The researchers said development of the EagleMsgSpy tool has continued throughout 2024, with the company behind it adding new capabilities and obfuscation features.
SUMMARY Popular doughnut chain Krispy Kreme has become the latest victim of a cyber attack. The incident, which…
Cybersecurity researchers have flagged a "critical" security vulnerability in Microsoft's multi-factor authentication (MFA) implementation that allows an attacker to trivially sidestep the...
Cybersecurity researchers have discovered a new version of the ZLoader malware that employs a Domain Name System (DNS) tunnel for command-and-control (C2) communications, indicating that the...
Hackers are exploiting a critical vulnerability in the "Hunk Companion" plugin to install and activate other plugins with exploitable flaws directly from the WordPress.org repository. [...]
Chinese cybersecurity firm Sichuan Silence has been sanctioned for exploiting a vulnerability in Sophos firewalls used at critical infrastructure organizations in the U.S.
The 2024 MITRE ATT&CK Evaluation results are now available with Cynet achieving 100% Visibility and 100% Protection in the 2024 evaluation. Learn more from Cynet about what these results mean. [...]
A Russian nation-state threat actor has been observed leveraging tools from other cybercriminal groups to compromise targets in Ukraine, a recent report by Microsoft Threat Intelligence disclosed....
Researchers say a hacking group linked to the FSB used tools developed by a cybercrime group to target Ukraine's Army and Border Guard. © 2024 TechCrunch. All rights reserved. For personal use only.
Microsoft detailed how Russian espionage group Secret Blizzard is leveraging infrastructure of other threat actors to target the Ukrainian military with custom malware
Cybersecurity researchers have discovered a novel surveillance program that's suspected to be used by Chinese police departments as a lawful intercept tool to gather a wide range of information...
In today’s highly distributed workplace, every employee has the ability to act as their own CIO, adopting new cloud and SaaS technologies whenever and wherever they need. While this has been a...
Known as Milton Group, the network allegedly operated call centers that defrauded over 100,000 people, including those from the European Union, the U.K., Canada, Brazil, India and Japan.
A suspected China-based threat actor has been linked to a series of cyber attacks targeting high-profile organizations in Southeast Asia since at least October 2023. The espionage campaign...
Fraudsters in UAE posed as Dubai Police, targeting citizens with fake fines via calls, emails and SMS
Doughnut multinational Krispy Kreme disclosed a cyberattack that disrupted certain operations, including online ordering in the United States. © 2024 TechCrunch. All rights reserved. For personal use only.
A previously undocumented Android spyware called 'EagleMsgSpy' has been discovered and is believed to be used by law enforcement agencies in China to monitor mobile devices. [...]
SUMMARY Cybersecurity researchers at Oasis Security have identified a vulnerability in Microsoft’s Multi-Factor Authentication (MFA), known as AuthQuake,…
Krispy Kreme said the incident is likely to materially affect operations and short-term financial performance
A great way to stay current with the latest technology trends and innovations is by attending conferences. Read and bookmark our tech events guide.
Legacy infrastructure isn’t just an obstacle to innovation. For many growing businesses, it’s also a substantial cost-sink. That was the case for American Family Care (AFC), one of the largest...
The Korean Financial Security Institute (K-FSI) disrupted a fraudulent network that made $6.3m by stealing money from fake personal trading platforms
The sixth round of tests included two ransomware variants, while also incorporating macOS for the first time. The post Latest round of MITRE ATT&CK evaluations put cybersecurity products through...
ASEC Blog publishes Ransom & Dark Web Issues Week 2, December 2024 Continued Ransomware Attacks on Subsidiaries of Major Korean Corporations: This Time, a High-Pressure Tank Manufacturer is...
Compare CrowdStrike and Wiz on cloud security, features, pricing, and performance to find the best cybersecurity solution for your business needs.
The spyware, called EagleMsgSpy, has been used by Chinese law enforcement, according to cybersecurity firm Lookout. © 2024 TechCrunch. All rights reserved. For personal use only.
Microsoft has lifted a compatibility block preventing Windows 11 24H2 upgrades after fixing a bug causing USB connection issues to some scanners. [...]
An operation conducted across 15 countries led to the identification of 300 users of distributed denial-of-service (DDoS) platforms and the arrest of three administrators, Europol said.
Looking for the best SIEM tool? Check out our list and find the security information and event management solution that fits your business needs.
Microsoft MFA flaw exposed that allowed attackers to bypass security within an hour, putting 400m Office 365 accounts at risk