APT41 Hackers Use ShadowPad, Cobalt Strike in Taiwanese Institute Cyber Attack https://firewall.firm.in/wp-content/uploads/2024/08/china.jpg Aug 02, 2024Ravie LakshmananCyber Espionage / Malware A Taiwanese government-affiliated research institute that specializes in computing and associated technologies was breached by nation-state threat actors with ties to China, according to new findings from Cisco Talos. The unnamed organization was targeted as early as mid-July 2023 to deliver ...

Over 1 Million Domains at Risk of ‘Sitting Ducks’ Domain Hijacking Technique https://firewall.firm.in/wp-content/uploads/2024/08/domain.png Aug 01, 2024Ravie LakshmananVulnerability / Threat Intelligence Over a million domains are susceptible to takeover by malicious actors by means of what has been called a Sitting Ducks attack. The powerful attack vector, which exploits weaknesses in the domain name system (DNS), is being exploited by over ...

DigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation Oversight https://firewall.firm.in/wp-content/uploads/2024/07/ssl.png Jul 31, 2024Ravie LakshmananWeb Security / Compliance Certificate authority (CA) DigiCert has warned that it will be revoking a subset of SSL/TLS certificates within 24 hours due to an oversight with how it verified if a digital certificate is issued to the rightful owner of a domain. The ...

Cybercriminals Target Polish Businesses with Agent Tesla and Formbook Malware https://firewall.firm.in/wp-content/uploads/2024/07/malware.png Jul 30, 2024Ravie LakshmananMalware / Cyber Threat Cybersecurity researchers have detailed widespread phishing campaigns targeting small and medium-sized businesses (SMBs) in Poland during May 2024 that led to the deployment of several malware families like Agent Tesla, Formbook, and Remcos RAT. Some of the other regions targeted by the ...

French Authorities Launch Operation to Remove PlugX Malware from Infected Systems https://firewall.firm.in/wp-content/uploads/2024/07/france.png Jul 27, 2024NewsroomMalware / Cyber Intelligence French judicial authorities, in collaboration with Europol, have launched a so-called “disinfection operation” to rid compromised hosts of a known malware called PlugX. The Paris Prosecutor’s Office, Parquet de Paris, said the initiative was launched on July 18 and that it’s expected ...

Bharath Data Protection Officer program launched at Rashtriya Raksha University Puducherry – ET CISO https://etimg.etb2bimg.com/thumb/msid-111841713,imgsize-33986,width-1200,height=765,overlay-etciso/ot-security/bharath-data-protection-officer-program-launched-at-rashtriya-raksha-university-puducherry.jpg Puducherry Speaker Embalam Selvam during the launch of Bharath Data Protection Officer Certificate and Training Program at Rashtriya Raksha University Puducherry campus The Bharath Data Protection Officer (DPO) training and certification program has been inaugurated by the Speaker of Puducherry, Embalam Selvam, at the Rashtriya ...

Alert: HotPage Adware Disguised as Ad Blocker Installs Malicious Kernel Driver https://firewall.firm.in/wp-content/uploads/2024/07/shell.png Jul 18, 2024NewsroomMalware / Windows Security Cybersecurity researchers have shed light on an adware module that purports to block ads and malicious websites, while stealthily offloading a kernel driver component that grants attackers the ability to run arbitrary code with elevated permissions on Windows hosts. The malware, dubbed ...

Threat Prevention & Detection in SaaS Environments – 101 https://firewall.firm.in/wp-content/uploads/2024/07/adaptive.png Identity-based threats on SaaS applications are a growing concern among security professionals, although few have the capabilities to detect and respond to them. According to the US Cybersecurity and Infrastructure Security Agency (CISA), 90% of all cyberattacks begin with phishing, an identity-based threat. Throw in attacks that use stolen credentials, ...

AT&T Confirms Data Breach Affecting Nearly All Wireless Customers https://firewall.firm.in/wp-content/uploads/2024/07/att.png American telecom service provider AT&T has confirmed that threat actors managed to access data belonging to “nearly all” of its wireless customers as well as customers of mobile virtual network operators (MVNOs) using AT&T’s wireless network. “Threat actors unlawfully accessed an AT&T workspace on a third-party cloud platform and, between ...

Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool https://firewall.firm.in/wp-content/uploads/2024/07/palo.png Jul 11, 2024NewsroomVulnerability / Enterprise Security Palo Alto Networks has released security updates to address five security flaws impacting its products, including a critical bug that could lead to an authentication bypass. Cataloged as CVE-2024-5910 (CVSS score: 9.3), the vulnerability has been described as a case of missing authentication ...