Expert Tips on How to Spot a Phishing Link
Phishing attacks are becoming more advanced and harder to detect, but there are still telltale signs that can help you spot them before it’s too late. See these key indicators that security experts use to…
data breach
data breach
A Solution to SOAR’s Unfulfilled Promises
Security Orchestration, Automation, and Response (SOAR) was introduced with the promise of revolutionizing Security Operations Centers (SOCs) through automation, reducing manual workloads and enhancing efficiency. However, despite three generations of technology and 10 years of…
ChatGPT macOS Flaw Could’ve Enabled Long-Term Spyware via Memory Function
Sep 25, 2024Ravie LakshmananArtificial Intelligence / Vulnerability A now-patched security vulnerability in OpenAI’s ChatGPT app for macOS could have made it possible for attackers to plant long-term persistent spyware into the artificial intelligence (AI) tool’s…
Transportation Companies Hit by Cyberattacks Using Lumma Stealer and NetSupport Malware
Sep 25, 2024Ravie LakshmananEmail Security / Threat Intelligence Transportation and logistics companies in North America are the target of a new phishing campaign that delivers a variety of information stealers and remote access trojans (RATs).…
CISA Flags Critical Ivanti vTM Vulnerability Amid Active Exploitation Concerns
Sep 25, 2024Ravie LakshmananVulnerability / Cyber Attack The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw impacting Ivanti Virtual Traffic Manager (vTM) to its Known Exploited Vulnerabilities (KEV) catalog,…
Necro Android Malware Found in Popular Camera and Browser Apps on Play Store
Sep 24, 2024Ravie LakshmananMobile Security / Malware Altered versions of legitimate Android apps associated with Spotify, WhatsApp, and Minecraft have been used to deliver a new version of a known malware loader called Necro. Kaspersky…
U.S. Proposes Ban on Connected Vehicles Using Chinese and Russian Tech
Sep 24, 2024Ravie LakshmananNational Security / Regulatory Compliance The U.S. Department of Commerce (DoC) said it’s proposing a ban on the import or sale of connected vehicles that integrate software and hardware made by foreign…
Discover Latest Ransomware Tactics and Zero Trust Strategies in This Expert Webinar
Sep 24, 2024The Hacker NewsWebinar / Cybersecurity Ransomware is no longer just a threat; it’s an entire industry. Cybercriminals are growing more sophisticated, and their tactics are evolving rapidly. This persistent danger is a major…
Kaspersky Exits U.S., Automatically Replaces Software With UltraAV, Raising Concerns
Sep 24, 2024Ravie LakshmananAntivirus / National Security Antivirus vendor Kaspersky has formally begun pulling back its offerings in the U.S., migrating existing users to UltraAV, effective September 19, 2024, ahead of its formal exit at…
The SSPM Justification Kit
SaaS applications contain a wealth of sensitive data and are central to business operations. Despite this, far too many organizations rely on half measures and hope their SaaS stack will remain secure. Unfortunately, this approach…