3 - Why do companies fail to stop breaches despite soaring IT security investment? - Gootkit RAT Using SEO to Distribute Malware Through Compromised Sites - Chinese Hackers Targeted India's Power Grid Amid Geopolitical Tensions - SolarWinds Blames Intern for 'solarwinds123' Password Lapse - ALERT: Malicious Amazon Alexa Skills Can Easily Bypass Vetting Process - North Korean Hackers Targeting Defense Firms with ThreatNeedle Malware - Chinese Hackers Using Firefox Extension to Spy On Tibetan Organizations - Cisco Releases Security Patches for Critical Flaws Affecting its Products - Russian Hackers Targeted Ukraine Authorities With Supply-Chain Malware Attack - The Top Free Tools for Sysadmins in 2021 - Experts Warns of Notable Increase in QuickBooks Data Files Theft Attacks - Online Trackers Increasingly Switching to Invasive CNAME Cloaking Technique - Everything You Need to Know About Evolving Threat of Ransomware - Critical RCE Flaws Affect VMware ESXi and vSphere Client — Patch Now - Experts Find a Way to Learn What You're Typing During Video Calls - Shadow Attacks Let Attackers Replace Content in Digitally Signed PDFs - 5 Security Lessons for Small Security Teams for the Post COVID19 Era - Hackers Exploit Accellion Zero-Days in Recent Data Theft and Extortion Attacks - Chinese Hackers Had Access to a U.S. Hacking Tool Years Before It Was Leaked Online - How to Fight Business Email Compromise (BEC) with Email Authentication? - New 'Silver Sparrow' Malware Infected Nearly 30,000 Apple Macs - Masslogger Trojan Upgraded to Steal All Your Outlook, Chrome Credentials - New Hack Lets Attackers Bypass MasterCard PIN by Using Them As Visa Card - Privacy Bug in Brave Browser Exposes Dark-Web Browsing History of Its Users - First Malware Designed for Apple M1 Chip Discovered in the Wild - SolarWinds Hackers Stole Some Source Code for Microsoft Azure, Exchange, Intune - U.S. Charges 3 North Korean Hackers Over $1.3 Billion Cryptocurrency Heist - Agora SDK Bug Left Several Video Calling Apps Vulnerable to Snooping - Researchers Unmask Hackers Behind APOMacroSploit Malware Builder - Malvertisers Exploited WebKit 0-Day to Redirect Browser Users to Scam Sites - Learn How to Manage and Secure Active Directory Service Accounts - Unpatched ShareIT Android App Flaw Could Let Hackers Inject Malware - Managed Service Provider? Watch This Video to Learn about Autonomous XDR - Hackers Exploit IT Monitoring Tool Centreon to Target Several French Entities - A Sticker Sent On Telegram Could Have Exposed Your Secret Chats - Apple will proxy Safe Browsing requests to hide iOS users' IP from Google - Yandex Employee Caught Selling Access to Users' Email Inboxes - Secret Chat in Telegram Left Self-Destructing Media Files On Devices - Researchers Uncover Android Spying Campaign Targeting Pakistan Officials - 10 SIM Swappers Arrested for Stealing $100M in Crypto from Celebrities - The Weakest Link in Your Security Posture: Misconfigured SaaS Settings - Poor Password Security Led to Recent Water Treatment Facility Hack - Iranian Hackers Utilize ScreenConnect to Spy On UAE, Kuwait Government Agencies - Dependency Confusion Supply-Chain Attack Hit Over 35 High-Profile Companies - LodaRAT Windows Malware Now Also Targets Android Devices - Apple Patches 10-Year-Old macOS SUDO Root Privilege Escalation Bug - Microsoft Issues Patches for In-the-Wild 0-day and 55 Others Windows Bugs - Webinar and eBook: The Dark Side of EDR. Are You Prepared? - Ukrainian Police Arrest Author of World's Largest Phishing Service U-Admin - Hacker Tried Poisoning Water Supply After Breaking Into Florida's Treatment System - Detailed: Here's How Iran Spies on Dissidents with the Help of Hackers - Top 5 Bug Bounty Programs to Watch in 2021 - WARNING — Hugely Popular 'The Great Suspender' Chrome Extension Contains Malware - Critical Flaws Reported in Cisco VPN Routers for Businesses—Patch ASAP - Cybercriminals Now Using Plex Media Servers to Amplify DDoS Attacks - New Chrome Browser 0-day Under Active Attack—Update Immediately! - Beware: New Matryosh DDoS Botnet Targeting Android-Based Devices - How to Audit Password Changes in Active Directory - Why Human Error is #1 Cyber Security Threat to Businesses in 2021 - Critical Bugs Found in Popular Realtek Wi-Fi Module for Embedded Devices - Over a Dozen Chrome Extensions Caught Hijacking Google Search Results for Millions - 3 New Severe Security Vulnerabilities Found In SolarWinds Software - Guide: How Security Consolidation Helps Small Cybersecurity Teams - A New Linux Malware Targeting High-Performance Computing Clusters - Data Breach Exposes 1.6 Million Jobless Claims Filed in the Washington State - Agent Tesla Malware Spotted Using New Delivery & Evasion Techniques - Sigma Rules to Live Your Best SOC Life - Hackers Exploiting Critical Zero-Day Bug in SonicWall SMA 100 Devices - A New Software Supply‑Chain Attack Targeted Millions With Spyware - LIVE Webinar: Major Lessons to be Learned from Top Cyber Attacks in 2020 - New Cryptojacking Malware Targeting Apache, Oracle, Redis Servers - Google Discloses Severe Bug in Libgcrypt Encryption Library—Impacting Many Projects - Google uncovers new iOS security feature Apple quietly added after zero-day attacks - Italy CERT Warns of a New Credential Stealing Android Malware - Hezbollah Hacker Group Targeted Telecoms, Hosting, ISPs Worldwide - New CISOs Survey Reveals How Small Cybersecurity Teams Can Confront 2021 - Authorities Seize