Embed Security Raises $6 Million to Help Overworked Analysts

Embed Security has raised $6 million in an early stage funding round led by Paladin Capital Group.

The post Embed Security Raises $6 Million to Help Overworked Analysts appeared first on SecurityWeek.

SecurityWeek – ​Read More

North Korean Hackers Target Crypto Firms with Hidden Risk Malware on macOS

A threat actor with ties to the Democratic People’s Republic of Korea (DPRK) has been observed targeting cryptocurrency-related businesses with a multi-stage malware capable of infecting Apple macOS devices.
Cybersecurity company SentinelOne, which dubbed the campaign Hidden Risk, attributed it with high confidence to BlueNoroff, which has been previously linked to malware families such as

The Hacker News – ​Read More

‘SteelFox’ Miner and Information Stealer Bundle Emerges

Impersonating legitimate software such as Foxit PDF Editor and AutoCAD, the SteelFox crimeware bundle steals user information.

The post ‘SteelFox’ Miner and Information Stealer Bundle Emerges appeared first on SecurityWeek.

SecurityWeek – ​Read More

Canada orders shutdown of TikTok offices over security risks (but won’t block app)

With all eyes on how a new Trump administration in the U.S. will interface with China Tech in the years ahead, its neighbor to the north has levelled a blow to one of the biggest apps to come out of the country. Canada has ordered the closure of ByteDance’s operations in Canada — specifically the […]

© 2024 TechCrunch. All rights reserved. For personal use only.

Security News | TechCrunch – ​Read More

Cyberattack on Microlise Disables Tracking in Prison Vans, Courier Vehicles

Vehicle tracking services for Serco, DHL, and other fleets were disrupted after Microlise fell victim to a cyberattack.

The post Cyberattack on Microlise Disables Tracking in Prison Vans, Courier Vehicles appeared first on SecurityWeek.

SecurityWeek – ​Read More

Canada Orders TikTok’s Canadian Business to Be Dissolved but Won’t Block App

Canada won’t block access to TikTok but is ordering the dissolution of its Canadian business after a national security review.

The post Canada Orders TikTok’s Canadian Business to Be Dissolved but Won’t Block App appeared first on SecurityWeek.

SecurityWeek – ​Read More

SteelFox and Rhadamanthys Malware Use Copyright Scams, Driver Exploits to Target Victims

An ongoing phishing campaign is employing copyright infringement-related themes to trick victims into downloading a newer version of the Rhadamanthys information stealer since July 2024.
Cybersecurity firm Check Point is tracking the large-scale campaign under the name CopyRh(ight)adamantys. Targeted regions include the United States, Europe, East Asia, and South America.
“The campaign

The Hacker News – ​Read More

Android Banking Trojan ToxicPanda Targets Europe

ToxicPanda is a China-linked Android banking trojan spotted targeting over a dozen banks in Europe and Latin America.

The post Android Banking Trojan ToxicPanda Targets Europe appeared first on SecurityWeek.

SecurityWeek – ​Read More

5 Most Common Malware Techniques in 2024

Tactics, techniques, and procedures (TTPs) form the foundation of modern defense strategies. Unlike indicators of compromise (IOCs), TTPs are more stable, making them a reliable way to identify specific cyber threats. Here are some of the most commonly used techniques, according to ANY.RUN’s Q3 2024 report on malware trends, complete with real-world examples.
Disabling of Windows Event Logging

The Hacker News – ​Read More

Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems

Cisco has released security updates to address a maximum severity security flaw impacting Ultra-Reliable Wireless Backhaul (URWB) Access Points that could permit unauthenticated, remote attackers to run commands with elevated privileges.
Tracked as CVE-2024-20418 (CVS score: 10.0), the vulnerability has been described as stemming from a lack of input validation to the web-based management

The Hacker News – ​Read More