Latest Cybersecurity News and Articles
U.S. Federal Agencies Ordered to Hunt for Signs of Microsoft Breach and Mitigate Risks
12 April 2024
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday issued an emergency directive (ED 24-02) urging federal agencies to hunt for signs of compromise and enact preventive measures following the recent compromise of Microsoft's systems that led to the theft of email correspondence with the company.
The attack, which came to light earlier this year, has been
Why CISA is Warning CISOs About a Breach at Sisense
11 April 2024
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today it is investigating a breach at business intelligence company Sisense, whose products are designed to allow companies to view the status of multiple third-party online services in a single dashboard. CISA urged all Sisense customers to reset any credentials and secrets that may have been shared with the company, which is the same advice Sisense gave to its customers Wednesday evening.
Met police failed to act on Commons ‘honeytrap’ sexting reports last year
11 April 2024
The force has said there was nothing to suggest at the time that the messages were part of a wider patternThe Metropolitan police first had reports of unsolicited messages targeting a number of MPs, staff and journalists in Westminster last year, but officers failed to notify politicians.After the former Conservative MP William Wragg said he was manipulated into giving the personal phone numbers of colleagues to a man he met on a dating app, Scotland Yard said it was working with other police forces, alongside its own investigation, amid concerns many other MPs could have been targeted. Continue reading...
X Fixes URL Blunder That Could Enable Social Media Phishing
11 April 2024
Users started noticing on Monday that X's programmers implemented a rule on its iOS app that auto-changed Twitter.com links that appeared in Xeets (tweets) to X.com links.
New Spectre v2 Attack Impacts Linux Systems Running on Intel CPUs
11 April 2024
Researchers have demonstrated the "first native Spectre v2 exploit" for a new speculative execution side-channel flaw that impacts Linux systems running on many modern Intel processors.
Rhadamanthys Malware Deployed By TA547 Against German Targets
11 April 2024
What’s particularly intriguing according to the researchers is the actor’s apparent employment of a PowerShell script likely generated by large language models (LLMs) such as ChatGPT, Gemini or CoPilot.
UK's Attitude to Security Spotlit by Government Figures
11 April 2024
The report from the Department for Science, Innovation and Technology (DSIT), painted security as more of an afterthought for UK businesses, especially when considering the figures about how breaches are handled.
CISO Role Shows Significant Gains Amid Corporate Recognition of Cyber Risk
11 April 2024
CISOs and other management-level cybersecurity executives are gaining more influence and importance as companies have begun to recognize the need for strong cyber governance and oversight, according to a report from Moody’s Ratings.
A vulnerability in Linux distributions may allow unauthorized access
11 April 2024
A recently detected vulnerability in many Linux distributions may open the door for malicious actors to gain unauthorized access.
Python's PyPI Reveals Its Secrets
11 April 2024
GitGuardian is famous for its annual State of Secrets Sprawl report. In their 2023 report, they found over 10 million exposed passwords, API keys, and other credentials exposed in public GitHub commits. The takeaways in their 2024 report did not just highlight 12.8 million new exposed secrets in GitHub, but a number in the popular Python package repository PyPI.
PyPI,
TA547 Phishing Attack Hits German Firms with Rhadamanthys Stealer
11 April 2024
A threat actor tracked as TA547 has targeted dozens of German organizations with an information stealer called Rhadamanthys as part of an invoice-themed phishing campaign.
"This is the first time researchers observed TA547 use Rhadamanthys, an information stealer that is used by multiple cybercriminal threat actors," Proofpoint said. "Additionally, the actor appeared to
Python's PyPI Reveals Its Secrets
11 April 2024
GitGuardian is famous for its annual State of Secrets Sprawl report. In their 2023 report, they found over 10 million exposed passwords, API keys, and other credentials exposed in public GitHub commits. The takeaways in their 2024 report did not just highlight 12.8 million new exposed secrets in GitHub, but a number in the popular Python package repository PyPI.
PyPI,
New Google Workspace Feature Prevents Sensitive Security Changes if Two Admins Don’t Approve Them
11 April 2024
If the feature is enabled, certain sensitive admin actions can be taken only if approved by an admin who did not initiate them and thus, in theory, preventing accidental or unauthorized changes made by either malicious insiders or outsiders
Wiz Buys Startup Gem Security for $350M to Spot Cloud Issues
11 April 2024
Wiz purchased a cloud detection and response startup founded by a longtime Israeli Military Intelligence leader to address security operations and incident response use cases.
New Technique Detected in an Open Source Supply Chain Attack
11 April 2024
Attackers create malicious GitHub repositories with popular names and topics, using techniques like automated updates and fake stars to boost search rankings and deceive users.
AI Data Security Startup Cyera Confirms $300M Raise at a $1.4B Valuation
11 April 2024
The lead investor for the Series C funding is Coatue, which is new to the startup’s cap table. Other new investors include Spark Capital, Georgian, and strategic backer AT&T Ventures.
Rust Addresses Critical Vulnerability on Windows
11 April 2024
The vulnerability, which carries a perfect 10 base severity score, is tracked as CVE-2024-24576. It affects the Rust standard library, which was found to be improperly escaping arguments when invoking batch files on Windows using the Command API.
Raspberry Robin Now Spreading Through Windows Script Files
11 April 2024
First identified in late 2021, Raspberry Robin is a Windows worm initially seen targeting technology and manufacturing organizations. It has since grown to become one of the most prevalent threats facing enterprises.
Microsoft April 2024 Patch Tuesday fixes 150 security flaws, 67 RCEs
11 April 2024
Only three critical vulnerabilities were fixed as part of the April 2024 Patch Tuesday updates, but there are over 67 remote code execution bugs. More than half of the RCE flaws are found within Microsoft SQL drivers, likely sharing a common flaw.
Analyzing CryptoJS Encrypted Phishing Attempt
11 April 2024
ARC Labs recently analyzed a phishing email used in a credential harvesting campaign that leveraged a lure notifying the target they received a voice message and needed to visit a link to access it.