Dark-Web Site Linked to the Netwalker Ransomware - European Authorities Disrupt Emotet — World's Most Dangerous Malware - New Docker Container Escape Bug Affects Microsoft Azure Functions - Warning Issued Over Hackable ADT's LifeShield Home Security Cameras - Top Cyber Attacks of 2020 - New Attack Could Let Remote Hackers Target Devices On Internal Networks - Using the Manager Attribute in Active Directory (AD) for Password Resets - Apple Warns of 3 iOS Zero-Day Security Vulnerabilities Exploited in the Wild - Targeted Phishing Attacks Strike High-Ranking Company Executives - In the Wake of the SolarWinds Hack, Here's How Businesses Should Respond - TikTok Bug Could Have Exposed Users' Profile Data and Phone Numbers - vCISO Shares Most Common Risks Faced by Companies With Small Security Teams - N. Korean Hackers Targeting Security Experts to Steal Undisclosed Researches - Enhancing Email Security with MTA-STS and SMTP TLS Reporting - Pen Testing By Numbers: Tracking Pen Testing Trends and Challenges - Beware — A New Wormable Android Malware Spreading Through WhatsApp - Experts Detail A Recent Remotely Exploitable Windows Vulnerability - Exclusive: SonicWall Hacked Using 0-Day Bugs In Its Own VPN Product - Beware! Fully-Functional Exploit Released Online for SAP Solution Manager Flaw - MrbMiner Crypto-Mining Malware Links to Iranian Software Company - Missing Link in a 'Zero Trust' Security Model—The Device You're Connecting With! - Sharing eBook With Your Kindle Could Have Let Hackers Hijack Your Account - Importance of Application Security and Customer Data Protection to a Startup - Here's How SolarWinds Hackers Stayed Undetected for Long Enough - Hackers Accidentally Expose Passwords Stolen From Businesses On the Internet - Google Details Patched Bugs in Signal, FB Messenger, JioChat Apps - SolarWinds Hackers Also Breached Malwarebytes Cybersecurity Firm - Researchers Discover Raindrop — 4th Malware Linked to the SolarWinds Attack - New Educational Video Series for CISOs with Small Security Teams - A Set of Severe Flaws Affect Popular DNSMasq DNS Forwarder - FreakOut! Ongoing Botnet Attack Exploiting Recent Linux Vulnerabilities - Apple Removes macOS Feature That Allowed Apps to Bypass Firewall Security - Joker's Stash, The Largest Carding Marketplace, Announces Shutdown - NSA Suggests Enterprises Use 'Designated' DNS-over-HTTPS' Resolvers - WhatsApp Delays Controversial 'Data-Sharing' Privacy Policy Update By 3 Months - Researchers Disclose Undocumented Chinese Malware Used in Recent Attacks - Experts Uncover Malware Attacks Against Colombian Government and Companies - Intel Adds Hardware-Enabled Ransomware Detection to 11th Gen vPro Chips - Buyer's Guide for Securing Internal Environment with a Small Cybersecurity Team - Authorities Take Down World's Largest Illegal Dark Web Marketplace - Hackers Steal Mimecast Certificate Used to Securely Connect with Microsoft 365 - Warning — 5 New Trojanized Android Apps Spying On Users In Pakistan - Microsoft Issues Patches for Defender Zero-Day and 82 Other Windows Flaws - Experts Sound Alarm On New Android Malware Sold On Hacking Forums - Researchers Find Links Between Sunburst and Russian Kazuar Malware - Unveiled: SUNSPOT Malware Was Used to Inject SolarWinds Backdoor - Russian Hacker Gets 12-Years Prison for Massive JP Morgan Chase Hack - How Does Your AD Password Policy Compare to NIST's Password Recommendations? - ALERT: North Korean hackers targeting South Korea with RokRat Trojan - New Attack Could Let Hackers Clone Your Google Titan 2FA Security Keys - SolarWinds Hackers Also Accessed U.S. Justice Department's Email Server - WhatsApp Will Delete Your Account If You Don't Agree Sharing Data With Facebook - Hackers Using Fake Trump's Scandal Video to Spread QNode Malware - FBI, CISA, NSA Officially Blame Russia for SolarWinds Cyber Attack - Healthcare Industry Witnessed 45% Spike in Cyber Attacks Since Nov 20 - Warning: Cross-Platform ElectroRAT Malware Targeting Cryptocurrency Users - Google Speech-to-Text API Can Help Attackers Easily Bypass Google reCAPTCHA - British Court Rejects U.S. Request to Extradite WikiLeaks' Julian Assange - Ticketmaster To Pay $10 Million Fine For Hacking A Rival Company - Secret Backdoor Account Found in Several Zyxel Firewall, VPN Products - Microsoft Says SolarWinds Hackers Accessed Some of Its Source Code - A Google Docs Bug Could Have Allowed Hackers See Your Private Documents - AutoHotkey-Based Password Stealer Targeting US, Canadian Banking Users - A New SolarWinds Flaw Likely Had Let Hackers Install SUPERNOVA Malware - Police Arrest 21 WeLeakInfo Customers Who Bought Breached Personal Data - Attackers Abusing Citrix NetScaler Devices to Launch Amplified DDoS Attacks - Microsoft Warns CrowdStrike of Hackers Targeting Azure Cloud Customers - Google Discloses Poorly-Patched, Now Unpatched, Windows 0-Day Bug - North Korean Hackers Trying to Steal COVID-19 Vaccine Research - How to Defend Against Malware, Phishing, and Scams During COVID-19 Crisis - Law Enforcement Seizes Joker's Stash — Stolen Credit Card Marketplace - New Critical Flaws in Treck TCP/IP Stack Affect Millions of IoT Devices - Cybercriminals' Favorite Bulletproof VPN Service Shuts Down In Global Action - A Second Hacker Group May Have Also Breached SolarWinds, Microsoft Says - Two Critical Flaws — CVSS Score 10 — Affect Dell Wyse Thin Client Devices - Common Security Misconfigurations and Their Consequences - iPhones of 