APT28 Targets Diplomats with HeadLace Malware via Car Sale Phishing Lure https://firewall.firm.in/wp-content/uploads/2024/08/malware (2).jpg Aug 02, 2024Ravie LakshmananCyber Espionage / Malware A Russia-linked threat actor has been linked to a new campaign that employed a car for sale as a phishing lure to deliver a modular Windows backdoor called HeadLace. “The campaign likely targeted diplomats and began as early as March ...

Ransomware attack forces hundreds of small Indian banks offline, ET CISO Representative image A ransomware attack on a technology service provider has forced payment systems across nearly 300 small Indian local banks to shut down temporarily, two sources directly aware of the matter said. The attack affected C-Edge Technologies, a provider of banking technology systems to small banks across the ...

APT41 Hackers Use ShadowPad, Cobalt Strike in Taiwanese Institute Cyber Attack https://firewall.firm.in/wp-content/uploads/2024/08/china.jpg Aug 02, 2024Ravie LakshmananCyber Espionage / Malware A Taiwanese government-affiliated research institute that specializes in computing and associated technologies was breached by nation-state threat actors with ties to China, according to new findings from Cisco Talos. The unnamed organization was targeted as early as mid-July 2023 to deliver ...

India sees 11% rise in malware attacks, 22% jump in ransomware: Report, ET CISO Malware attacks in India rose by 11 per cent while ransomware cyber attacks jumped by 22 per cent in 2024, reflecting the escalating nature of cyber threats for businesses, a report by SonicWall said. Malware attacks rose by 11 per cent to 13,44,566 in 2024 from ...

Over 1 Million Domains at Risk of ‘Sitting Ducks’ Domain Hijacking Technique https://firewall.firm.in/wp-content/uploads/2024/08/domain.png Aug 01, 2024Ravie LakshmananVulnerability / Threat Intelligence Over a million domains are susceptible to takeover by malicious actors by means of what has been called a Sitting Ducks attack. The powerful attack vector, which exploits weaknesses in the domain name system (DNS), is being exploited by over ...

Crowdstrike Microsoft disaster could have been avoided, IT Security News, ET CISO A faulty configuration update for MS Windows was the reason behind one of the world’s most extensive technology disruptions ever. The outage on July 19, 2024 was triggered by an error during a CrowdStrike software update. This caused a system collapse, which resulted in the ‘blue screen of ...

DigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation Oversight https://firewall.firm.in/wp-content/uploads/2024/07/ssl.png Jul 31, 2024Ravie LakshmananWeb Security / Compliance Certificate authority (CA) DigiCert has warned that it will be revoking a subset of SSL/TLS certificates within 24 hours due to an oversight with how it verified if a digital certificate is issued to the rightful owner of a domain. The ...

Microsoft outage: Govt asks companies to block these 25 ‘dangerous URLs’ – ET CISO https://etimg.etb2bimg.com/thumb/msid-112155949,imgsize-50308,width-1200,height=765,overlay-etciso/ot-security/microsoft-outage-govt-asks-companies-to-block-these-25-dangerous-urls.jpg Earlier this month several businesses across the world came to a standstill, thanks to a flawed security update that the US-based cybersecurity company CrowdStrike pushed for Microsoft Windows machines. The defective software update pushed by CrowdStrike to its customers disrupted airlines, banks, hospitals and other ...

Is GenAI a CISO’s worst nightmare or a dream come true?, IT Security News, ET CISO Neelesh Kripalani, Chief Technology Officer, Clover Infotech According to Gartner, by 2027, Generative AI (GenAI) will contribute to a 30% reduction in false positive rates for application security testing and threat detection by refining results from other techniques to categorize benign from malicious events. ...

Cybercriminals Target Polish Businesses with Agent Tesla and Formbook Malware https://firewall.firm.in/wp-content/uploads/2024/07/malware.png Jul 30, 2024Ravie LakshmananMalware / Cyber Threat Cybersecurity researchers have detailed widespread phishing campaigns targeting small and medium-sized businesses (SMBs) in Poland during May 2024 that led to the deployment of several malware families like Agent Tesla, Formbook, and Remcos RAT. Some of the other regions targeted by the ...