Security experts have identified a sophisticated cyber threat named ‘TetrisPhantom’ exploiting compromised secure USB drives to infiltrate government systems in the Asia-Pacific (APAC) region.
The ransomware group BlackCat/ALPHV has incorporated a new instrument called ‘Munchkin.’ This tool deploys encryption methods discreetly through virtual machines on network devices.
Okta, an identity tool provider serving numerous businesses, has experienced a security breach targeting its customer support sector, as reported by KrebsOnSecurity. Although Okta has stated that the breach affected a minimal number of clients, evidence suggests that the attackers might have accessed Okta’s support platform for approximately two weeks before the issue was addressed.
Generative AI tools like Chat-GPT, coupled with the rising adoption of cloud services, have intensified the risks of spam and phishing emails, according to a recent study.
Amazon has pinpointed a concern in its WorkSpaces Windows Client versions 5.9.0 and 5.10.0 where connection debug logs were unintentionally stored on the user’s device. If a username or password contained a backslash () or double quotes (“), they might be logged. The issue is fixed in versions 5.11.0 and 5.12.0, with the latter also erasing prior problematic… Read More »
Amazon has introduced a passkey feature, aligning itself with the ongoing trend of passwordless security. Users can now employ biometric verifications like face scans or fingerprints for login purposes on Amazon’s website. This system significantly enhances security since hackers would need physical access to a user’s device to breach their accounts.
The notorious RagnarLocker ransomware group’s dark web portal has been captured by a coalition of international law enforcement agencies. Currently, the site displays a message indicating that it has been taken down due to a combined effort by agencies from the U.S., the European Union, and Japan.
The US cybersecurity agency CISA, in collaboration with the NSA, FBI, and MS-ISAC, has published a guide outlining prevalent phishing strategies and offering countermeasures.
The digital age has blessed us with unprecedented connectivity, bringing a world of information and services to our fingertips. Yet, as with all advancements, it also brings challenges. One of the most significant challenges in our hyper-connected world is ensuring digital security. Enter the realm of penetration testing, an essential pillar of the vast field of cybersecurity.
State-sponsored hackers from Russia and China have targeted a vulnerability in older versions of WinRAR, the leading compression software boasting over half a billion users worldwide. Google’s Threat Analysis Group (TAG) reported on Wednesday that it has tracked multiple hacking attempts leveraging this WinRAR glitch since early 2023.