36 Journalists Hacked Using iMessage Zero-Click Exploit - How to Use Password Length to Set Best Password Expiration Policy - Microsoft Says Its Systems Were Also Breached in Massive SolarWinds Hack - Software Supply-Chain Attack Hits Vietnam Government Certification Authority - New 5G Network Flaws Let Attackers Track Users' Locations and Steal Data - Ransomware Attackers Using SystemBC Malware With RAT and Tor Proxy - New Evidence Suggests SolarWinds' Codebase Was Hacked to Inject Backdoor - What is Geocoding? — How to Find Coordinates of An Address - SolarWinds Issues Second Hotfix for Orion Platform Supply Chain Attack - Download the Essential Guide to Response Automation - Wormable Gitpaste-12 Botnet Returns to Target Linux Servers, IoT Devices - Nearly 18,000 SolarWinds Customers Installed Backdoored Software - Exfiltrating Data from Air-Gapped Computers via Wi-Fi Signals (Without Wi-Fi Hardware) - SoReL-20M: A Huge Dataset of 20 Million Malware Samples Released Online - US Agencies and FireEye Were Hacked Using SolarWinds Software Backdoor - Mount Locker Ransomware Offering Double Extortion Scheme to Other Hackers - Governance Considerations for Democratizing Your Organization's Data in 2021 - Watch Out! Adrozek Malware Hijacking Chrome, Firefox, Edge, Yandex Browsers - Valve's Steam Server Bugs Could've Let Hackers Hijack Online Games - Cisco Reissues Patches for Critical Bugs in Jabber Video Conferencing Software - Facebook Tracks APT32 OceanLotus Hackers to IT Company in Vietnam - 48 U.S. States and FTC are suing Facebook for illegal monopolization - AWS, Cisco, and CompTIA Exam Prep — Get 22 Courses for $4.50 Each - Amnesia:33 — Critical TCP/IP Flaws Affect Millions of IoT Devices - Russian APT28 Hackers Using COVID-19 as Bait to Deliver Zebrocy Malware - Cybersecurity Firm FireEye Got Hacked; Red-Team Pentest Tools Stolen - WARNING — Critical Remote Hacking Flaws Affect D-Link VPN Routers - Microsoft Releases Windows Update (Dec 2020) to Fix 58 Security Flaws - Download: How XDR Platforms Are Changing The Game For Ransomware Protection - Zero-Click Wormable RCE Vulnerability Reported in Microsoft Teams - Iranian RANA Android Malware Also Spies On Instant Messengers - NSA Warns Russian Hacker Exploiting VMware Bug to Breach Corporate Networks - How DMARC Can Stop Criminals Sending Fake Emails on Behalf of Your Domain - Payment Card Skimmer Group Using Raccoon Info-Stealer to Siphon Off Data - How Organizations Can Prevent Users from Using Breached Passwords - Hackers Targeting Companies Involved in Covid-19 Vaccine Distribution - Several Unpatched Popular Android Apps Put Millions of Users at Risk of Hacking - Hackers-For-Hire Group Develops New 'PowerPepper' In-Memory Malware - TrickBot Malware Gets UEFI/BIOS Bootkit Feature to Remain Undetected - Multiple Botnets Exploiting Critical Oracle WebLogic Bug — PATCH NOW - Experts Uncover 'Crutch' Russian Malware Used in APT Attacks for 5 Years - CISO with a small security team? Learn from your peers' experience with this free e-book - Google Hacker Details Zero-Click 'Wormable' Wi-Fi Exploit to Hack iPhones - 4 Free Online Cyber Security Testing Tools For 2021 - Nation-State Hackers Caught Hiding Espionage Activities Behind Crypto Miners - Incomplete 'Go SMS Pro' Patch Left Millions of Users' Data Still Exposed Online - Indian National Gets 20-Year Jail in United States for Running Scam Call Centers - Quick Guide — How to Troubleshoot Active Directory Account Lockouts - Digitally Signed Bandook Malware Once Again Targets Multiple Sectors - Become a White Hat Hacker — Get 10 Top-Rated Courses at 97% OFF - Interpol Arrest 3 Nigerian BEC Scammers For Targeting Over 50,000 Entities - 2-Factor Authentication Bypass Flaw Reported in cPanel and WHM Software - Baidu's Android Apps Caught Collecting and Leaking Sensitive User Data - Stantinko Botnet Now Targeting Linux Servers to Hide Behind Proxies - Critical Unpatched VMware Flaw Affects Multiple Corporates Products - Why Replace Traditional Web Application Firewall (WAF) With New Age WAF? - WARNING: Unpatched Bug in GO SMS Pro App Exposes Millions of Media Messages - Facebook Messenger Bug Lets Hackers Listen to You Before You Pick Up the Call - Researchers Warn of Critical Flaw Affecting Industrial Automation Systems - Evolution of Emotet: From Banking Trojan to Malware Distributor - Use This Ultimate Template to Plan and Monitor Your Cybersecurity Budgets - Apple Lets Some of its Big Sur macOS Apps Bypass Firewall and VPNs - Chinese APT Hackers Target Southeast Asian Government Institutions - Researcher Discloses Critical RCE Flaws In Cisco Security Manager - Trojanized Security Software Hits South Korea Users in Supply-Chain Attack - Uncovered: APT 'Hackers For Hire' Target Financial, Entertainment Firms - SAD DNS — New Flaws Re-Enable DNS Cache Poisoning Attacks - Live Webinar: Reducing Complexity by Increasing Consolidation for SMEs - New ModPipe Point of Sale (POS) Malware Targeting Restaurants, Hotels - MISSIONS — The Next Level of Interactive Developer Security Training - Two New Chrome 0-Days Under Active Attacks – Update Your Browser - Build Your 2021 Cybersecurity Plan With This Free PPT Template - Over 2800 e-Shops Running Outdated Magento Software Hit by Credit Card Hackers - Microsoft Releases Windows Security Updates For Critical Flaws - Watch Out! New Android Banking Trojan Steals From 112 Financial Apps - Worried About SaaS Misconfigurations? Check