Introducing AI-guided Remediation for IaC Security / KICS

21/06/2023 0 Comments 0 tags

While the use of Infrastructure as Code (IaC) has gained significant popularity as organizations embrace cloud computing and DevOps practices, the speed and flexibility that IaC provides can also introduce

Researchers Discover New Sophisticated Toolkit Targeting Apple macOS Systems

21/06/2023 0 Comments 0 tags

Cybersecurity researchers have uncovered a set of malicious artifacts that they say is part of a sophisticated toolkit targeting Apple macOS systems. “As of now, these samples are still largely

New Mystic Stealer Malware Targets 40 Web Browsers and 70 Browser Extensions

21/06/2023 0 Comments 0 tags

A new information-stealing malware called Mystic Stealer has been found to steal data from about 40 different web browsers and over 70 web browser extensions. First advertised on April 25, 2023, for

Rogue Android Apps Target Pakistani Individuals in Sophisticated Espionage Campaign

21/06/2023 0 Comments 0 tags

Individuals in the Pakistan region have been targeted using two rogue Android apps available on the Google Play Store as part of a new targeted campaign. Cybersecurity firm Cyfirma attributed

Over 100,000 Stolen ChatGPT Account Credentials Sold on Dark Web Marketplaces

21/06/2023 0 Comments 0 tags

Over 101,100 compromised OpenAI ChatGPT account credentials have found their way on illicit dark web marketplaces between June 2022 and May 2023, with India alone accounting for 12,632 stolen credentials.

ASUS Releases Patches to Fix Critical Security Bugs Impacting Multiple Router Models

21/06/2023 0 Comments 0 tags

Taiwanese company ASUS on Monday released firmware updates to address, among other issues, nine security bugs impacting a wide range of router models. Of the nine security flaws, two are rated Critical

Experts Uncover Year-Long Cyber Attack on IT Firm Utilizing Custom Malware RDStealer

21/06/2023 0 Comments 0 tags

A highly targeted cyber attack against an East Asian IT company involved the deployment of a custom malware written in Golang called RDStealer. “The operation was active for more than a

SaaS in the Real World: How Global Food Chains Can Secure Their Digital Dish

21/06/2023 0 Comments 0 tags

The Quick Serve Restaurant (QSR) industry is built on consistency and shared resources. National chains like McDonald’s and regional ones like Cracker Barrel grow faster by reusing the same business

Zyxel Releases Urgent Security Updates for Critical Vulnerability in NAS Devices

21/06/2023 0 Comments 0 tags

Zyxel has rolled out security updates to address a critical security flaw in its network-attached storage (NAS) devices that could result in the execution of arbitrary commands on affected systems.

Researchers Expose New Severe Flaws in Wago and Schneider Electric OT Products

21/06/2023 0 Comments 0 tags

Three security vulnerabilities have been disclosed in operational technology (OT) products from Wago and Schneider Electric. The flaws, per Forescout, are part of a broader set of shortcomings collectively called OT:ICEFALL, which now comprises a total