New Cyberattack Targets Chinese-Speaking Businesses with Cobalt Strike Payloads

/in

Chinese-speaking users are the target of a “highly organized and sophisticated attack” campaign that is likely leveraging phishing emails to infect Windows systems with Cobalt Strike payloads.
“The attackers managed to move laterally, establish persistence and remain undetected within the systems for more than two weeks,” Securonix researchers Den Iuzvyk and Tim Peck said in a new report.
The

The Hacker News – ​Read More

North Korean Hackers Target Developers with Malicious npm Packages

/in

Threat actors with ties to North Korea have been observed publishing a set of malicious packages to the npm registry, indicating “coordinated and relentless” efforts to target developers with malware and steal cryptocurrency assets.
The latest wave, which was observed between August 12 and 27, 2024, involved packages named temp-etherscan-api, ethersscan-api, telegram-con, helmet-validate, and

The Hacker News – ​Read More

SANS Institute Unveils Critical Infrastructure Strategy Guide for 2024: A Call to Action for Securing ICS/OT Environments

/in

A comprehensive guide authored by Dean Parsons emphasizes the growing need for specialized ICS security measures in the face of rising cyber threats.
With a staggering 50% increase in ransomware attacks targeting industrial control systems (ICS) in 2023, the SANS Institute is taking decisive action by announcing the release of its essential new strategy guide, “ICS Is the Business: Why Securing

The Hacker News – ​Read More

Cobalt Appoints Sonali Shah as CEO

/in

Post Content

darkreading – ​Read More

Iran’s ‘Fox Kitten’ Group Aids Ransomware Attacks on US Targets

/in

In a joint advisory, CISA and the FBI described the activity as a likely attempt by the group to monetize access to networks it already has compromised.

darkreading – ​Read More

Cyber Insurance: A Few Security Technologies, a Big Difference in Premiums

/in

Ransomware attacks and email-based fraud account for 80% to 90% of all claims processed by cyber insurers, but a handful of cybersecurity technologies can help prevent big damages.

darkreading – ​Read More

Nvidia’s ‘Eagle’ AI sees the world in Ultra-HD, and it’s coming for your job

/in

Nvidia’s Eagle AI model revolutionizes visual understanding with high-resolution processing and multiple vision encoders, advancing document comprehension and visual question answering across industries.Read More

Security News | VentureBeat – ​Read More

Threat Actors Exploit Microsoft Sway to Host QR Code Phishing Campaigns

/in

Threat actors are abusing Microsoft Sway to host QR Code phishing campaigns.

Security | TechRepublic – ​Read More

Brazilian Ad Fraud Network ‘Camu’ Hits 2B+ Daily Bid Requests

/in

The global Internet helps just about everything to scale more easily, including piracy and ad fraud.

darkreading – ​Read More