Tag: http://www.infosecurity-magazine.com/rss/news/76/application-security/

FBI warns of scammers using Net-30 and Net-60 terms This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: New BEC Tactics Enable Fake Asset Purchases

Read more →

Over 14 million records stolen from consumer lender This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Latitude Financial Admits Breach Impacted Millions

Read more →

Provides businesses with early warnings to evict threat actors before they can encrypt data This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: CISA Unveils Ransomware Notification Initiative

Read more →

The vulnerability could allow an unauthenticated attacker to gain admin privileges and take over a website This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: WooCommerce Patches Critical Plugin Flaw Affecting Half a Million Sites

Read more →

The move reportedly did not stem from a compromise of GitHub systems or customer information This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: GitHub Updates Security Protocol For Operations Over SSH

Read more →

Further blow for Chinese social media app This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Now UK Parliament Bans TikTok from its Network and Devices

Read more →

Monster 500MB attachment hides a nasty surprise This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: IRS Phishing Emails Used to Distribute Emotet

Read more →

Business leaders still underestimate importance of security to growth This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Fifth of Execs Admit Security Flaws Cost Them New Biz

Read more →

The deployment of custom credential theft malware is the main novelty of the new campaign This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: China-Aligned “Operation Tainted Love” Targets Middle East Telecom Providers

Read more →

Cyber-criminals used the scam to steal the credentials for various email accounts This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: SharePoint Phishing Scam Targets 1600 Across US, Europe

Read more →

The flaw derives from the way the Okta system records failed login attempts to instances This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: New Post-Exploitation Attack Method Found Affecting Okta Passwords

Read more →

Plans to boost cyber-resilience in the health service by 2030 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: UK Government Sets Out Vision for NHS Cybersecurity

Read more →

Incident was linked to previously disclosed ransomware attack This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Irish Food Giant Dole Admits Employee Data Breach

Read more →

Software was unwittingly downloaded thousands of times This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Malicious ChatGPT Chrome Extension Hijacks Facebook Accounts

Read more →

The forum’s admin said the move might be temporary and that they will set up a new Telegram group This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: BreachForums Shuts Down After Admin’s Arrest

Read more →

Nexus offers overlay attacks and keylogging activities designed to steal victims’ credentials This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: New Android Banking Trojan ‘Nexus’ Promoted As MaaS

Read more →

Guidance includes best practices for identity governance, environmental hardening, SSO, MFA and IAM auditing This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: CISA and NSA Enhance Security Framework With New IAM Guide

Read more →

Threat actors impersonated target company’s vendor This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Security Researchers Spot $36m BEC Attack

Read more →

Organizations are failing with their anti-phishing measures This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Just 1% of Dot-Org Domains Are Fully DMARC Protected

Read more →

ENISA claims most threats are opportunistic This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Ransomware Attacks Double in Europe’s Transport Sector

Read more →

The scam targeted more than 40 well-known brands from 13 countries in the MEA region This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Over 2400 Fake Pages Found Targeting Job Seekers in Middle East, Africa

Read more →

Administrative, agriculture and transportation firms targeted in Donetsk, Luhansk and Crimea This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: CommonMagic Targets Entities in Russo-Ukrainian Conflict Zone

Read more →

JFrog said this is the first instance of packages with malicious code in NuGet This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Hackers Use NuGet Packages to Target .NET Developers

Read more →

Company urges operators to patch now This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: General Bytes Bitcoin ATMs Hacked to Steal Funds

Read more →

Offerings are designed to improve security for millions of firms This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: NCSC Launches Two New Tools for Small Businesses

Read more →

Carmaker says it didn’t pay its extorters This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Ferrari Reveals Data Breach Ransom Attack

Read more →

Microsoft said it saw between 40 and 60 daily attacks in February This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: KillNet Group Uses DDoS Attacks Against Azure-Based Healthcare Apps

Read more →

These included a number of government websites: 105 in Chile, 431 in Mexico and 265 in Peru This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Mispadu Trojan Steals 90,000+ Banking Credentials From Latin American Victims

Read more →

Conor Brian Fitzpatrick of Peekskill was apprehended last Wednesday following an FBI investigation This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: BreachForums Admin Arrested in New York

Read more →

Jumpsec report identified Karakurt, Lockbit and Vice Society among groups responsible This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: UK Ransomware Incident Volumes Surge 17% in 2022

Read more →

Akamai warns of new Mirai-like botnet written in Go This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: “Hinata” Botnet Could Launch Massive DDoS Attacks

Read more →

Juniper Research says most of the pain will be felt in the US This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Scam Robocalls Forecast to Cost $58bn This Year

Read more →

Most of these apps rely on clipper malware to steal the contents of the Android clipboard This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Telegram, WhatsApp Trojanized to Target Cryptocurrency Wallets

Read more →

SentinelOne shared details about the new campaign in an advisory published on Thursday This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Pro-Russian Winter Vivern APT Targets Governments and Telecom Firm

