CISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities List https://firewall.firm.in/wp-content/uploads/2024/12/cisa.jpg Dec 20, 2024Ravie LakshmananCISA / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) products to the Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The ...
Read More »Author Archives: firewallfirmadmin
Inter-state cyber fraud gang busted through Colonel’s stolen iPhone in Lucknow – ET CISO
Inter-state cyber fraud gang busted through Colonel’s stolen iPhone in Lucknow – ET CISO https://etimg.etb2bimg.com/thumb/msid-116490759,imgsize-648772,width-1200,height=765,overlay-etciso/cybercrime-fraud/inter-state-cyber-fraud-gang-busted-through-colonels-stolen-iphone-in-lucknow.jpg The theft of an iPhone belonging to Colonel Santosh Kumar Mishra has led to the unearthing of a sophisticated inter-state cyber fraud gang, specialising in stealing mobile phones and using them to execute financial crimes. The gang was busted through the joint efforts of the ...
Read More »Sophos Issues Hotfixes for Critical Firewall Flaws: Update to Prevent Exploitation
Sophos Issues Hotfixes for Critical Firewall Flaws: Update to Prevent Exploitation https://firewall.firm.in/wp-content/uploads/2024/12/firewall.png Dec 20, 2024Ravie LakshmananFirewall Security / Vulnerability Sophos has released hotfixes to address three security flaws in Sophos Firewall products that could be exploited to achieve remote code execution and allow privileged system access under certain conditions. Of the three, two are rated Critical in severity. There is ...
Read More »How safe is your data? About 85% of DDoS attacks in India on financial sector – ET CISO
How safe is your data? About 85% of DDoS attacks in India on financial sector – ET CISO https://etimg.etb2bimg.com/thumb/msid-116525644,imgsize-173768,width-1200,height=765,overlay-etciso/cybercrime-fraud/how-safe-is-your-data-about-85-of-ddos-attacks-in-india-on-financial-sector.jpg The number of distributed denial-of-service (DDoS) attacks on Indian infrastructure has increased by 50% since the beginning of 2024.Overall, 85% of the DDoS attacks in Indian cyberspace target the financial sector, while the remaining 15% target government agencies. For example, the ...
Read More »LockBit Developer Rostislav Panev Charged for Billions in Global Ransomware Damages
LockBit Developer Rostislav Panev Charged for Billions in Global Ransomware Damages https://firewall.firm.in/wp-content/uploads/2024/12/ransomware.png A dual Russian and Israeli national has been charged in the United States for allegedly being the developer of the now-defunct LockBit ransomware-as-a-service (RaaS) operation since its inception in or around 2019 through at least February 2024. Rostislav Panev, 51, was arrested in Israel earlier this August and ...
Read More »India STEM foundation empowers future tech leaders with gamified cybersecurity learning by CrowdStrike – ET CISO
India STEM foundation empowers future tech leaders with gamified cybersecurity learning by CrowdStrike – ET CISO https://etimg.etb2bimg.com/thumb/msid-116526126,imgsize-38550,width-1200,height=765,overlay-etciso/cybercrime-fraud/india-stem-foundation-empowers-future-tech-leaders-with-gamified-cybersecurity-learning-by-crowdstrike.jpg India STEM Foundation (ISF) hosted a cybersecurity education program in partnership with CrowdStrike, a global leader in cybersecurity, on December 10. As part of its Anushikshan skill development initiative, ISF held the event at CrowdStrike’s corporate office in Kharadi, Pune, where more than ...
Read More »The critical role of cybersecurity in future-proofing businesses, ET CISO
The critical role of cybersecurity in future-proofing businesses, ET CISO A decade ago, artificial intelligence (AI) technologies were not spoken about as rampantly as they are today. In the 21st Century, AI tech has become critical for business leaders, who are keen on exploring the wide range of benefits and prospects that it can bring to the table. From automating ...
Read More »Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack
Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attack https://firewall.firm.in/wp-content/uploads/2024/12/code.png Dec 20, 2024Ravie LakshmananMalware / Supply Chain Attack The developers of Rspack have revealed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a software supply chain attack that allowed a malicious actor to publish malicious versions to the official package registry with cryptocurrency ...
Read More »Software engineer duped of ₹1.35L by online fraudsters – ET CISO
Software engineer duped of ₹1.35L by online fraudsters – ET CISO https://etimg.etb2bimg.com/thumb/msid-116490846,imgsize-29576,width-1200,height=765,overlay-etciso/cybercrime-fraud/software-engineer-duped-of-1-35l-by-online-fraudsters.jpg In a shocking case of cyber fraud, an Indore-based software engineer was held under ‘digital arrest’ for three days by cybercriminals posing as officials who duped him of Rs 1.35 lakh. The scammers coerced the victim into transferring money through threats and fake accusations, keeping him under constant ...
Read More »Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware
Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware https://firewall.firm.in/wp-content/uploads/2024/12/chrome.png The Lazarus Group, an infamous threat actor linked to the Democratic People’s Republic of Korea (DPRK), has been observed leveraging a “complex infection chain” targeting at least two employees belonging to an unnamed nuclear-related organization within the span of one month in January 2024. The attacks, which culminated in the ...
Read More »