Cyberattackers Exploit Google Sheets for Malware Control in Global Espionage Campaign

Cybersecurity researchers have uncovered a novel malware campaign that leverages Google Sheets as a command-and-control (C2) mechanism.
The activity, detected by Proofpoint starting August 5, 2024, impersonates tax authorities from governments in Europe, Asia, and the U.S., with the goal of targeting over 70 organizations worldwide by means of a bespoke tool called Voldemort that’s equipped to

The Hacker News – ​Read More

Report: Ransomware Attacks on US Schools and Colleges Cost $9.45 Billion

Over the last few years, ransomware attacks have become a major concern for schools and colleges in the US, with an average of $500,000 being lost per day due to downtime from these attacks, according to Comparitech.

Cyware News – Latest Cyber News – ​Read More

The NIS2 Directive: How Far Does it Reach?

Key aspects of the NIS2 Directive include a focus on proactive cybersecurity measures for entities within its scope, such as risk analysis, incident handling, and supply chain security.

Cyware News – Latest Cyber News – ​Read More

Iranian Hackers Set Up New Network to Target U.S. Political Campaigns

Cybersecurity researchers have unearthed new network infrastructure set up by Iranian threat actors to support activities linked to the recent targeting of U.S. political campaigns.
Recorded Future’s Insikt Group has linked the infrastructure to a threat it tracks as GreenCharlie, an Iran-nexus cyber threat group that overlaps with APT42, Charming Kitten, Damselfly, Mint Sandstorm (formerly

The Hacker News – ​Read More

BlackByte Ransomware Gang Believed to Be More Active Than Leak Site Suggests

Cisco Talos has a blog post on the BlackByte ransomware group’s continuing evolution and new TTPs.

The post BlackByte Ransomware Gang Believed to Be More Active Than Leak Site Suggests appeared first on SecurityWeek.

SecurityWeek – ​Read More

California Advances Landmark Legislation to Regulate Large AI Models

Efforts in California to establish first-in-the-nation safety measures for the largest artificial intelligence systems cleared an important vote.

The post California Advances Landmark Legislation to Regulate Large AI Models appeared first on SecurityWeek.

SecurityWeek – ​Read More

Year-Long Malware Campaign Exploits NPM to Attack Roblox Developers

A year-long malware campaign targets Roblox developers using fake NPM packages mimicking “noblox.js” to steal data. Despite takedowns,…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Integrity360 Expands to South Africa with Grove Acquisition

Grove Group, a cybersecurity and cloud services company based in Cape Town, brings around 600 customers across 51 countries to Integrity360. This acquisition will also enhance Integrity360’s security operations center (SOC) business.

Cyware News – Latest Cyber News – ​Read More

In Other News: Automotive CTF, Deepfake Scams, Singapore’s OT Security Masterplan

Noteworthy stories that might have slipped under the radar: automotive CTF with $100k in prizes, deepfake scams, and Singapore’s OT security masterplan for 2024.

The post In Other News: Automotive CTF, Deepfake Scams, Singapore’s OT Security Masterplan appeared first on SecurityWeek.

SecurityWeek – ​Read More

Check Point, Cisco Boost AI Investments With Latest Deals

Cisco’s deal to acquire Robust Intelligence will make it possible to use red team algorithms to assess risk in AI models and applications, while Check Point’s acquisition of Cyberint will add threat intelligence to its SOC platform.

darkreading – ​Read More