Read more →

Four of these vulnerabilities enabled potential attackers to perform remote code execution This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Google Exposes 18 Zero-Day Flaws in Samsung Exynos Chips

Read more →

Negligence could have caused “significant damage” This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: ICO Reprimands Metropolitan Police for Data Snafu

Read more →

Organizations outside Ukraine could be targeted This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Russian Military Preparing New Destructive Attacks: Microsoft

Read more →

Tens of thousands of mailboxes targeted This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Vishing Campaign Targets Social Security Administration

Read more →

The critical vulnerability allows remote code execution and was assigned a CVSS v3.1 score of 9.8 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: US Government IIS Server Breached via Telerik Software Flaw

Read more →

The operation seized four servers, 7TB of data and 1909.4 Bitcoins (roughly $47.3m) This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: ChipMixer Crypto Laundromat Shut Down By German, US Authorities

Read more →

The Chancellor of the Duchy of Lancaster, Oliver Dowden, confirmed the plans earlier today This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: UK Joins US, Canada, Others in Banning TikTok From Government Devices

Read more →

Tool won’t democratize cybercrime, agency argues This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: NCSC Calms Fears Over ChatGPT Threat

Read more →

Business email compromise overtakes ransomware This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: BEC Volumes Double on Phishing Surge

Read more →

Cobalt Strike beacon loader migrates across criminal ecosystems This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Chinese SilkLoader Malware Sold to Russian Cyber-Criminals

Read more →

The hacker breached the DLP company’s internal update servers to deliver malware within its network This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Tick APT Group Hacked East Asian DLP Software Firm

Read more →

CPR discovered 2500 samples of the malware, impersonating 20 financial institutions in the region This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: “FakeCalls” Android Malware Targets Financial Firms in South Korea

Read more →

The research paper by HoxHunt analyzed 53,127 emails sent to users in over 100 countries This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Humans Still More Effective Than ChatGPT at Phishing

Read more →

NatWest warns of “life-changing” customer losses This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: UK Bank Limits Crypto Payments to Smother Fraud

Read more →

Experts warn users to be on their guard This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Phishing Campaigns Use SVB Collapse to Harvest Crypto

Read more →

They include one likely exploited by Russian-linked threat actors This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Microsoft Patches Two Zero Days This Month

Read more →

The threat actors mainly targeted organizations across Azerbaijan, Tajikistan and Kyrgyzstan This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: YoroTrooper Espionage Campaigns Target CIS, EU Countries

Read more →

The kit is written in NodeJS and has automated setup and detection evasion capabilities This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: DEV-1101 Updates Open Source Phishing Kit

Read more →

The Agency will warn critical infrastructure entities to enable mitigation before an incident This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: CISA Creates New Ransomware Vulnerability Warning Program

Read more →

LockBit ransomware group stole data and encrypted files This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: LA Housing Authority Suffers Year-Long Breach

Read more →

Euler Finance suffered “flash loan” attack This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: UK Crypto Firm Loses $200m in Cyber-Attack

Read more →

National Protective Security Authority begins its work This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: MI5 Launches New Agency to Tackle State-Backed Attacks

Read more →

The relationship between Europe and ASEAN countries is being exploited with social engineering lures This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Dark Pink APT Group Deploys KamiKakaBot Against South Asian Entities

Read more →

13 vulnerabilities were found in the E11 smart intercom devices by Chinese manufacturer Akuvox This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Remote Code Execution and Camera Access Flaws Found in Smart Intercoms

Read more →

Infostealers observed to be delivered via these videos included Vidar, RedLine and Raccoon This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Infostealers Spread Via AI-Generated YouTube Videos

Read more →

Agentless cloud security solutions were among the most talked-about topics during the Cloud & Cyber Security Expo, set in London on March 8-9, 2023 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Unlocking the Benefits and Trade-Offs…

Read more →

London-based group also illegally obtained COVID relief funds This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Final Three Sentenced in £70m Money Laundering Case

Read more →

Category surged 127% year-on-year, says FBI This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Investment Fraud is Now Biggest Cybercrime Earner

Read more →

SEC claims company filed misleading disclosures This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Blackbaud Settles $3m Charge Over Ransomware Attack

Read more →

The trojan can now start specified applications, show push notifications, steal cookies and more This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Hadoken Security Group Upgrades Xenomorph Mobile Malware

Read more →

$145m will go toward making CISA more resilient and defensible This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: White House Allocates $3.1bn to Cybersecurity in New Budget

Read more →

The campaign leveraged the exploitation of a flaw in IBM’s Aspera Faspex file-sharing software This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: IceFire Ransomware Targets Linux Enterprise Networks

Read more →

Fake apps are latest scam designed to trick consumers This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: FBI Warns of Crypto-Stealing Play-to-Earn Games

