Hackers Created Rogue VMs to Evade Detection in Recent MITRE Cyber Attack https://firewall.firm.in/wp-content/uploads/2024/05/server.png May 24, 2024NewsroomEndpoint Security / Threat Intelligence The MITRE Corporation has revealed that the cyber attack targeting the not-for-profit company towards late December 2023 by exploiting zero-day flaws in Ivanti Connect Secure (ICS) involved the actor creating rogue virtual machines (VMs) within its VMware environment. “The adversary ...

Global cybercrime cost increased 12x faster than spending – ET CISO https://etimg.etb2bimg.com/thumb/msid-110278718,imgsize-29578,width-1200,height=765,overlay-etciso/cybercrime-fraud/global-cybercrime-cost-increased-12x-faster-than-spending.jpg The annual spending on cybersecurity is to hit $183 billion this year. As organizations continue to spend billions of dollars on cybersecurity each year to prevent their businesses from losing sensitive data and important figures, a new report on Monday revealed that the global cybercrime cost has increased ...

Researchers Warn of Chinese-Aligned Hackers Targeting South China Sea Countries https://firewall.firm.in/wp-content/uploads/2024/05/china.png Cybersecurity researchers have disclosed details of a previously undocumented threat group called Unfading Sea Haze that’s believed to have been active since 2018. The intrusion singled out high-level organizations in South China Sea countries, particularly military and government targets, Bitdefender said in a report shared with The Hacker News. ...

Foxit PDF Reader Flaw Exploited by Hackers to Deliver Diverse Malware Arsenal https://firewall.firm.in/wp-content/uploads/2024/05/pdf.png Multiple threat actors are weaponizing a design flaw in Foxit PDF Reader to deliver a variety of malware such as Agent Tesla, AsyncRAT, DCRat, NanoCore RAT, NjRAT, Pony, Remcos RAT, and XWorm. “This exploit triggers security warnings that could deceive unsuspecting users into executing harmful commands,” Check ...

Cybersecurity, data security are imperative in the era of AI, ML – ET CISO https://etimg.etb2bimg.com/thumb/msid-110263861,imgsize-138896,width-1200,height=765,overlay-etciso/ciso-strategies/cybersecurity-data-security-are-imperative-in-the-era-of-ai-ml.jpg Neeraj Kaushik, Principal Consultant, Infosys McCamish, USA In the interconnected digital landscape of today, where the boundaries between physical and virtual worlds have blurred, the significance of cybersecurity and data security cannot be overstated. As organizations increasingly embrace AI and machine learning technologies to streamline ...

Chinese Nationals Arrested for Laundering $73 Million in Pig Butchering Crypto Scam https://firewall.firm.in/wp-content/uploads/2024/05/pig.png The U.S. Department of Justice (DoJ) has charged two arrested Chinese nationals for allegedly orchestrating a pig butchering scam that laundered at least $73 million from victims through shell companies. The individuals, Daren Li, 41, and Yicheng Zhang, 38, were arrested in Atlanta and Los Angeles on ...

US SEC updates customer data hacking rules for Wall Street – ET CISO https://etimg.etb2bimg.com/thumb/msid-110196446,imgsize-42686,width-1200,height=765,overlay-etciso/ot-security/us-sec-updates-customer-data-hacking-rules-for-wall-street.jpg Wall Street’s top regulator on Thursday said it had updated rules to ensure investment companies and others work to detect and respond to hackers’ theft of customer data. The changes, approved unanimously by the five-member U.S. Securities and Exchange Commission, apply to rules first adopted in ...

New Wi-Fi Vulnerability Enables Network Eavesdropping via Downgrade Attacks https://firewall.firm.in/wp-content/uploads/2024/05/wifi.png May 16, 2024NewsroomVulnerability / Network Security Researchers have discovered a new security vulnerability stemming from a design flaw in the IEEE 802.11 Wi-Fi standard that tricks victims into connecting to a less secure wireless network and eavesdrop on their network traffic. The SSID Confusion attack, tracked as CVE-2023-52424, impacts all ...

National Technology Day: Cybersecurity leaders reflect on innovations for a safer tomorrow – ET CISO https://etimg.etb2bimg.com/thumb/msid-110028384,imgsize-23236,width-1200,height=765,overlay-etciso/ciso-strategies/cybersecurity-leaders-reflect-on-innovations-for-a-safer-tomorrow.jpg As National Technology Day dawns, the cybersecurity community stands at the forefront of innovation and protection in our increasingly digital world. This occasion prompts reflection not only on past achievements but also on the insights and wisdom shared by cybersecurity leaders. Praveen Kumar, CISO, ...

VMware Patches Severe Security Flaws in Workstation and Fusion Products [og_img] Multiple security flaws have been disclosed in VMware Workstation and Fusion products that could be exploited by threat actors to access sensitive information, trigger a denial-of-service (DoS) condition, and execute code under certain circumstances. The four vulnerabilities impact Workstation versions 17.x and Fusion versions 13.x, with fixes available in version 17.5.2 and