These 5 Settings Everybody Misses - Windows 10, iOS, Chrome, Firefox and Others Hacked at Tianfu Cup Competition - North Korean Hackers Used 'Torisma' Spyware in Job Offers-based Attacks - Update Your iOS Devices Now — 3 Actively Exploited 0-Days Discovered - Deception Technology: No Longer Only A Fortune 2000 Solution - Premium-Rate Phone Fraudsters Hack VoIP Servers of 1200 Companies - If You Don't Have A SASE Cloud Service, You Don't Have SASE At All - New Kimsuky Module Makes North Korean Spyware More Powerful - New Chrome Zero-Day Under Active Attacks – Update Your Browser - How to Prevent Pwned and Reused Passwords in Your Active Directory - New NAT/Firewall Bypass Attack Lets Hackers Access Any TCP/UDP Service - WARNING: Google Discloses Windows Zero-Day Bug Exploited in the Wild - KashmirBlack Botnet Hijacks Thousands of Sites Running On Popular CMS Platforms - Browser Bugs Exploited to Install 2 New Backdoors on Targeted Computers - How to Run Google SERP API Without Constantly Changing Proxy Servers - [Webinar and eBook]: Are You’re Getting The Best Value From Your EDR Solution? - FBI, DHS Warn Of Possible Major Ransomware Attacks On Healthcare Systems - TrickBot Linux Variants Active in the Wild Despite Recent Takedown - Google Removes 21 Malicious Android Apps from Play Store - Experts Warn of Privacy Risks Caused by Link Previews in Messaging Apps - New Framework Released to Protect Machine Learning Systems From Adversarial Attacks - New Chrome 0-day Under Active Attacks – Update Your Browser Now - Popular Mobile Browsers Found Vulnerable To Address Bar Spoofing Attacks - Windows GravityRAT Malware Now Also Targets macOS and Android Devices - Download Ultimate 'Security for Management' Presentation Template - U.S. Charges 6 Russian Intelligence Officers Over Destructive Cyberattacks - مايكروسوفت تصدر تحديثات أمان طارئة لنظام ويندوز - فوكسكون تريد أن تصبح “أندرويد” السيارات الكهربائية - Google Warns of Zero-Click Bluetooth Flaws in Linux-based Devices - Breach at Dickey’s BBQ Smokes 3M Cards - Microsoft Patch Tuesday, October 2020 Edition - برمجية جديدة لطلب الفدية تحذر منها مايكروسوفت - 240 تطبيق أندرويد يقدم الإعلانات الاحتيالية - برامج مكافحة الفيروسات تعاني من ثغرات أمنية - مايكروسوفت تسمح لبعض موظفيها بالعمل من المنزل دائمًا - 55 New Security Flaws Reported in Apple Software and Services - AA20-280A: Emotet Malware - Attacks Aimed at Disrupting the Trickbot Botnet - Researchers Fingerprint Exploit Developers Who Help Several Malware Authors - FinSpy Spyware for Mac and Linux OS Targets Egyptian Organisations - Microsoft: Attackers Exploiting ‘ZeroLogon’ Windows Flaw - Govt. Services Firm Tyler Technologies Hit in Apparent Ransomware Attack - طفلة تكشف عددًا كبيرًا من تطبيقات الاحتيال - AA20-266A: LokiBot Malware - تسريب بيانات محرك بحث Bing من مايكروسوفت - أول حالة وفاة مرتبطة بهجوم طلب الفدية الإلكتروني - Due Diligence That Money Can’t Buy - New Linux Malware Steals Call Details from VoIP Softswitch Systems - Microsoft Patch Tuesday, Sept. 2020 Edition - تحذيرات من ارتفاع في هجمات إيموتيت - الملايين من مواقع وورد بريس عرضة للهجوم - Evilnum hackers targeting financial firms with a new Python-based RAT - The Joys of Owning an ‘OG’ Email Account - مستخدمو PayPal يتعرضون لعمليات احتيال - آبل وافقت بالخطأ على برامج ضارة متخفية - Terracotta .. تطبيقات كاذبة تعد بأحذية مجانية - Sendgrid Under Siege from Hacked Accounts - اكتشاف ثغرة في أندرويد تسمح للتطبيقات الضارة بسحب بيانات المستخدم الخاصة - ماسك يؤكد أن أحد مصانع تيسلا كان هدفًا لهجوم إلكتروني “خطير” - Confessions of an ID Theft Kingpin, Part II - AA20-239A: FASTCash 2.0: North Korea's BeagleBoyz Robbing Banks - FBI, CISA Echo Warnings on ‘Vishing’ Threat - زيادة حملات التصيد الصوتي بسبب وباء كورونا - Google Drive تسمح للمهاجمين بخداعك - Former Uber Security Chief Charged Over Covering Up 2016 Data Breach - Microsoft Put Off Fixing Zero Day for 2 Years - Medical Debt Collection Firm R1 RCM Hit in Ransomware Attack - AA20-227A: Phishing Emails Used to Deploy KONNI Malware - New Attack Lets Hackers Decrypt VoLTE Encryption to Spy on Phone Calls - Why & Where You Should You Plant Your Flag - AA20-225A: Malicious Cyber Actor Spoofing COVID-19 Loan Relief Webpage via Phishing Emails - Microsoft Patch Tuesday, August 2020 Edition - كروم يعرّض مليارات المستخدمين لخطر سرقة البيانات - الأمم المتحدة: الجرائم الإلكترونية تشهد زيادة حادة أثناء الوباء - Capital One Fined $80 Million for 2019 Data Breach Affecting 106 Million Users - Porn Clip Disrupts Virtual Court Hearing for Alleged Twitter Hacker - كانون تعاني من هجوم طلب الفدية - Robocall Legal Advocate Leaks Customer Data - Three Charged in July 15 Twitter Compromise - 17-Year-Old 'Mastermind', 2 Others Behind the Biggest Twitter Hack Arrested - Is Your Chip Card Secure? Much Depends on Where You Bank - Business ID Theft Soars Amid COVID Closures - AA20-209A: Potential Legacy Risk from Malware Targeting QNAP NAS Devices - قراصنة روسيا يضربون الشبكات الأمريكية مرة أخرى - فريق جوجل الأمني يقاطع برنامج آبل الأمني - AA20-206A: Threat Actor Exploitation of F5 BIG-IP CVE-2020-5902 - جوجل تستخدم أندرويد لتتبع استخدام التطبيقات المنافسة - شركة الساعات Garmin تصاب بالشلل بسبب هجوم فدية - NY Charges First American Financial for Massive Data Leak - Twitter Hacking for Profit and the LoLs - آبل تبدأ بتقديم هواتف معدلة للباحثين الأمنيين لإيجاد الثغرات في iOS - علامات تدل على أن هاتف أندرويد يحوي برامج ضارة - تويتر تكشف عن معلومات جديدة تخص الاختراق الكبير - تويتر تعلن