Blog
Australia: University of Wollongong Confirms Data Breach, Notifies Authorities
The University of Wollongong has experienced a data breach, with potentially both staff and students affected. The breach has been detected and contained, and investigations are underway to determine the scope of the breach.
GULOADER Adds New Anti-Analysis Tactic to Arsenal
Researchers have identified new techniques employed by the GuLoader malware to enhance its evasion capabilities and make analysis more challenging. The highly evasive shellcode downloader malware was found leveraging Vectored Exception Handler (VEH) capability....
Researchers Unmask Sandman APT’s Hidden Link to China-Based KEYPLUG Backdoor
Tactical and targeting overlaps have been discovered between the enigmatic advanced persistent threat (APT) called Sandman and a China-based threat cluster that's known to use a backdoor known as KEYPLUG. The assessment comes jointly from SentinelOne, PwC, and the...
Lazarus Group Using Log4j Exploits to Deploy Remote Access Trojans
The notorious North Korea-linked threat actor known as the Lazarus Group has been attributed to a new global campaign that involves the opportunistic exploitation of security flaws in Log4j to deploy previously undocumented remote access trojans (RATs) on compromised...
Report: Privilege Elevation Exploits Used in Over 50% Of Insider Attacks
Insider threats, including both malicious attacks and unintentional risks, are on the rise, with privilege escalation exploits being a significant component of unauthorized activity.
CISA and ENISA Signed a Working Arrangement to Enhance Cooperation
The collaboration aims to strengthen cybersecurity, safeguard critical infrastructure, and reinforce the resilience of digital products in the face of increasing cyber threats.
Playbook: Your First 100 Days as a vCISO – 5 Steps to Success
In an increasingly digital world, no organization is spared from cyber threats. Yet, not every organization has the luxury of hiring a full-time, in-house CISO. This gap in cybersecurity leadership is where you, as a vCISO, come in. You are the person who will...
Researcher Discovered a New Lock Screen Bypass Bug for Android 14 and 13
The vulnerability allows threat actors physical access to a device, exposing sensitive data in users' Google accounts. Google has been aware of this issue for at least six months but has not yet addressed it, according to researcher Jose Rodriguez.
Webinar — Psychology of Social Engineering: Decoding the Mind of a Cyber Attacker
In the ever-evolving cybersecurity landscape, one method stands out for its chilling effectiveness – social engineering. But why does it work so well? The answer lies in the intricate dance between the attacker's mind and human psychology. Our upcoming webinar, "Think...
FBI Explains How Companies can Delay SEC Cyber Incident Disclosures
Companies are advised to establish a relationship with their local FBI field office and contact them soon after a cyber incident is discovered to assist with the FBI's review and determine if a disclosure delay is necessary.
FREE GUIDE