Month: January 2022

The Only Solution That Scales With the Cybersecurity Challenge

Cybersecurity is stretched thin. We all know it, so why state it again?  Because cybersecurity is thinner today than yesterday. Because many keep repeating the same measures that don’t work. And because there actually is a solution. Facts are undeniable:...

/ January 31, 2022

Security giant exposed 3TB of sensitive airport & employees data

The exposed data impacted airports in Colombia, Peru, and probably other countries “or even the rest of the world.” A Sweden-based multinational security and investigation service provider has been found exposing sensitive data of employees at several different airports across...

/ January 31, 2022

Top Government Sites In North Korea Suffer DDoS Attack

Posted on January 31, 2022 at 5:56 PM Some Websites in North Korea were hit by a DDoS attack. This affected the country’s internet access for about six hours. This will be the second time North Korea has had an...

/ January 31, 2022

North Korean Hackers Leverages Windows Update Client to Execute Malicious Payload

In an on-going latest campaign, the Windows Update client has been recently added to the living-off-the-land binaries (LoLBins) list of Lazarus, a North Korean-backed hacking group, and not only that even the hackers are abusing the Windows Update client to...

/ January 31, 2022

German Court Rules Websites Embedding Google Fonts Violates GDPR

A regional court in the German city of Munich has ordered a website operator to pay €100 in damages for transferring a user’s personal data — i.e., IP address — to Google via the search giant’s Fonts library without the...

/ January 31, 2022

North Korean hacking group launches several attacks using Windows update and GitHub

Posted on January 31, 2022 at 8:05 AM A report from Malwarebytes’ Threat Intelligence Team has pointed towards an attack launched by North Korean hackers. The team issued a warning that noted that the Lazarus hacking group posed a threat...

/ January 31, 2022

Key Features Of Threat Intelligence Platforms

Threat intelligence platforms (TIP) keep the company updated about new potential threats and attacks. Let’s dig deeper into what else TIPs offer. In recent times, incidents related to cybersecurity threats have increased exponentially, leaving even the most robust organizational networks...

/ January 30, 2022

DeFi Platform Qubit Finance Loses $80 Million In Another Cryptocurrency Heist

Posted on January 29, 2022 at 6:43 PM Decentralized finance (DeFi) platform Qubit Finance has become the latest victim of a hacking incident. The platform reportedly lost $80 million in a cryptocurrency heist, making it the largest hacking theft so far in...

/ January 29, 2022

Microsoft says Azure stopped the largest DDoS attack in 2021

Posted on January 29, 2022 at 5:30 PM Microsoft released a report saying that Azure recorded the highest level of distributed denial-of-service (DDoS) attacks during the second half of 2021. The company noted that the rate at which DDoS attacks...

/ January 29, 2022

North Korean Hackers Using Windows Update Service to Infect PCs with Malware

The notorious Lazarus Group actor has been observed mounting a new campaign that makes use of the Windows Update service to execute its malicious payload, expanding the arsenal of living-off-the-land (LotL) techniques leveraged by the APT group to further its...

/ January 29, 2022

4 Effective Vulnerability Management Tips for Security Leaders

From the SolarWinds Orion hack to the Kaseya ransomware attack, recent incidents have proven that a single vulnerability in a company’s product or supply chain can have a massive business and brand impact—potentially even posing a national security threat. Security...

/ January 28, 2022

More Than 100 Million Android Phones Hit With Dark Herring Billing’ Malware

Posted on January 28, 2022 at 5:10 PM Security researchers at Zimperium zLabs have revealed that threat actors are using a sophisticated new malware, called ‘Dark Herring’ to infect millions of Android phones. The hackers are using a phony message...

/ January 28, 2022