عن عدد الحسابات المُستهدفة في الاختراق الأخير - أمريكا وبريطانيا وكندا تتهم روسيا بمحاولة اختراق وسرقة لقاح كورونا - AA20-198A: Malicious Cyber Actor Use of Network Tunneling and Spoofing to Obfuscate Geolocation - أدوات الموظفين ساهمت في اختراق تويتر - تويتر تتعرض لخرق أمني كبير - ‘Wormable’ Flaw Leads July Microsoft Patches - Breached Data Indexer ‘Data Viper’ Hacked - مايكروسوفت تُحذِّر من ثغرة خطرة عمرها 17 عامًا في Windows DNS Server - مايكروسوفت تريد التخلص من برمجيات لينكس الضارة - محتالو بيتكوين سرقوا 24 مليون دولار في عام 2020 - AA20-195A: Critical Vulnerability in SAP NetWeaver AS Java - Zoom تصحح ثغرة أمنية خطيرة تؤثر على ويندوز 7 - أجهزة التوجيه المنزلية الأكثر شيوعًا تعاني من عيوب خطيرة - Unpatched Critical Flaw Disclosed in Zoom Software for Windows 7 or Earlier - حملة تصيد تستهدف مستخدمي مايكروسوفت في 62 دولة - E-Verify’s “SSN Lock” is Nothing of the Sort - كيفية تأمين أجهزة إنترنت الأشياء الخاصة بشركتك - اختراق نظام EncroChat المشفر للدردشة - Police Arrested Hundreds of Criminals After Hacking Into Encrypted Chat Network - Ransomware Gangs Don’t Need PR Help - كيفية تجنب برنامج الفدية الجديد EvilQuest على أجهزة Mac - AA20-182A: EINSTEIN Data Trends – 30-day Lookback - فيسبوك تشارك بيانات المستخدم مع المطورين - باحث يكشف عن ثغرة خصوصية في macOS وينتقد آبل - COVID-19 ‘Breach Bubble’ Waiting to Pop? - الولايات المتحدة تبدأ بإنهاء المعاملة الخاصة لهونج كونج لدواعٍ أمنية - TikTok يتجسس سرًا على مستخدمي آيفون - 'Satori' IoT DDoS Botnet Operator Sentenced to 13 Months in Prison - New Charges, Sentencing in Satori IoT Botnet Conspiracy - تويتر يحظر مجموعة سرَّبت سجلات الشرطة من العديد من الدول - ‘BlueLeaks’ Exposes Files from Hundreds of Police Departments - Turn on MFA Before Crooks Do It For You - وكالة المخابرات المركزية مسؤولة عن سرقة أدواتها للقرصنة السرية - أمازون تعرضت لأكبر هجوم DDoS تم تسجيله على الإطلاق - InvisiMole Hackers Target High-Profile Military and Diplomatic Entities - FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy - When Security Takes a Backseat to Productivity - حملة تجسس هائلة تهاجم مستخدمي متصفح كروم - LinkedIn تساهم في اختراق شركات الدفاع الأوروبية - Zoom تتراجع وتَعِد بتوفير تقنية التشفير لجميع المستخدمين دون استثناء - أدوبي تحدد الموعد النهائي لإنهاء الدعم عن Flash Player - Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com - هجوم Lamphone يتيح استعادة المحادثات من مصباح الإضاءة - ActionSpy .. برمجية أندرويد ضارة تستهدف الأويغور - A Bug in Facebook Messenger for Windows Could've Helped Malware Gain Persistence - شركة هندية غامضة تدير أكبر خدمة قرصنة في العالم - Microsoft Patch Tuesday, June 2020 Edition - Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity - هوندا توقف الإنتاج مؤقتًا بسبب هجوم سيبراني - كاسبرسكي تتعاون مع الاتحاد السعودي للأمن السيبراني في التدريب على الأمن الرقمي - Owners of DDoS-for-Hire Service vDOS Get 6 Months Community Service - دراسة: نحو نصف الموظفين العرب العاملين من منازلهم لم يتلقوا إرشادات في الأمن الرقمي - New USBCulprit Espionage Tool Steals Data From Air-Gapped Computers - Romanian Skimmer Gang in Mexico Outed by KrebsOnSecurity Stole $1.2 Billion - اكتشاف برنامج فدية خبيث يتستّر بثوب ملفات جافا - برنامج تدريب مبتكر على الوعي الأمني من كاسبرسكي - كاسبرسكي تكشف تفاصيل جديدة لهجمات استهدفت الشركات الصناعية - REvil Ransomware Gang Starts Auctioning Victim Data - Anonymous تعود للظهور وسط الاضطرابات الأمريكية - آبل تطلق تحديثًا يصلح الثغرة وراء أحدث أداة “جيلبريك” - كاسبرسكي تعرض Kaspersky Total Security مجانًا لثلاثة أشهر - Career Choice Tip: Cybercrime is Mostly Boring - A New Free Monitoring Tool to Measure Your Dark Web Exposure - UK Ad Campaign Seeks to Deter Cybercrime - Report: ATM Skimmer Gang Had Protection from Mexican Attorney General’s Office - اكتشاف ثغرة خطرة في جميع إصدارات أندرويد تقريبًا - Riding the State Unemployment Fraud ‘Wave’ - NSO Group تنتحل شخصية فيسبوك لنشر برامج التجسس - How Cybersecurity Enables Government, Health, EduTech Cope With COVID-19 - آبل وجوجل تطلقان رسميًا الإصدار الأولي من تقنية مكافحة كورونا - Ukraine Nabs Suspect in 773M Password ‘Megabreach’ - مليارات الأجهزة معرضة للقرصنة بسبب البلوتوث - تسريب التعليمات البرمجية لميزة السيارة الذكية من مرسيدس - قراصنة هددوا بنشر “غسيل ترامب الوسخ” ينشرون عشرات الرسائل - قراصنة يهددون ترامب بنشر “غسيله الوسخ” ما لم يدفع فدية 42 مليون دولار - ورشة التصدي للهجمات المتقدمة واختراق الدومين - تروجان جديد يستهدف هيئات دبلوماسية في أوروبا - HTTP Status Codes Command This Malware How to Control Hacked Systems - 73 % من الموظفين العاملين من منازلهم لم يتلقوا إرشادات في الأمن الرقمي - Microsoft Patch Tuesday, May 2020 Edition - Ransomware Hit ATM Giant Diebold Nixdorf - 84% من المستخدمين في الإمارات يحاولون حذف معلوماتهم الخاصة من الإنترنت - الآلاف من تطبيقات أندرويد تسرب بيانات المستخدمين - الملايين من الحواسيب عرضة للقرصنة بسبب Thunderbolt - هجمات DDoS على المواقع التعليمية والحكومية تتضاعف 3 مرات في 2020 - فيسبوك تطلق تصميمها الداكن الجديد لجميع المستخدمين - DigitalOcean Data Leak Incident Exposed Some of Its Customers Data - Meant to Combat ID Theft, Unemployment Benefits Letter Prompts ID Theft Worries - Tech Support Scam Uses Child Porn Warning - Europe’s Largest Private Hospital Operator Fresenius Hit by Ransomware - خلل في إنستاجرام يسمح بنشر صور طويلة جدًا - ثغرة تؤثر على جميع هواتف سامسونج المباعة منذ 2014 - AA20-126A: APT Groups Target Healthcare and Essential Services - مايكروسوفت تعرض 100,000 دولار مكافأةً لمن يخترق أحد أنظمتها - تويتر تختبر ميزة تُحذر من يرد بتغريدات مسيئة - خدمة جديدة من كاسبرسكي تتيح إنذارات