Tag: http://www.infosecurity-magazine.com/rss/news/76/application-security/

Avast also warns of increase in tech support fraud This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Refund and Invoice Scams Surge in Q4

Read more →

Threat actor has been dubbed TA866 by Proofpoint This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: New Threat Group Reviews Screenshots Before Striking

Read more →

Open source enterprise software users presented tools to automate SBOMs during the State of Open Con 23 conference in London This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: #SOOCon23: Open Source Tools can Automate SBOM Requirements

Read more →

The seven Russian nationals are members of the notorious Trickbot malware gang This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: US and UK Sanction Seven Russian Cyber-Criminals

Read more →

Closure of Hydra has major impact on underground sales This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Dark Web Market Revenues Sink 50% in 2022

Read more →

UK company set up to illegally profit from trade in protective equipment This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Trio Arrested in COVID PPE Fraud Probe

Read more →

Ukraine braced for more critical infrastructure attacks This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: New Info-Stealer Discovered as Russia Prepares Fresh Offensive

Read more →

The SNP MP revealed details of the incident, in which he clicked on a malicious file purportedly about the military situation in Ukraine This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: UK Politician’s Email Hacked by Suspected…

Read more →

A UK government official asks the cyber industry, including the open software community, to help shape software security policies This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: #SOOCon23: UK Government Urges Industry Input on Software Security Policy

Read more →

Open rates for emails hit 28% This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: BEC Attacks Surge 81% in 2022

Read more →

A panel of policy experts discuss how to improve global cooperation around open source software security This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: #SOOCon23: Global Cooperation Needed to Enhance Open Source Software Security

Read more →

Legacy bug in ESXi servers is being targeted by threat actors This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: CISA Releases Recovery Tool for VMware Ransomware Victims

Read more →

Replika accused of posing risk to children This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Regulator Halts AI Chatbot Over GDPR Concerns

Read more →

With $10m in seed funding, Guardz looks to tackle cyber insurance for small businesses This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Cyber Insurance, A Must-Have for Small Businesses

Read more →

The engineering firm has started an investigation “to identify the extent of the issue” This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: UK Metal Engineering Firm Vesuvius Hit by Cyber-Attack

Read more →

Dutch and German police team up to take down Exclu This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Drugs Labs Busted After Encrypted Chat App Takedown

Read more →

NCSC contest sees thousands of schoolgirls enter This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Thirteen Teams Win at UK’s CyberFirst Girls Competition

Read more →

Which? study finds many fail to provide basic online protection This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: UK Banks Still Failing on Digital Security – Report

Read more →

Scripts could interact with the device’s UI and enter text, simulate touch events, etc. This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Novel Banking Trojan ‘PixPirate’ Targets Brazil

Read more →

Microsoft’s Digital Threat Analysis Center shared the findings last Friday in a blog post This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Iranian Threat Actor Neptunium Associated With Charlie Hebdo Cyber-Attacks

Read more →

The Tallahassee Memorial HealthCare hospital is following protocols for system downtime This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Major Florida Hospital Shuts Down Networks, Ransomware Attack Suspected

Read more →

New York attorney general says software facilitates domestic abuse This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Stalkerware Developer Hit with $400K Fine

Read more →

Vendor’s ESXi hypervisors are being targeted This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Legacy VMware Bug Exploited in Global Ransomware Campaign

Read more →

Crypto has a market cap of close to $11m This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Scam Alert for Dingo Token That Charges 99% Fee

Read more →

They created pages with malicious links and ultimately conducted credential-harvesting attacks This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Threat Actors Use ClickFunnels to Bypass Security Services

Read more →

Affected data includes names, contact details, vehicle details and ID documents, among others This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Arnold Clark Confirms Customer Data Compromised in Breach

Read more →

The new campaign highlighted several “noteworthy developments” in TTPs This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Lazarus Group Attack Identified After Operational Security Fail

Read more →

WiCyS is calling for workshop participants to inform its State of Inclusion of Women in Cybersecurity report This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Women in CyberSecurity Calls for Participants for New Measuring Inclusion Workshops

Read more →

North Korean hackers were a major cause This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Record $3.8bn Stolen Via Crypto in 2022

Read more →

The new loaders also leverage obfuscated virtualization techniques to avoid detection This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: MalVirt Loaders Exploit .NET Virtualization to Deliver Malvertising Attacks

Read more →

The Jira versions affected by the vulnerability are 5.3.0, 5.3.1, 5.3.2, 5.4.0, 5.4.1 and 5.5.0 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Atlassian Patches Critical Authentication Flaw in Jira Software

Read more →

The malware had additional exfiltration techniques compared to previously studied variants This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: New Credential-Stealing Campaign By APT34 Targets Middle East Firms

Read more →

New rules are designed to reduce regulatory burden This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: ICO Relaxes Breach Reporting for Comms Providers

Read more →

Individual accused of draining funds from trading platform Mango Markets This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: US Man Charged in $110m Crypto Trading Scheme

