Blog

A first-of-its-kind malware targeting Amazon Web Services' (AWS) Lambda serverless computing platform has been discovered in the wild.

Through a new agreement with an e-commerce technology startup, Meta Platforms Inc will make it easier for marketers to run three-dimensional ads on Facebook and Instagram.

Exotic Lily, a full-time cybercriminal initial-access gang that utilizes phishing to penetrate businesses' networks for subsequent destructive behavior, has been discovered by researchers.

Government websites were taken down as a result of DDoS assaults against Israeli telecom firms, prompting a short state of emergency.

The are ancient and out of use , and you should think about saving up that space.

Six months after the unique attack method was disclosed in principle, distributed denial-of-service (DDoS) assaults exploiting a new amplification technique dubbed TCP Middlebox Reflection were discovered for the first time in the field.

Gems Education revealed to Khaleej Times on Thursday that it had been the victim of a cyber-attack.

In an attempt to plant "incriminating digital evidence," a hitherto unknown hacking gang has been connected to targeted assaults against human rights activists, human rights defenders, professors, and attorneys across India.

Attackers might use security flaws in Nooie baby monitors to get access to the video stream or execute malicious code on susceptible devices.

A public search engine indexed a blob container that had over 144,000 xml, json, and xls/xlsx files.

HPE's early career program helps them realize their full potential and develop the core skills required for a successful career in the IT sector.

A well-crafted but phony government procurement webpage invites bidders to make bids for lucrative government projects, but instead collects credentials.

Watering-hole attacks were carried out on two servers by 'experts' who exploited Chrome, Windows, and Android weaknesses.

The FBI issued a notice this week because it is witnessing so much fraudulent Google Voice activity, where victims are linked to fake virtual phone numbers.

May this year bring new happiness, new goals, new achievements, and many new inspirations to your life

Despite the increased awareness of cybersecurity, there are numerous myths about it. These misunderstandings might obstruct effective security.

The increasing web of connections between SaaS apps, allowing for automated corporate procedures – and widespread lateral movement by attackers, well beyond IT's control.

While many people's thoughts are off work during the holidays, this is generally when cybercriminals organize their most sinister attacks.

Similar to regular web hosting, but it is far more permissive in terms of what may be hosted on its servers. They're notorious for offering safe havens for dangerous information and behavior, as well as ensuring threat actors' anonymity.

Attackers are taking advantage of the hype around the release of the new Spider-Man film to steal bank information and spread malware.

The Event will run from 28th - 30th November in Riyadh.

The number of ransomware victims has increased by 1,000%. Secure email, network segmentation, and sandboxing for protection are discussed by a cybersecurity researcher and practitioner at FortiGuard Labs.

Meta announced plans to discontinue its decade-old "Face Recognition" system

Due to investigations into cyberattacks on the UAE, the experts published 49 threat intelligence reports.

If it looks like a duck, swims like a duck, and quacks like a duck, it's definitely a duck, according to Tony Anscombe, Chief Security Evangelist at ESET. So, how can you use the duck test to protect yourself from phishing?

Malicious actors might have utilized a now-patched major vulnerability in OpenSea, the world's largest non-fungible token (NFT) marketplace, to drain cryptocurrency money from a victim by delivering a specially-crafted token, providing a new attack channel for exploitation.

One easily disproved conspiracy theory linked the ~six-hour outage to a supposed data breach tied to a Sept. 22 hacker forum ad for 1.5B Facebook user records.

According to a survey, income level, education, and being a member of a disadvantaged community all have a role in cybercrime consequences.

Security researchers revealed an unpatched vulnerability in Microsoft's Windows Platform Binary Table (WPBT), which affects all Windows-based devices since Windows 8, and may be used to install a rootkit and compromise device integrity.

Since early August, a recently discovered problem in a Zoho single sign-on and password management product has been actively exploited.

The following cybersecurity trends and suggestions provide some general principles that you can follow as an employee or a tech professional when surfing the web or utilizing the internet.

The advisory recommends an important line of defense to reduce the risk posed by ransomware and other threats.

Networking giant issues two critical patches and six high-severity patches.

Over one-third of the $613 million in cryptocurrency stolen from blockchain platform Poly Network has been returned, with the hacker saying he did it for fun.

Al-Asheikh added that the COVID-19 pandemic is an opportunity to be seized, and “not just a passing crisis”

Multifront war is what we now call modern day cybercrime battles.

After hackers purportedly requested a $50 million ransom from the world's most valuable oil exporter, Saudi Aramco revealed that some company files were exposed.

The Kaspersky Managed Detection and Response service can help identify and stop attacks in their early stages, before the attackers achieve their goals.

More than 1,300 people had their information compromised during the ransomware attack, including account numbers, debit- and credit-card numbers, and even the related security codes, access codes and personal identification numbers.

A global effort to steal information from energy companies is using sophisticated social engineering to deliver Agent Tesla and other RATs

Researchers accidentally release exploit code for new Windows ‘zero-day’ bug Print Nightmare

An ethical hacker has landed a $30,000 bug bounty payout after finding a security vulnerability in Instagram that potentially exposed users’ private content to nefarious actors.

Exploit in the widely used document service leveraged to send malicious links that appear legitimate but actually steal victims credentials.

Anonymous malware led researchers to discover that a large number of files, credentials, cookies, and other data collected in the cloud database were stolen.

Unprotected server exposes AMT Games user data containing user emails and purchase information.

‘Privateers’ aren’t necessarily state-sponsored, but they have some form of government protection while promoting their own financially-motivated criminal agenda, according to Cisco Talos.

Around 52M malicious messages in just Q1 2021

A new and rising threat to cross-browser anonymity.

‘Freevaccinecovax.org' pretended to be a biotech company, but it was actually gathering information from visitors for criminal purposes.

A consolidation of 60 worldwide entities (counting the DoJ) has proposed a sweeping plan to chase down and disrupt ransomware gangs by going after their monetary operations.

You might believe that cybercrime is more prevalent in countries where people are less tech savvy.

Canon EMEA Director of Information Security, shares his top 5 tips to protect yourself from cyberattacks.

Researchers discovered malware disguised as a Netflix app on the Google Play store that spread through WhatsApp messages.

Data- viewed as a business-basic resource for associations, ought to be ensured against pernicious programmers searching for freedoms to take the information.

Called "Sunspot," the malignant tool adds to a growing list of previously disclosed malicious software such as Sunburst and Teardrop.

Cyberattacks targeting healthcare organizations have spiked by 45% since November 2020 as COVID-19 cases continue to increase globally.

Google has patched a bug in its feedback tool incorporated across its services that could be exploited by an attacker to potentially steal screenshots of sensitive Google Docs documents simply by embedding them in a malicious website.

Also referred to the Breach of the month. The ongoing, growing campaign is “effectively an attack on the United States and its government and other critical institutions,” Microsoft warned.

From ransomware attacks that crippled hospitals, to espionage attacks targeting COVID-19 vaccine supply chain, Beau Woods discusses the top healthcare security risks.

A new set of vulnerabilities has been discovered affecting millions of routers and IoT and OT devices from more than 150 vendors, new research warns.

Designing a behavioral change program requires an audit of existing security practices and where the sticking points are.

How a retail sector reeling from COVID-19 can lock down their online systems to prevent fraud during the upcoming holiday shopping spike.

If it feels like you’re constantly revising the draft of your cybersecurity playbook these days, it’s because you probably are.

Nine bugs were patched, eight of which are rated 'high' severity.

Vulnerabilities ‘that have existed for years’ in WS-Trust could be exploited to attack other services such as Azure and Visual Studio.