فورية بالتهديدات الرقمية - تيسلا تكشف عن معلومات العملاء الحساسة - الجهات التخريبية تنشط بتهديداتها الرقمية المتقدمة في آسيا - خدمات Meet و Teams و WebEx تجمع عنك بيانات أكثر مما تعتقد - Critical SaltStack RCE Bug (CVSS Score 10) Affects Thousands of Data Centers - اكتشاف برمجية خبيثة في أندرويد تسرق كلمات المرور - الأمن الإلكتروني في أسبوع: تحديث لتأمين Zoom واختراق حسابات Nintendo والمزيد - AA20-120A: Microsoft Office 365 Security Recommendations - PhantomLance حملة تجسس إلكتروني معقدة تستهدف أجهزة أندرويد - Would You Have Fallen for This Phone Scam? - آبل: لا دليل على استغلال ثغرة تطبيق البريد في آيفون وآيباد - احذر .. رسالة نصية بسيطة تعطل جهاز آيفون - Malicious USB Drives Infect 35,000 Computers With Crypto-Mining Botnet - When in Doubt: Hang Up, Look Up, & Call Back - تطبيق Zoom يحلق عاليًا بالرغم من المنع في بعض الدول - Zoom تطلق تحديثًا لحل مشكلات الخصوصية والأمن - كاسبرسكي تقدم أداة لحماية الموظفين العاملين عن بعد - اكتشاف ثغرة في آيفون وآيباد سمحت للمتسللين بسرقة البيانات لسنوات - كاسبرسكي: برمجيات خبيثة تتستر بأسماء منسّقي الموسيقى العالميين - الإمارات تتعرض إلى 1,541 هجوم إلكتروني خلال انتشار كورونا - جوجل تحظر 18 مليون رسالة احتيالية يوميًا - فيسبوك تضيف تفاعلات جديدة لإظهار الاهتمام في زمن كورونا - CISA Warns Patched Pulse Secure VPNs Could Still Expose Organizations to Hackers - فيسبوك ستُنبّه من يتفاعل مع المعلومات غير الصحيحة عن كورونا - AA20-107A: Continued Threat Actor Exploitation Post Pulse Secure VPN Patching - AA20-106A: Guidance on the North Korean Cyber Threat - Microsoft Patch Tuesday, April 2020 Edition - New IRS Site Could Make it Easy for Thieves to Intercept Some Stimulus Payments - 7 Ways Hackers and Scammers Are Exploiting Coronavirus Panic - مجرمو الإنترنت يتخفون تحت أسماء تطبيقات الاجتماعات لتوزيع البرمجيات الخبيثة - AA20-099A: COVID-19 Exploited by Malicious Cyber Actors - تويتر تُلغي خيارًا كان يمنعها من مشاركة بيانات المستخدمين مع المعلنين - دعوى جماعية ضد Zoom بسبب المشكلات الأمنية - Microsoft Buys Corp.com So Bad Guys Can’t - سامسونج توقف الدعم الأمني عن اثنين من أشهر هواتفها - التروجان xHelper يواصل إصابة آلاف الأجهزة.. وإزالته شبه مستحيلة - احذر .. الآلاف من تطبيقات أندرويد تتضمن أبوابًا خلفية - بريطانيا: ربط انتشار كورونا بشبكات 5G “مجرد هراء وخطير” - iPad Pro مزود بميزة لمنع إساءة استخدام الميكروفون - How Just Visiting A Site Could Have Hacked Your iPhone or MacBook Camera - ‘War Dialing’ Tool Exposes Zoom’s Password Problems - 28 % من الآباء في الشرق الأوسط قلقون من محتوى الإنترنت - Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others - Annual Protest to ‘Fight Krebs’ Raises €150K+ - كاسبرسكي: خطر تنزيل البرمجيات الخبيثة في الإمارات أيام العمل أعلى بنسبة 66% - تقرير: Zoom ليس آمنًا كما يدعي - تطبيق Houseparty يعرض مليون دولار لمن يثبت أنه يسرق البيانات - كاسبرسكي تكشف عن هجوم يستهدف الهواتف المحمولة في جنوب شرق آسيا - احذر .. حيلة بسيطة عبر تطبيق واتساب تخطف حسابك - خدمة Zoom تطلق تحديثًا يمنع فيسبوك من جمع بيانات المستخدمين - خلل في iOS يمنع تطبيقات VPN من تشفير البيانات - تطبيق مكالمات الفيديو Zoom يرسل البيانات سرًا إلى فيسبوك - Hackers Exploit Zero-Day Bugs in Draytek Devices to Target Enterprise Networks - US Government Sites Give Bad Security Advice - التروجان Ginp يطلب المال لتعريف المستخدم بالمصابين بفيروس كورونا من حوله - Who’s Behind the ‘Web Listings’ Mail Scam? - كاسبرسكي تكتشف تهديدًا خبيثًا ضمن حملة رقمية تخريبية موجهة في الشرق الأوسط - مايكروسوفت: هناك مهاجمون يستغلون ثغرة اكتشفوها في ويندوز - الكشف عن نتائج الدراسة الاستطلاعية المشتركة بين كاسبرسكي والبوابة العربية للأخبار التقنية - Warning — Two Unpatched Critical 0-Day RCE Flaws Affect All Windows Versions - Zyxel Flaw Powers New Mirai IoT Botnet Strain - أوبر توقف بعض خدماتها في السعودية بسبب كورونا - شركات البث تخفض جودة الفيديو في أوروبا بسبب كورونا - مؤامرات فيروس كورونا تنتشر على واتساب مع استمرار تفشيه - كاسبرسكي: تأمين العمل عن بعد أولوية قصوى في هذه المرحلة - برنامج الحماية المتقدمة من جوجل يحظر تطبيقات أندرويد الخارجية - AA20-073A: Enterprise VPN Security - Amazon GuardDuty Enhanced Findings - AA20-049A: Ransomware Impacting Pipeline Operations - AA20-031A: Detecting Citrix CVE-2019-19781 - شبكات الاتصالات البريطانية تتعطل بسبب كورونا - كاسبرسكي: برمجية تعقب خطرة تفتح الأجهزة والتطبيقات وتقرأ برمجيات التراسل - Europol Arrests 26 SIM Swapping Fraudsters For Stealing Over $3 Million - The Web’s Bot Containment Unit Needs Your Help - CovidLock .. برنامج ضار يتنكر كتطبيق لتتبع فيروس كورونا - تطبيقات آيفون وآيباد شهيرة تتجسس على البيانات - New Android Cookie-Stealing Malware Found Hijacking Facebook Accounts - مايكروسوفت تصدر تحديثًا عاجلًا لثغرة أمنية “مسربة” في ويندوز 10 - كاسبرسكي: ملفات تعريف الارتباط مُعرضة للسرقة - Microsoft Patch Tuesday, March 2020 Edition - مايكروسوفت تصدر أكبر حزمة تصحيحات في تاريخ الشركة - كورونا يصل إلى موظفي آبل - كاسبرسكي تكتشف برمجية خبيثة تنتشر عبر شهادات أمنية مزيفة - جوجل تحذف تطبيقًا إيرانيًا رسميًا لاكتشاف فيروس كورونا - U.S. Govt. Makes it Harder to Get .Gov Domains - مجموعات قرصنة حكومية تخترق خوادم Microsoft Exchange - مفاتيح سيارات تويوتا وهيونداي وكيا قابلة للاستنساخ - معالجات AMD عرضة لهجمات جديدة - معالجات إنتل تعاني من عيب أمني غير قابل للإصلاح - أكثر من مليار هاتف أندرويد معرض لخطر الاختراق - This Unpatchable Flaw Affects All Intel CPUs Released in Last 5 Years - الهجمات ضد مزودي خدمات الاتصالات تهدف للحرمان من الخدمة - The Case for Limiting Your Browser Extensions - French Firms Rocked by Kasbah Hacker? - جوني كرم: البيانات هي النفط الجديد وحمايتها ضرورة ملحة - Kr00k.. ثغرة أمنية تؤثر على مليار