UAC-0125 Abuses Cloudflare Workers to Distribute Malware Disguised as Army+ App

19/12/2024 0 Comments 0 tags

The Computer Emergency Response Team of Ukraine (CERT-UA) has disclosed that a threat actor it tracks as UAC-0125 is leveraging Cloudflare Workers service to trick military personnel in the country

Dutch DPA Fines Netflix €4.75 Million for GDPR Violations Over Data Transparency

19/12/2024 0 Comments 0 tags

The Dutch Data Protection Authority (DPA) on Wednesday fined video on-demand streaming service Netflix €4.75 million ($4.93 million) for not giving consumers enough information about how it used their data

CISA Mandates Cloud Security for Federal Agencies by 2025 Under Binding Directive 25-01

19/12/2024 0 Comments 0 tags

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued Binding Operational Directive (BOD) 25-01, ordering federal civilian agencies to secure their cloud environments and abide by Secure Cloud Business

INTERPOL Pushes for “Romance Baiting” to Replace “Pig Butchering” in Scam Discourse

18/12/2024 0 Comments 0 tags

INTERPOL is calling for a linguistic shift that aims to put to an end to the term “pig butchering,” instead advocating for the use of “romance baiting” to refer to

BeyondTrust Issues Urgent Patch for Critical Vulnerability in PRA and RS Products

18/12/2024 0 Comments 0 tags

BeyondTrust has disclosed details of a critical security flaw in Privileged Remote Access (PRA) and Remote Support (RS) products that could potentially lead to the execution of arbitrary commands. Privileged

ONLY Cynet Delivers 100% Protection and 100% Detection Visibility in the 2024 MITRE ATT&CK Evaluation

18/12/2024 0 Comments 0 tags

Across small-to-medium enterprises (SMEs) and managed service providers (MSPs), the top priority for cybersecurity leaders is to keep IT environments up and running. To guard against cyber threats and prevent

APT29 Hackers Target High-Value Victims Using Rogue RDP Servers and PyRDP

18/12/2024 0 Comments 0 tags

The Russia-linked APT29 threat actor has been observed repurposing a legitimate red teaming attack methodology as part of cyber attacks leveraging malicious Remote Desktop Protocol (RDP) configuration files. The activity,

Not Your Old ActiveState: Introducing our End-to-End OS Platform

18/12/2024 0 Comments 0 tags

Having been at ActiveState for nearly eight years, I’ve seen many iterations of our product. However, one thing has stayed true over the years: Our commitment to the open source

HubPhish Exploits HubSpot Tools to Target 20,000 European Users for Credential Theft

18/12/2024 0 Comments 0 tags

Cybersecurity researchers have disclosed a new phishing campaign that has targeted European companies with an aim to harvest account credentials and take control of the victims’ Microsoft Azure cloud infrastructure.

Patch Alert: Critical Apache Struts Flaw Found, Exploitation Attempts Detected

18/12/2024 0 Comments 0 tags

Threat actors are attempting to exploit a recently disclosed security flaw impacting Apache Struts that could pave the way for remote code execution. The issue, tracked as CVE-2024-53677, carries a