PikaBot Resurfaces with Streamlined Code and Deceptive Tactics

13/02/2024 0 Comments 0 tags

The threat actors behind the PikaBot malware have made significant changes to the malware in what has been described as a case of “devolution.” “Although it appears to be in

Glupteba Botnet Evades Detection with Undocumented UEFI Bootkit

13/02/2024 0 Comments 0 tags

The Glupteba botnet has been found to incorporate a previously undocumented Unified Extensible Firmware Interface (UEFI) bootkit feature, adding another layer of sophistication and stealth to the malware. “This bootkit can intervene

Alert: CISA Warns of Active ‘Roundcube’ Email Attacks – Patch Now

13/02/2024 0 Comments 0 tags

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a medium-severity security flaw impacting Roundcube email software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.

Ivanti Vulnerability Exploited to Install ‘DSLog’ Backdoor on 670+ IT Infrastructures

13/02/2024 0 Comments 0 tags

Threat actors are leveraging a recently disclosed security flaw impacting Ivanti Connect Secure, Policy Secure, and ZTA gateways to deploy a backdoor codenamed DSLog on susceptible devices. That’s according to findings from Orange Cyberdefense,

Midnight Blizzard and Cloudflare-Atlassian Cybersecurity Incidents: What to Know

13/02/2024 0 Comments 0 tags

The Midnight Blizzard and Cloudflare-Atlassian cybersecurity incidents raised alarms about the vulnerabilities inherent in major SaaS platforms. These incidents illustrate the stakes involved in SaaS breaches — safeguarding the integrity

U.S. Offers $10 Million Bounty for Info Leading to Arrest of Hive Ransomware Leaders

13/02/2024 0 Comments 0 tags

The U.S. Department of State has announced monetary rewards of up to $10 million for information about individuals holding key positions within the Hive ransomware operation. It is also giving away an

Microsoft Introduces Linux-Like ‘sudo’ Command to Windows 11

13/02/2024 0 Comments 0 tags

Microsoft said it’s introducing Sudo for Windows 11 as part of an early preview version to help users execute commands with administrator privileges. “Sudo for Windows is a new way

Why Are Compromised Identities the Nightmare to IR Speed and Efficiency?

13/02/2024 0 Comments 0 tags

Incident response (IR) is a race against time. You engage your internal or external team because there’s enough evidence that something bad is happening, but you’re still blind to the

CISA and OpenSSF Release Framework for Package Repository Security

13/02/2024 0 Comments 0 tags

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced that it’s partnering with the Open Source Security Foundation (OpenSSF) Securing Software Repositories Working Group to publish a new framework to

4 Ways Hackers use Social Engineering to Bypass MFA

13/02/2024 0 Comments 0 tags

When it comes to access security, one recommendation stands out above the rest: multi-factor authentication (MFA). With passwords alone being simple work for hackers, MFA provides an essential layer of