Read more →

Similar number expect surge in cyber-attacks this year This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Quarter of CFOs Have Suffered $1m+ Breaches

Read more →

A BlackBerry survey reveals 51% of security leaders expect ChatGPT to be at the heart of a successful cyber-attack within a year This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: IT Leaders Reveal Cyber Fears Around ChatGPT

Read more →

They created pages with malicious links and ultimately conducted credential-harvesting attacks This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Threat Actors Use ClickFunnels to Bypass Security Services

Read more →

Affected data includes names, contact details, vehicle details and ID documents, among others This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Arnold Clark Confirms Customer Data Compromised in Breach

Read more →

The new campaign highlighted several “noteworthy developments” in TTPs This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Lazarus Group Attack Identified After Operational Security Fail

Read more →

WiCyS is calling for workshop participants to inform its State of Inclusion of Women in Cybersecurity report This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Women in CyberSecurity Calls for Participants for New Measuring Inclusion Workshops

Read more →

North Korean hackers were a major cause This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Record $3.8bn Stolen Via Crypto in 2022

Read more →

Sophos found two fraudulent crypto trading apps This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Researchers Warn of Crypto Scam Apps on Apple App Store

Read more →

Critical trading software firm Ion is compromised This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: City of London on High Alert After Ransomware Attack

Read more →

The district’s superintendent Elizabeth Hallett announced the decision in an email to parents This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Ransomware Attack Forces Closure of Nantucket Schools

Read more →

The company uses a combination of T-Mobile and US Cellular for network connectivity This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Google Fi Confirms Data Breach, Hints At Link to T-Mobile Hack

Read more →

But only 15% of these vulnerabilities with available fixes are in packages loaded at runtime This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Researchers Claim High-Risk Vulnerabilities Found in 87% of All Container Images

Read more →

The latest supply chain security report from SecurityScorecard and the Cyentia Institute shows worrying findings This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Almost all Organizations are Working with Recently Breached Vendors

Read more →

Firebrick Ostrich has impersonated over 150 organizations This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: BEC Group Uses Open Source Tactics in Hundreds of Attacks

Read more →

Exam cheats, course leaks and fake certs offer career shortcuts This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Thriving Dark Web Trade in Fake Security Certifications

Read more →

Vulnerability could be exploited by ransomware groups This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Nearly 30,000 QNAP Devices Exposed Via New Bug

Read more →

Revoking these certificates will invalidate some versions of GitHub Desktop for Mac and Atom This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: GitHub Confirms Signing Certificates Stolen in Cyber-Attack, Revokes Them

Read more →

Victims were redirected to a fake landing page to exfiltrate their Proofpoint credentials This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: DocuSign Brand Impersonation Attack Bypasses Security Measures, Targets Over 10,000

Read more →

API attacks, bad bots and DDoS attacks were the industry’s main security challenges This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Financial Services Targeted in 28% of UK Cyber-Attacks Last Year

Read more →

Retaliatory Russian attacks latest response to geopolitical moves This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Killnet Attackers DDoS US and Dutch Hospitals

Read more →

Claims submitted for medical equipment not needed by patients This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Two US Doctors Convicted of $30m Medicare Fraud

Read more →

Vulnerability affects QTS and QuTS Hero firmware This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: QNAP: Patch Critical Remote Code Injection Bug

Read more →

The cyber-attack hit the company between November 2018 and October 2020 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: JD Sports Confirms Breach Affected 10 Million Customers

Read more →

Threat actors used TrickGate to conduct between 40 and 650 attacks per week in the last two years This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Hackers Use TrickGate Software to Deploy Emotet, REvil, Other Malware

Read more →

The data comes from 155 dark web forums analyzed between January 2020 and June 2022 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Devs on Dark Web Forums Paid Up to $20,000 For Illicit Activities

Read more →

Over 20 million users install apps from Google Play This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Fake Money Apps Garner Millions of Android Downloads

Read more →

Woman recruited multiple co-conspirators to help her This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: New Yorker Gets Four Years for $9m COVID Fraud Scheme

Read more →

Russia’s Sandworm group suspected of destructive attack This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Five Data Wipers Attack Ukrainian News Agency

Read more →

Two of these vulnerabilities combined could lead to unauthenticated remote code execution This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Multiple Vulnerabilities Found In Healthcare Software OpenEMR

Read more →

The variant is “wormable” and can infect USB devices to hide itself from the Windows OS This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Black Basta Deploys PlugX Malware in USB Devices With New Technique

Read more →

DomainTools said most of these attacks exploited professional network services such as LinkedIn This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: New ‘Pig Butchering’ Scam in West Africa Impersonates US Financial Advisors

Read more →

Two-fifths see it as a critical innovation driver This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Security is Key to Business Transformation, Say IT Chiefs

Read more →

FBI distributes hundreds of decryption keys to victims This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Global Action “Dismantles” Hive Ransomware Group

Read more →

Attacks are not going away, tech giant warns This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Microsoft: Update On-Premises Exchange Server Now

