How to Plan and Prepare for Penetration Testing

27/09/2024 0 Comments 0 tags

As security technology and threat awareness among organizations improves so do the adversaries who are adopting and relying on new techniques to maximize speed and impact while evading detection. Ransomware

U.S. Sanctions Two Crypto Exchanges for Facilitating Cybercrime and Money Laundering

27/09/2024 0 Comments 0 tags

The U.S. government on Thursday sanctioned two cryptocurrency exchanges and unsealed an indictment against a Russian national for his alleged involvement in the operation of several money laundering services that

Critical NVIDIA Container Toolkit Vulnerability Could Grant Full Host Access to Attackers

27/09/2024 0 Comments 0 tags

A critical security flaw has been disclosed in the NVIDIA Container Toolkit that, if successfully exploited, could allow threat actors to break out of the confines of a container and

Hackers Could Have Remotely Controlled Kia Cars Using Only License Plates

26/09/2024 0 Comments 0 tags

Cybersecurity researchers have disclosed a set of now patched vulnerabilities in Kia vehicles that, if successfully exploited, could have allowed remote control over key functions simply by using only a

Watering Hole Attack on Kurdish Sites Distributing Malicious APKs and Spyware

26/09/2024 0 Comments 0 tags

As many as 25 websites linked to the Kurdish minority have been compromised as part of a watering hole attack designed to harvest sensitive information for over a year and

EPSS vs. CVSS: What’s the Best Approach to Vulnerability Prioritization?

26/09/2024 0 Comments 0 tags

Many businesses rely on the Common Vulnerability Scoring System (CVSS) to assess the severity of vulnerabilities for prioritization. While these scores provide some insight into the potential impact of a

N. Korean Hackers Deploy New KLogEXE and FPSpy Malware in Targeted Attacks

26/09/2024 0 Comments 0 tags

Threat actors with ties to North Korea have been observed leveraging two new malware strains dubbed KLogEXE and FPSpy. The activity has been attributed to an adversary tracked as Kimsuky,

Overloaded with SIEM Alerts? Discover Effective Strategies in This Expert-Led Webinar

26/09/2024 0 Comments 0 tags

Imagine trying to find a needle in a haystack, but the haystack is on fire, and there are a million other needles you also need to find. That’s what dealing

Cloudflare Warns of India-Linked Hackers Targeting South and East Asian Entities

26/09/2024 0 Comments 0 tags

An advanced threat actor with an India nexus has been observed using multiple cloud service providers to facilitate credential harvesting, malware delivery, and command-and-control (C2). Web infrastructure and security company

Chinese Hackers Infiltrate U.S. Internet Providers in Cyber Espionage Campaign

26/09/2024 0 Comments 0 tags

Nation-state threat actors backed by Beijing broke into a “handful” of U.S. internet service providers (ISPs) as part of a cyber espionage campaign orchestrated to glean sensitive information, The Wall