[ad_1] Researchers at Akamai have unearthed a concerning shift in the behavior of dynamically seeded Domain Generation Algorithm (DGA) families within Domain Name System (DNS) traffic data. This discovery reveals how malicious actors are adapting their tactics to prolong the life of their command-and-control (C2)... Continue reading
Return to previous page
Page 91
[ad_1] API security company Traceable has unveiled its 2023 State of API Security Report. In collaboration with the Ponemon Institute, the study provides a comprehensive global perspective on the state of API security, exposing critical vulnerabilities and their far-reaching consequences. The report, based on insights... Continue reading
[ad_1] Sensitive patient data may have been accessed following a breach of the Janssen CarePath platform, a subsidiary of pharmaceutical giant Johnson & Johnson. Tech firm IBM, a service provider to Johnson & Johnson Health Care Systems, notified customers of the incident in a statement... Continue reading
[ad_1] Security researchers have uncovered a new covert phishing operation selling sophisticated tools used to target an estimated 56,000 Microsoft 365 accounts in just a 10-month period. Group-IB revealed the existence of the covert W3LL actor in a new report, W3LL Done: Hidden Phishing Ecosystem... Continue reading
[ad_1] A high-severity vulnerability has been discovered in PHPFusion, an open-source content management system (CMS) used by over 15 million websites worldwide to manage and customize their content and designs. The authenticated local file inclusion vulnerability, CVE-2023-2453, could lead to remote code execution (RCE), enabling... Continue reading
[ad_1] Ukraine’s Computer Emergency Response Team (CERT-UA) issued an alert on September 5, 2023, about a cyber-attack attempted by Russian threat actor APT28 against a Ukrainian critical power infrastructure facility. The perpetrators planned to implement their intent using bulk emails from a fake address and... Continue reading
[ad_1] A new open source tool designed to emulate cyber-attacks against operational technology (OT) has been released by MITRE and the US Cybersecurity and Infrastructure Security Agency (CISA). The MITRE Calder for OT is now publicly available as an extension to the open-source Caldera platform... Continue reading
[ad_1] Far fewer board members of UK companies are worried about cyber-risk than their global peers, according to a new study from Proofpoint. The security vendor’s second annual Cybersecurity: The 2023 Board Perspective Report is compiled from interviews with 659 board members at organizations with... Continue reading
[ad_1] The UK’s Electoral Commission has admitted to failing a crucial cybersecurity test at the same time that hackers breached its systems, compromising the data of 40 million voters. A whistleblower revealed to the BBC the Commission received an automatic failure during a Cyber Essentials... Continue reading
[ad_1] Cyber fraudsters have been observed increasingly exploiting vulnerabilities in air miles and customer service systems across the EU, the UK and the US. In 2022 alone, cases of loyalty fraud surged by 30%, impacting more than 75 airlines and involving over 2000 malicious resources,... Continue reading