cybersecurity Archives - Page 11 of 108

DPRK fund malicious cyber activities with ransomware attacks on critical Infrastructure

Issued by: Security Affairs

Ransomware attacks on critical infrastructure conducted by North Korea-linked hacker groups are used by the government of Pyongyang to fund its malicious cyber operations, U.S. and South Korean agencies warn. US CISA published a Cybersecurity Advisory (CSA) to provide information about the threat actors to network defenders. The joint CSA about ongoing ransomware activity against…

Are We Doomed? Not If We Focus on Cyber Resilience

Issued by: DataBreach Today

Here’s how to doom a cybersecurity program: Think of cybersecurity as a war against an attacker that must be fought to the finish, invest in threat tracking technology for threats your organization has no capabilities to defend against, and let the sunk cost effect determine how you spend your security budget. In reality, cybersecurity is…

Malware & Threats

Notorious Finnish Hacker ‘Zeekill’ Busted by French Police

Issued by: DataBreach Today

French police arrested a notorious hacker who’s suspected of forming part of an extortion scheme that targeted a Finnish psychotherapy practice and its patients. Aleksanteri Tomminpoika Kivimäki, 25, is the focus of a European arrest warrant issued last October in Finland. He’s been charged with participating in the hack of Vastaamo Psychotherapy Center. The now-defunct…

Vulnerabilities

How Cybercriminals Are Operationalizing Money Laundering and What to Do About It

Issued by: Dark Reading

It’s almost impossible to pinpoint the amount of money that’s laundered globally, but conservative estimates put it at anywhere from $800 million to $2 trillion, according to the United Nations’ Office on Drug and Crimes — and that’s likely just the tip of the iceberg. It’s a crime that, in turn, fuels some of the…

Malware & Threats

Scores of Redis Servers Infested by Sophisticated Custom-Built Malware

Issued by: Dark Reading

An unknown threat actor has been quietly mining Monero cryptocurrency on open source Redis servers around the world for years, using a custom-made malware variant that is virtually undetectable by agentless and conventional antivirus tools. Since September 2021, the threat actor has compromised at least 1,200 Redis servers — that thousands of mostly smaller organizations…

Malware & Threats

Post-Macro World Sees Rise in Microsoft OneNote Documents Delivering Malware

Issued by: The Hacker News

In a continuing sign that threat actors are adapting well to a post-macro world, it has emerged that the use of Microsoft OneNote documents to deliver malware via phishing attacks is on the rise. Some of the notable malware families that are being distributed using this method include AsyncRAT, RedLine Stealer, Agent Tesla, DOUBLEBACK, Quasar…

Application Security

API management (APIM): What It Is and Where It’s Going

Issued by: Security Affairs

So, where does this leave businesses that want to leverage the power of APIs? For starters, they need to invest in an API security strategy that covers all their bases. A robust strategy will be held up by a number of different tools and methodologies, including API management (APIM). In this article, we’re taking a…

Application Security

CISA to Open Supply Chain Risk Management Office

Issued by: Dark Reading

The US Cybersecurity and Infrastructure Security Agency (CISA) plans to open an office focused on helping the public and private sectors protect their software and IT supply chains. The new office will help organizations implement recently issued CISA policies and guidance related to managing cybersecurity supply chain risk, including issues stemming from malicious functionality, counterfeit…

Application Security, Cloud Security, Software Security

Will Cybersecurity Remain Recession-Proof in 2023?

Issued by: Dark Reading

We’ve recently seen substantial layoffs across the tech sector, to the tune of around 140,000 redundancies made by big names such as Amazon, Salesforce, Microsoft, and Tesla. As the recession bites, falling stock prices and further contraction in the market, together with merger and acquisition activity, are expected to force businesses to reduce head count…