https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-06 13:07:122024-08-06 13:07:12Thousands of Devices Wiped Remotely Following Mobile Guardian Hack
Everyone loves the double-agent plot twist in a spy movie, but it’s a different story when it comes to securing company data. Whether intentional or unintentional, insider threats are a legitimate concern. According to CSA research, 26% of companies who reported a SaaS security incident were struck by an insider.
The challenge for many is detecting those threats before they lead to full
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-06 12:06:492024-08-06 12:06:49Suspicious Minds: Insider Threats in The SaaS World
The North Korea-linked threat actor known as Moonstone Sleet has continued to push malicious npm packages to the JavaScript package registry with the aim of infecting Windows systems, underscoring the persistent nature of their campaigns.
The packages in question, harthat-api and harthat-hash, were published on July 7, 2024, according to Datadog Security Labs. Both the libraries did not attract
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-06 11:06:332024-08-06 11:06:33Mullvad vs NordVPN (2024): Which VPN Should You Choose?
Around 20,000 Ubiquiti IoT cameras and routers are at risk due to a vulnerability that has been known for five years. Researchers have found that despite patches being available, many devices are still vulnerable.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-06 11:06:332024-08-06 11:06:33Microsoft Bug Bounty Payouts Increased to $16.6 Million in Past Year
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-06 10:06:512024-08-06 10:06:51CrowdStrike and Delta Fight Over Who’s to Blame for the Airline Canceling Thousands of Flights
Users in Russia have been the target of a previously undocumented Android post-compromise spyware called LianSpy since at least 2021.
Cybersecurity vendor Kaspersky, which discovered the malware in March 2024, noted its use of Yandex Cloud, a Russian cloud service, for command-and-control (C2) communications as a way to avoid having a dedicated infrastructure and evade detection.
“This threat is
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Thousands of Devices Wiped Remotely Following Mobile Guardian Hack
/in General NewsHackers targeted MDM firm Mobile Guardian and remotely wiped thousands of devices, but there is no evidence of data compromise.
The post Thousands of Devices Wiped Remotely Following Mobile Guardian Hack appeared first on SecurityWeek.
SecurityWeek – Read More
Suspicious Minds: Insider Threats in The SaaS World
/in General NewsEveryone loves the double-agent plot twist in a spy movie, but it’s a different story when it comes to securing company data. Whether intentional or unintentional, insider threats are a legitimate concern. According to CSA research, 26% of companies who reported a SaaS security incident were struck by an insider.
The challenge for many is detecting those threats before they lead to full
The Hacker News – Read More
North Korean Hackers Moonstone Sleet Push Malicious JS Packages to npm Registry
/in General NewsThe North Korea-linked threat actor known as Moonstone Sleet has continued to push malicious npm packages to the JavaScript package registry with the aim of infecting Windows systems, underscoring the persistent nature of their campaigns.
The packages in question, harthat-api and harthat-hash, were published on July 7, 2024, according to Datadog Security Labs. Both the libraries did not attract
The Hacker News – Read More
Abnormal Security Raises $250 Million at $5.1 Billion Valuation
/in General NewsEmail security firm Abnormal Security has raised $250 million in a Series D funding round at a $5.1 billion valuation.
The post Abnormal Security Raises $250 Million at $5.1 Billion Valuation appeared first on SecurityWeek.
SecurityWeek – Read More
Non-Profit Blood Center OneBlood Recovering from Cripping Ransomware Attack
/in General NewsThe non-profit blood donation service suffered a ransomware attack last week and has requested urgent and emergency blood…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Mullvad vs NordVPN (2024): Which VPN Should You Choose?
/in General NewsWhile Mullvad VPN offers strong privacy and transparency features, NordVPN’s feature-packed service and robust server fleet give it an advantage.
Security | TechRepublic – Read More
Around 20K Ubiquiti IoT Cameras & Routers are Sitting Ducks for Hackers
/in General NewsAround 20,000 Ubiquiti IoT cameras and routers are at risk due to a vulnerability that has been known for five years. Researchers have found that despite patches being available, many devices are still vulnerable.
Cyware News – Latest Cyber News – Read More
Microsoft Bug Bounty Payouts Increased to $16.6 Million in Past Year
/in General NewsMicrosoft paid out $16.6 million to over 340 security researchers through its bug bounty programs over the past year.
The post Microsoft Bug Bounty Payouts Increased to $16.6 Million in Past Year appeared first on SecurityWeek.
SecurityWeek – Read More
CrowdStrike and Delta Fight Over Who’s to Blame for the Airline Canceling Thousands of Flights
/in General NewsCrowdStrike and Delta are fighting over who is to blame for the airline canceling thousands of flights following the massive outage.
The post CrowdStrike and Delta Fight Over Who’s to Blame for the Airline Canceling Thousands of Flights appeared first on SecurityWeek.
SecurityWeek – Read More
New Android Spyware LianSpy Evades Detection Using Yandex Cloud
/in General NewsUsers in Russia have been the target of a previously undocumented Android post-compromise spyware called LianSpy since at least 2021.
Cybersecurity vendor Kaspersky, which discovered the malware in March 2024, noted its use of Yandex Cloud, a Russian cloud service, for command-and-control (C2) communications as a way to avoid having a dedicated infrastructure and evade detection.
“This threat is
The Hacker News – Read More