December 20, 2022 The operators of the Glupteba botnet resurfaced in June 2022 as part of a renewed and “upscaled” campaign, months after Google disrupted the malicious activity. The ongoing attack is suggestive of the malware’s resilience in the face of takedowns, cybersecurity company Nozomi Networks said in a write-up. “In addition, there was a …

Glupteba Botnet Continues to Thrive Despite Google’s Attempts to Disrupt It Read More »

December 20, 2022 Threat actors continue to adapt to the latest technologies, practices, and even data privacy laws—and it’s up to organizations to stay one step ahead by implementing strong cybersecurity measures and programs.  Here’s a look at how cybercrime will evolve in 2023 and what you can do to secure and protect your organization …

Cybercrime (and Security) Predictions for 2023 Read More »

December 20, 2022 A Rust variant of a ransomware strain known as Agenda has been observed in the wild, making it the latest malware to adopt the cross-platform programming language after BlackCat, Hive, Luna, and RansomExx. Agenda, attributed to an operator named Qilin, is a ransomware-as-a-service (RaaS) group that has been linked to a spate of attacks primarily …

New Agenda Ransomware Variant, Written in Rust, Aiming at Critical Infrastructure Read More »

December 20, 2022 Meta Platforms disclosed that it took down no less than 200 covert influence operations since 2017 spanning roughly 70 countries across 42 languages. The social media conglomerate also took steps to disable accounts and block infrastructure operated by spyware vendors, including in China, Russia, Israel, the U.S. and India, that targeted individuals …

Facebook Cracks Down on Spyware Vendors from U.S., China, Russia, Israel, and India Read More »

December 19, 2022 Google on Friday announced that its client-side encryption for Gmail is in beta for Workspace and education customers as part of its efforts to secure emails sent using the web version of the platform. This development comes at a time when concerns about online privacy and data security are at an all-time …

Google Takes Gmail Security to the Next Level with Client-Side Encryption Read More »

December 18, 2022 Samba has released software updates to remediate multiple vulnerabilities that, if successfully exploited, could allow an attacker to take control of affected systems. The high-severity flaws, tracked as CVE-2022-38023, CVE-2022-37966, CVE-2022-37967, and CVE-2022-45141, have been patched in versions 4.17.4, 4.16.8 and 4.15.13 released on December 15, 2022. Samba is an open source Windows Article posted …

Samba Issues Security Updates to Patch Multiple High-Severity Vulnerabilities Read More »

December 17, 2022 Government entities in Ukraine have been breached as part of a new campaign that leveraged trojanized versions of Windows 10 installer files to conduct post-exploitation activities. Mandiant, which discovered the supply chain attack around mid-July 2022, said the malicious ISO files were distributed via Ukrainian- and Russian-language Torrent websites. It’s tracking the …

Trojanized Windows 10 Installer Used in Cyberattacks Against Ukrainian Government Entities Read More »

December 17, 2022 A former Twitter employee who was found guilty of spying on behalf of Saudi Arabia by sharing data pertaining to specific individuals has been sentenced to three-and-a-half years in prison. Ahmad Abouammo, 45, was convicted earlier this August on various criminal counts, including money laundering, fraud, falsifying records, and being an illegal agent of …

Ex-Twitter employee Gets 3.5 Years Jail for Spying on Behalf of Saudi Arabia Read More »

December 17, 2022 Reality has a way of asserting itself, irrespective of any personal or commercial choices we make, good or bad. For example, just recently, the city services of Antwerp in Belgium were the victim of a highly disruptive cyberattack.  As usual, everyone cried “foul play” and suggested that proper cybersecurity measures should have …

Cyber Security Is Not a Losing Game – If You Start Right Now Read More »

December 17, 2022 GitHub on Thursday said it is making available its secret scanning service to all public repositories on the code hosting platform for free. “Secret scanning alerts notify you directly about leaked secrets in your code,” the company said, adding it’s expected to complete the rollout by the end of January 2023.  Secret scanning …

GitHub Announces Free Secret Scanning for All Public Repositories Read More »