Author: shortenage
Learn NIST Inside Out With 21 Hours of Training @ 86% OFF
25 June 2022In cybersecurity, many of the best jobs involve working on government projects. To get a security clearance, you need to prove that you meet NIST standards. Cybersecurity firms are particularly interested in people who understand the RMF, or Risk Management Framework — a U.S. government guideline for taking care of data. The NIST Cybersecurity & […]
Read More
Hackers Exploit Mitel VoIP Zero-Day in Likely Ransomware Attack
24 June 2022A suspected ransomware intrusion against an unnamed target leveraged a Mitel VoIP appliance as an entry point to achieve remote code execution and gain initial access to the environment. The findings come from cybersecurity firm CrowdStrike, which traced the source of the attack to a Linux-based Mitel VoIP device sitting on the network perimeter, while […]
Read More
Hackers Exploit Mitel VoIP Zero-Day Bug to Deploy Ransomware
24 June 2022A suspected ransomware intrusion against an unnamed target leveraged a Mitel VoIP appliance as an entry point to achieve remote code execution and gain initial access to the environment. The findings come from cybersecurity firm CrowdStrike, which traced the source of the attack to a Linux-based Mitel VoIP device sitting on the network perimeter, while […]
Read More
Google Says ISPs Helped Attackers Infect Targeted Smartphones with Hermit Spyware
24 June 2022A week after it emerged that sophisticated mobile spyware dubbed Hermit was used by the government of Kazakhstan within its borders, Google said it has notified Android users of infected devices. Additionally, necessary changes have been implemented in Google Play Protect — Android’s built-in malware defense service — to protect all users, Benoit Sevens and […]
Read More
Multiple Backdoored Python Libraries Caught Stealing AWS Secrets and Keys
24 June 2022Researchers have discovered a number of malicious Python packages in the official third-party software repository that are engineered to exfiltrate AWS credentials and environment variables to a publicly exposed endpoint. The list of packages includes loglib-modules, pyg-modules, pygrata, pygrata-utils, and hkg-sol-utils, according to Sonatype security researcher Ax Sharma. The packages and as well as the […]
Read More
State-Backed Hackers Using Ransomware as a Decoy for Cyber Espionage Attacks
24 June 2022A China-based advanced persistent threat (APT) group is possibly deploying short-lived ransomware families as a decoy to cover up the true operational and tactical objectives behind its campaigns. The activity cluster, attributed to a hacking group dubbed Bronze Starlight by Secureworks, involves the deployment of post-intrusion ransomware such as LockFile, Atom Silo, Rook, Night Sky, […]
Read More
New ‘Quantum’ Builder Lets Attackers Easily Create Malicious Windows Shortcuts
24 June 2022A new malware tool that enables cybercriminal actors to build malicious Windows shortcut (.LNK) files has been spotted for sale on cybercrime forums. Dubbed Quantum Lnk Builder, the software makes it possible to spoof any extension and choose from over 300 icons, not to mention support UAC and Windows SmartScreen bypass as well as “multiple […]
Read More
Log4Shell Still Being Exploited to Hack VMWare Servers to Exfiltrate Sensitive Data
24 June 2022The U.S. Cybersecurity and Infrastructure Security Agency (CISA), along with the Coast Guard Cyber Command (CGCYBER), on Thursday released a joint advisory warning of continued attempts on the part of threat actors to exploit the Log4Shell flaw in VMware Horizon servers to breach target networks. “Since December 2021, multiple threat actor groups have exploited Log4Shell […]
Read More
NSO Confirms Pegasus Spyware Used by at least 5 European Countries
23 June 2022The beleaguered Israeli surveillanceware vendor NSO Group this week admitted to the European Union lawmakers that its Pegasus tool was used by at least five countries in the region. “We’re trying to do the right thing and that’s more than other companies working in the industry,” Chaim Gelfand, the company’s general counsel and chief compliance […]
Read More
Manual vs. SSPM: Research on What Streamlines SaaS Security Detection & Remediation
23 June 2022When it comes to keeping SaaS stacks secure, IT and security teams need to be able to streamline the detection and remediation of misconfigurations in order to best protect their SaaS stack from threats. However, while companies adopt more and more apps, their increase in SaaS security tools and staff has lagged behind, as found […]
Read More