Read more →

The findings come from cybersecurity experts at Secureworks’ Counter Threat Unit This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Iranian Group Cobalt Sapling Targets Saudi Arabia With New Persona

Read more →

The firm believes the unauthorized access occurred between November 2021 and August 2022 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Zacks Investment Research Confirms Breach Affecting 820,000 Customers

Read more →

The document mentions an October 2022 cyber campaign involving the malicious use of RMM solutions This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: CISA Warns Against Malicious Use of Legitimate RMM Software

Read more →

The NCSC advisory details tactics used by Russia-based threat actor SEABORGIUM and Iran-based group TA453 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: NCSC: Iranian and Russian Groups Targeting Government, Activists and Journalists With Spearphishing

Read more →

Physical currency remains a big draw for cyber-criminals This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Dark Web Posts Advertising Counterfeit Cash Surge 90%

Read more →

Breach notices are increasingly opaque, warns non-profit This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Near-Record Year for US Data Breaches in 2022

Read more →

Fake ads for loans, jobs and properties are on the rise This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Lloyds Bank Warns of 80% Surge in Advance Fee Scams

Read more →

The threat actor has been targeting cryptocurrency exchanges since at least 2017 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: North Korean Group TA444 Shows ‘Startup’ Culture, Tries Numerous Infection Methods

Read more →

DHL came in second place, with 16% of all brand phishing attempts, and Microsoft followed with 11% This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Yahoo Overtakes DHL As Most Impersonated Brand in Q4 2022

Read more →

Joe Berchtold, president of Live Nation, made the claims at a congressional committee Tuesday This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Ticketmaster Claims Bot Attack Disrupted Taylor Swift Tour Sales

Read more →

Bank of England warns greater cross-industry consensus is needed This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Regulator Stress Test Highlights Cyber Insurance Concerns

Read more →

Ransomware actors stole source code, company reveals This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: New Cheats May Emerge After Riot Games Hack

Read more →

One in 10 can only protect critical assets, says Neustar This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Just Half of Firms Have Sufficient Cybersecurity Budget

Read more →

Regulator also has words of caution for emerging tech providers This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: #DataPrivacyWeek: ICO Offers Data Protection Advice to SMBs

Read more →

The new string of attacks mostly targeted East Asian organizations This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: DragonSpark Hackers Evade Detection With SparkRAT and Golang

Read more →

The North Korean cyber actors laundered over $60m worth of Ethereum stolen during the heist This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: FBI Confirms Lazarus Group Was Behind $100m Harmony Hack

Read more →

There is significant disconnect between consumer expectations and organizations’ approaches around privacy, a new report has found This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: #DataPrivacyWeek: Consumers Already Concerned About AI’s Impact on Data Privacy

Read more →

The tech giant confirmed it intends to implement these plans by March 2023 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Microsoft to Block Excel XLL Add-Ins to Stop Malware Delivery

Read more →

Analyst claims only 10% of firms will have a program in place by 2026 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Gartner: Zero Trust Will Not Mitigate Over Half of Attacks

Read more →

Analyst claims only 10% of firms will have a program in place by 2026 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Gartner: Zero Trust Won’t Mitigate Over Half of Attacks

Read more →

Regulator also has words of caution for emerging tech providers This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: ICO Offers Data Protection Advice to SMBs

Read more →

ISP Rostelecom says longest attack lasted three months This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Record-Breaking Year for DDoS Attacks Targeting Russia

Read more →

Sliver is gaining popularity due to its modular capabilities and cross-platform support This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Hackers Deploy Open-Source Tool Sliver C2, Replacing Cobalt Strike, Metasploit

Read more →

Both issues reportedly affected only Samsung devices running Android 12 and below This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Two Vulnerabilities Found in Galaxy App Store

Read more →

Out of the 335 public recommendations issued since 2010, 190 still needed to be implemented This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Most Federal Agencies Ignored GAO’s Cybersecurity Recommendations

Read more →

Vastflux operation injected obfuscated JavaScript into ads This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Ad Fraud Scheme Tops 12 Billion Daily Bid Requests

Read more →

Compromise impacts developer’s ability to release updates This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Riot Games Halts Work After Cyber-Attack

Read more →

NCSC report warns of surging threat to the third sector This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: New Government Cyber Advice for £100bn UK Charity Sector

Read more →

The case raised disagreements between Ireland’s DPC and the European Data Protection Board This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: WhatsApp Hit with €5.5m fine for GDPR Violations

Read more →

Thanks to technical “workarounds,” Royal Mail has been able to resume “limited” export services one week after being hit by cyber-attack This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: “Workarounds” Helped Royal Mail Resume Shipping After Ransomware…

Read more →

Researchers see another sophisticated attempt to obfuscate links This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: Phishers Use Blank Images to Disguise Malicious Attachments

Read more →

Carrier says attack began in November 2022 This article has been indexed from http://www.infosecurity-magazine.com/rss/news/76/application-security/ Read the original article: API Attacker Steals Data on 37 Million T-Mobile Customers

Read more →