Blog
Charming Kiten’s New Backdoor ‘Sponsor’ Targets Brazil, Israel, and U.A.E.
The Iranian threat actor known as Charming Kiten has been linked to a new wave of attacks targeting different entities in Brazil, Israel, and the U.A.E. using a previously undocumented backdoor named Sponsor. Slovak cybersecurity firm is tracking the cluster under the...
Report: 75% of Education Sector Attacks Linked to Compromised Accounts
According to a report by Netwrix, 69% of organizations in the education sector have experienced a cyberattack in the past year. Phishing and user account compromise were the most common attack methods in this sector.
Generative AI, Contactless Tech Make Hotels Vulnerable to Cyberattacks
The transition to mobile and contactless services in the hospitality industry is making hotels more vulnerable to cyber threats, according to a report from Trustwave SpiderLabs.
How to Prevent API Breaches: A Guide to Robust Security
With the growing reliance on web applications and digital platforms, the use of application programming interfaces (APIs) has become increasingly popular. If you aren’t familiar with the term, APIs allow applications to communicate with each other and they play a...
AP Stylebook Breach May Have Hit Hundreds of Journalists
The Associated Press (AP) has warned that users of a popular writing style guide have been hit by phishing attacks after their personal information was compromised in a data breach.
Google Chrome Rolls Out Support for ‘Privacy Sandbox’ to Bid Farewell to Tracking Cookies
Google has officially begun its rollout of Privacy Sandbox in the Chrome web browser to a majority of its users, nearly four months after it announced the plans. "We believe it is vital to both improve privacy and preserve access to information, whether it's news, a...
Microsoft Teams Phishing Attack Pushes DarkGate Malware
The campaign started in late August 2023, when Microsoft Teams phishing messages were seen being sent by two compromised external Office 365 accounts to other organizations.
Report: 74% of Organizations Witnessed Multiple Breaches Due to API Vulnerabilities
According to the API security company Traceable, in collaboration with the Ponemon Institute, 60% of organizations surveyed reported at least one breach within the past two years, with 74% experiencing three or more incidents.
Rise in Tech-Support Scams Abusing Windows Action Center Notifications
These scams now impersonate security providers like McAfee and Avast and use pirated movie streaming websites and social media platforms like X (formerly Twitter) to direct users to fraudulent tech-support pages.
Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows
A new cyber attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2 hashes from compromised Windows systems primarily located in Australia, Poland, and Belgium. The activity has been codenamed Steal-It by...
FREE GUIDE