Read more →

Legal experts also question the impact on consumers This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: UK’s New Privacy Bill Could Mean More Work for Firms

Read more →

Suspected website administrator arrested in Croatia This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Global Cops Take Down NetWire RAT

Read more →

Weekly attacks targeting Ukraine decreased by 44% between October 2022 and February 2023 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Remcos Trojan Returns to Most Wanted Malware List After Ukraine Attacks

Read more →

ScrubCrypt malware obfuscates and encrypts applications to evade antivirus detection This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: 8220 Gang Behind ScrubCrypt Attack Targeting Oracle Weblogic Server

Read more →

Kernelware threat actor claimed responsibility for the hack on a dark web forum This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Acer Confirms Unauthorized Access But Says No Consumer Data Stolen

Read more →

Social media giant TikTok has retaliated to European data security concerns with Project Clover and the announcement of two new data centers This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: TikTok Initiates Project Clover Amid European Data…

Read more →

During the Cloud & Cyber Security Expo, cloud security experts attributed the security shortcomings of cloud users to misconceptions over their responsibility This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Understanding the Shared Responsibility Model, Critical Step…

Read more →

Covert crackdown on Mahsa Amini protests continues This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Tehran Targets Female Activists in Espionage Campaign

Read more →

Threat actor claims to have info on 170,000 victims This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: House Members at Risk After Insurer Data Breach

Read more →

Ivanti warns of “human-sized” security gaps This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Fifth of Government Workers Don’t Care if Employer is Hacked

Read more →

The White House and a bipartisan group of 12 senators have endorsed the legislation This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: US RESTRICT Act Gains Support, Empowers Biden to Ban Foreign Tech

Read more →

The White House and a bipartisan group of 12 senators have endorsed the legislation This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: US RESTRICT Act Gains Supports, Empowers Biden to Ban Foreign Tech

Read more →

Asec recorded attacks in May and October 2022 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Lazarus Group Targets South Korean Finance Firm Via Zero-Day Flaw

Read more →

The campaign lured Facebook business accounts with Google ads and fake Facebook profiles This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: SYS01 Stealer Targets Critical Infrastructure With Google Ads

Read more →

Activity linked to Pakistani state group APT36 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Officials Targeted with Romance Scams and Android Trojans

Read more →

Data Protection and Digital Information Bill designed to reduce paperwork This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Government Claims New UK GDPR Will Save Firms Billions

Read more →

Trend Micro stops a record 146 billion discrete threats This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Cyber-Threat Detections Surge 55% in 2022

Read more →

New campaign leverages a new version of the SoulSearcher loader and the Soul modular framework This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Sharp Panda Targets Southeast Asia in Espionage Campaign Expansion

Read more →

New campaign leverages a new version of the SoulSearcher loader and the Soul modular framework This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Sharp Panda Target Southeast Asia in Espionage Campaign Expansion

Read more →

The findings come from Microsoft, in an advisory published on Monday This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Shein App Accessed Clipboard Data on Android Devices

Read more →

A Catalonia government statement attributed the attack to the threat actor known as RansomHouse This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Ransomware Attack Against Barcelona Hospital Disrupts Operations

Read more →

Russian state-backed hackers is shifting from disruption tactics, with the likes of wiper attacks, to cyber espionage This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Russia’s Cyber Tactics in Ukraine Shift to Focus on Espionage

Read more →

Tool bloat is making it harder to detect and contain attacks This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Just 10% of Firms Can Resolve Cloud Threats in an Hour

Read more →

“Dark Angels” hacking group targets Andrade Gutierrez This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Brazilian Conglomerate Suffers 3TB Data Breach: Report

Read more →

Proofpoint has detailed a sophisticated disinformation campaign in which high-profile individuals are duped into embarrassing comments on video This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Russian Disinformation Campaign Records High-Profile Individuals on Camera

Read more →

Forrester claims public sector is leading the way This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Two-Thirds of European Firms Have Started Zero Trust

Read more →

Kaspersky said the figures represented a 1.5 increase compared with the second half of 2021 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Almost Half of Industrial Sector Computers Affected By Malware in 2022

Read more →

The memorandum highlights the need for states to include cybersecurity in periodic audits This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: EPA Calls For Cybersecurity Improvements in Public Water Systems

Read more →

Police also seized electronic equipment and are currently performing forensic examinations This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: DoppelPaymer Ransomware Gang Members Busted in Germany, Ukraine

Read more →

Information was stolen during recent ransomware attack This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: City of Oakland Faces Major Data Leak

Read more →

Focus will be on enhancing prevention and identification skills This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: UK Government Plans Skills Boost for Public Sector Fraud Fight

Read more →

Online counseling service shared health data This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: FTC Proposes $7.8m Fine for BetterHelp

Read more →

The disclosed flaws occurred when handling malicious TPM 2.0 commands with encrypted parameters This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: TPM 2.0 Library Vulnerabilities May Affect Billions of IoT Devices

Read more →