جهاز متصل بالإنترنت - FCC Proposes to Fine Wireless Carriers $200M for Selling Customer Location Data - الاستخبارات البريطانية تريد وصولًا استثنائيًا إلى الرسائل المشفرة - GhostCat: New High-Risk Vulnerability Affects Servers Running Apache Tomcat - Zyxel 0day Affects its Firewall Products, Too - تضاعف إصابات الجوال بالهجمات الخبيثة في السعودية خلال 2019 - موزيلا تجعل فايرفوكس أكثر خصوصية وأمان - Signal .. تطبيق المراسلة المفضل لدى المفوضية الأوروبية - سوفوس تطلق نسخة إكستريم من جدار حماية XG - سيكيوروركس: تنامي تهديد برمجيات طلب الفدية بسبب أرباحها المادية - وحدة مانديانت تكشف عن اعتماد هجمات الفدية كمصدر ثانوي للدخل - مؤسس الويب يكثف جهوده لإعادة تشكيل الإنترنت - السويد تبدأ اختبار أول عملة رقمية في العالم تابعة لبنك مركزي - Encoding Stolen Credit Card Data on Barcodes - Pay Up, Or We’ll Make Google Ban Your Ads - حملة من أزورولت AZORult للاستيلاء على العملات الرقمية المشفرة - التروجان المصرفي Ginp يدفع ضحاياه إلى كشف بياناتهم المصرفية - A Light at the End of Liberty Reserve’s Demise? - جوجل تزيل أكثر من 500 إضافة ضارة لمتصفح كروم - U.S. Charges Huawei with Stealing Trade Secrets from 6 Companies - مسؤولون سويسريون يضغطون للتحقيق في عملية التجسس الأمريكية الألمانية - كورونا ينعش قيمة البيتكوين لتتجاوز 10,000 دولار - لأول مرة .. تهديدات البرامج الضارة على ماكنتوش تتجاوز ويندوز - Microsoft Patch Tuesday, February 2020 Edition - مايكروسوفت تصحح 99 عيبًا أمنيًا في أنظمة ويندوز - أندرويد يتيح للمهاجمين إرسال برامج ضارة عبر البلوتوث - Dangerous Domain Corp.com Goes Up for Sale - برمجيات خبيثة تتستر وراء أنجح الأفلام - جوجل كروم يحظر التنزيلات غير الآمنة في أبريل - حساب فيسبوك على تويتر يتعرض للاختراق - The Rise of the Open Bug Bounty Project - When Your Used Car is a Little Too ‘Mobile’ - أرامكو السعودية تنجح في التصدي للهجمات الإلكترونية المتزايدة - أبرز تهديدات أمن الحوسبة السحابية وفقًا لبالو ألتو نتوركس - آبل تصلح ثغرة في macOS تكشف عن لقطات غير مشفرة للرسائل المشفرة - اتفاقية بين UL والهيئة الوطنية السعودية لتعزيز الأمن السيبراني - Booter Boss Busted By Bacon Pizza Buy - واتساب يعاني من ثغرة تسمح للمهاجمين بالوصول إلى الملفات - جوجل تعترف بإرسال مقاطع فيديو خاصة لمستخدمين على Google Photos إلى غرباء - برامج الفدية الجديدة تتطفل على البنية التحتية الحيوية - تويتر تصلح ثغرة سمحت بمطابقة أرقام الهواتف مع الحسابات - Iowa Prosecutors Drop Charges Against Men Hired to Test Their Security - 6 إعدادات يجب ضبطها على نظام ويندوز 10 لتأمينه - كيف يمكنك إخفاء ملفاتك وتطبيقاتك المهمة على هاتف سامسونج؟ - برمجيات خبيثة تستغل جوائز جرامي العالمية للانتشار - 6 نصائح لتأمين جهازك الذي يعمل بنظام ويندوز 7 - مشروع قانون أمريكي قد يعاقب الشركات التي تشفر بيانات المستخدمين - Wawa Breach: Hackers Put 30 Million Stolen Payment Card Details for Sale - Sprint Exposed Customer Support Site to Web - Wawa Breach May Have Compromised More Than 30 Million Payment Cards - مكافح الفيروسات الشهير أفاست يبيع بياناتك الشخصية - إضافة ووردبريس مجانية لتأمين موقعك ضد الهجمات الإلكترونية - فيسبوك تطلق ميزة “النشاط خارج فيسبوك” المثيرة لجميع المستخدمين - حتى بعد انتهاء الدعم.. مايكروسوفت تُجبر على إطلاق تحديث لويندوز 7 - تعرف على المختبر السيبراني الذي يحاول فك تشفير جهاز آيفون - تطبيقات أندرويد تناقض نفسها حول جمع البيانات - آبل تفي بوعدها من خلال تخفيض تتبع بيانات الموقع - Apple Addresses iPhone 11 Location Privacy Concern - كيف يمكنك تأمين رسائل البريد الإلكتروني والرسائل النصية؟ - مايكروسوفت تكشف عن خرق أمني لقاعدة بيانات دعم العملاء - DDoS Mitigation Firm Founder Admits to DDoS - انقطاع خدمات جوجل للبعض في تركيا بسبب هجوم إلكتروني - انتبه .. الأخ الكبير يراقب كيف تكتب أو تحمل هاتفك - خلل مفاجئ في تطبيق واتساب يؤدي إلى توقفه عن العمل - الإنفاق العالمي على تقنية المعلومات سيبلغ 3.9 تريليون دولار في 2020 - تقرير: فيسبوك تتراجع عن عرض الإعلانات داخل واتساب - 6 خطوات لمواجهة الهجمات الإلكترونية الرامية إلى طلب الفدية - مخطط احتيالي جديد يستغل التعويض عن حوادث تسرب البيانات - Broadening the Scope: A Comprehensive View of Pen Testing - ثغرة أمنية في ويندوز 10 وتيسلا تتخطى قيمة فورد وجنرال موتورز معًا والمزيد - اكتشاف 17 تطبيقًا تستنزف البطارية على متجر جوجل - جوجل تحول آيفون إلى مفتاح أمان للمصادقة الثنائية - ويندوز 7.. إليك الخيارات المتاحة بعد توقف مايكروسوفت عن دعمه - Patch Tuesday, January 2020 Edition - Cryptic Rumblings Ahead of First 2020 Patch Tuesday - بادر بالتحديث.. مايكروسوفت تصلح ثغرة تؤثر على مئات الملايين من حواسيب ويندوز 10 - 89% من مسؤولي أمن المعلومات: الموازنات التقنية في نصف الشركات تضغط على الأمن الرقمي - Alleged Member of Neo-Nazi Swatting Group Charged - شركات الاتصالات الأمريكية عرضة لهجمات مبادلة بطاقة الاتصال - أمازون تفصل موظفين شاركوا معلومات عملائها مع جهات خارجية - انكشاف أكثر من مليار صور طبية على الإنترنت بسبب إهمال الأطباء - باستغلاله لـ Google Accessibility تطبيق خبيث ينشر تقييمات مزيفة - Critical Firefox 0-Day Under Active Attacks – Update Your Browser Now! - Lawmakers Prod FCC to Act on SIM Swapping - اختراق حساب وكالة الأنباء الكويتية على تويتر - تويتر تريد منحك القدرة على تحديد من يمكنه الرد على تغريداتك - كيف يمكنك استخدام هاتف أندرويد كمفتاح أمان؟ - ما المتوقع بعد مقتل قاسم سليماني في مجال الأمن الإلكتروني؟ - كاسبرسكي: ثلثا الشركات الصناعية لا تبلغ بحوادث الأمن الرقمي - كاسبرسكي تتيح استخدام أداة Kaspresso لمطوري تطبيقات أندرويد - Tricky Phish Angles for Persistence, Not Passwords - The Hidden Cost of Ransomware: Wholesale Password Theft - Xiaomi Cameras Connected to Google Nest Expose Video Feeds From Others - حصاد 2019.. أبرز تطورات الذكاء الاصطناعي خلال العام - Happy 10th Birthday, KrebsOnSecurity.com - Ransomware at IT Services Provider Synoptek - How Organizations Can Defend Against Advanced Persistent Threats - آبل تجعل التوثيق إلزاميًا لتطبيقات macOS - كاسبرسكي تتيح للعملاء حماية معززة من تهديدات الويب - تطبيق Speedtest يدعم خدمة VPN على أندرويد وآي أو إس - تويتر تحظر ملفات PNG المتحركة لحماية المستخدمين - هل اختراق أجهزة آيفون المحمية ممكن؟ - جامعة سعودية تطور رقاقة تشفير غير قابلة للاختراق - تويتر تحذر مستخدمي أندرويد من ثغرة أمنية خطيرة - آبل تتيح برنامج اكتشاف الثغرات للجميع والمكافآت تصل إلى مليون دولار - فيسبوك تحقق في تسريب معلومات أكثر من 267 مليون مستخدم - فيسبوك تحقق في تسريب بيانات شخصية لأكثر من 260 مليون مستخدم - Apple Opens Its Invite-Only Bug Bounty Program to All Researchers - كاسبرسكي: احذر حملات التصيد والفيروسات مع انطلاق Star Wars - فنلندا تتيح دروتها لتعليم الذكاء الاصطناعي مجانًا للجميع حول العالم - الرئيس الروسي عرضة للقرصنة بسبب ويندوز إكس بي - Nuclear Bot Author Arrested in Sextortion Case - Ransomware Gangs Now Outing Victim Businesses That Don’t Pay Up - خلل في واتساب يعطل التطبيق ويحذف دردشات المجموعة - قراصنة يخترقون كاميرات Ring التابعة لأمازون - ثغرة في iOS 13 تتيح للأطفال الالتفاف على الرقابة الأبوية - لص يسرق بيانات مهمة لعشرات الآلاف من موظفي فيسبوك - حصاد 2019.. أبرز ما قدمته تويتر للمستخدمين خلال العام - Flaw in Elementor and Beaver Addons Let Anyone Hack WordPress Sites - The Great $50M African IP Address Heist - متصفح كروم ينبهك الآن عندما يسرق شخص ما كلمة مرورك - 9 توقعات للأمن الإلكتروني في الشرق الأوسط خلال 2020 - كاسبرسكي: 174 هجوم طلب فدية استهدفت بلديات حول العالم في 2019 - خبايا التصفح المتخفي - Patch Tuesday, December 2019 Edition - CISO MAG Honors KrebsOnSecurity - أكثر من نصف مستخدمي الإنترنت العرب عرضًة للخطر بسبب البرمجيات المقرصنة - Ransomware at Colorado IT Provider Affects 100+ Dental Offices - مايكروسوفت: 44 مليون حساب يستخدمون كلمات مرور مخترقة - جوجل تختبر ميزة لتتبع الطرود على محركها مباشرةً! - New Linux Bug Lets Attackers Hijack Encrypted VPN Connections - Apple Explains Mysterious iPhone 11 Location Requests - آيفون 11 برو يجمع بيانات الموقع حتى لو عطلتها - The iPhone 11 Pro’s Location Data Puzzler - هل يستطيع تطبيق فيسبوك التجسس عليك فعلًا؟ - يوتيوب ستسمح برفع الألعاب ذات المحتوى العنيف إلى منصتها - تويتر تطلق مركزًا للخصوصية وحماية البيانات - اكتشاف ثغرة خطرة في نظام تسجيل الدخول الخاص بمايكروسوفت - العثور على قاعدة بيانات تحتوي عشرات الملايين من رسائل SMS - Europol Shuts Down 'Imminent Monitor' RAT Operations With 13 Arrests - NordVPN تطلق تطبيق مدير كلمات المرور NordPass - كاسبرسكي تكشف عن 37 ثغرة في أنظمة VNC مفتوحة المصدر - كيف يمكنك حذف تطبيقات أندرويد غير المستخدمة لحماية جهازك؟ - Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains - تضاعف محاولات الاحتيال عبر إشعارات متصفحات الويب 3 مرات هذا العام - مايكروسوفت تحذر من برمجية خبيثة جديدة - برمجية خطرة معروفة تستخدم يوتيوب لتعدين العملات الرقمية - 5 طرق تساعدك في الحفاظ على أمان أجهزة أندرويد - 110 Nursing Homes Cut Off from Health Records in Ransomware Attack - أوروبا تفشل في الاتفاق على قواعد الخصوصية التي تحكم واتساب وسكايب - فنلندا تستعد لحرب إلكترونية بعد طلب فدية عبر بيتكوين - تويتر تدعم المصادقة الثنائية بدون رقم الهاتف - OnePlus Suffers New Data Breach Impacting Its Online Store Customers - Boost Your Personal Security With These Killer 2019 Black Friday and Cyber Monday Deals - DDoS-for-Hire Boss Gets 13 Months Jail Time - جوجل ستدفع لك مليون دولار إن تمكنت من اختراق Titan M - رغم التحديث.. تطبيقات أندرويد الشعبية لا تزال تحتوي على ثغرات - Introduction to SIEM مدخل الى - Introduction to Phishing مدخل الى - Ransomware Bites 400 Veterinary Hospitals - تعرف على أبرز الهجمات السيبرانية خلال 2019 - الخدع والحيل والهجمات الإلكترونية.. التهديدات التي تستهدف صناعة الرياضات الإلكترونية - تطبيق كاميرا أندرويد يتيح تسجيل الفيديو دون إذن - 5 طرق للتحقق من أمان اتصالك بالإنترنت - اكتشاف 146 ثغرة في تطبيقات مثبتة مسبقًا على هواتف أندرويد - واتساب تصلح ثغرة خطرة تسمح باستغلال ملفات MP4 للاختراق - واتساب يعاني من ثغرة تسمح بتثبيت برامج التجسس سرًا - تحقيق صحفي يكشف تلاعب جوجل بنتائج البحث - رقاقات كوالكوم تسرب البيانات من هواتف أندرويد - Two Arrested for Stealing $550,000 in Cryptocurrency Using Sim Swapping - Orcus RAT Author Charged in Malware Scheme - اكتشاف ثغرة خطرة جديدة تؤثر على أحدث معالجات إنتل - فيسبوك تكشف عن سبب تشغيل كاميرا آيفون سرًا أثناء تصفح تطبيقها - Patch Tuesday, November 2019 Edition - Retailer Orvis.com Leaked Hundreds of Internal Passwords on Pastebin - ليست آمنة كما يُعتقد! باحثون يجدون ثغرات خطرة في شبكات 5G - احذر! فيسبوك تشغل كاميرا آيفون سرًا أثناء تصفح تطبيقها - تويتر يطلق استبيانًا عامًا حول آلية تعامله مع الوسائط المضلِّلة أو المزيفة - أكثر دول المنطقة استهدافًا من التهديدات المتقدمة المستمرة حسب كاسبرسكي - Ransomware Hits B2B Payments Firm Billtrust - هجمات طلب الفدية تجعل المستشفيات خاوية من المرضى - Phishers are Angling for Your Cloud Providers - Ransomware Bites Dental Data Backup Firm - فحص وتقييم أمن المعلومات IT Security Assessment - لماذا تحتاج اتفاقية مستوى خدمة حقيقية SLA - Protect Your Organization from Petya / NotPetya Ransomware with Carbon Black - Cybersecurity Firm Imperva Discloses Breach - Hacker Ordered to Pay Back Nearly £1 Million to Phishing Victims - SOAPA العمليات الأمنية وهيكلة منصة التحليلات - Security Operations and Analytics Platform SOAPA - Meet Bluetana, the Scourge of Pump Skimmers - Patch Tuesday, August 2019 Edition - Is ‘REvil’ the New GandCrab Ransomware? - Cybersecurity Frameworks — Types, Strategies, Implementation and Benefits - “بطل” صد هجوم WannaCry العالمي في 2017 يقر بتطوير برامج لسرقة البنوك - 7 عوامل أمان مهمة لأصحاب المتاجر الإلكترونية