Threat actors stories
Cybermindz launches CISOSupport for mental health of cybersecurity chiefs
Cybermindz.org has unveiled CISOSupport, an innovative initiative aimed at tackling the high rate of job burnout among cybersecurity leaders by providing tailored mental health support.
Why 2024 is the year of scaling security efficiencies
In 2024, cybersecurity leaders grapple with higher data breaches, flat budgets, and increasing complexity by focusing on scaling efficiencies and securing hybrid cloud infrastructure.
Flare uncovers cyber threat landscape by Russian hackers
Cybersecurity firm Flare exposes the escalating threat posed by initial access brokers on Russian hacking forums.
Exposure management: a strategic ally in essential eight cybersecurity resilience
In response to the increasing sophistication of cyber threats, the Australian Signals Directorate has revised its Essential Eight Maturity Model (E8MM), incorporating exposure management to proactively identify and prioritise risks, aiding businesses in effectively defending against cyber attacks.
Kaspersky exposes AI exploitation trend on the dark web
Kaspersky study reveals an alarming increase in criminals discussing the use of AI tools for cyber exploitation on the dark web.
Six trends that will shape Cybersecurity in 2024
Rising use of QR codes and Large Language Models, automation in Managed Service Providers, booming AI spear phishing on the Dark Web, acceleration of AI-based 'vishing', and privacy threats from VR/MR headsets are predicted to shape the cybersecurity realm in 2024.
Data Privacy Day: Watchguard gives warning about 'free' services
On Data Privacy Day, WatchGuard's VP of Identity, Carla Roncato, warns of the less conspicuous costs linked with 'free' services.
Cybersecurity outsourcing underperformance alarms UK financial sector
Alarming underperformance in outsourced cybersecurity suppliers has increases breach risk to the UK's financial sector.
Acronis pioneers Advanced Security & EDR integration in cybersecurity
Acronis leads industry innovation with Integrated Advanced Security and EDR, targeting AI-driven cyberattacks and eliminating added costs.
Australian etailers’ reality check on Account Takeover Threat
Whatever the goal of the attackers, e-tailers must remain one step ahead in detecting and stopping attackers from compromising their APIs.
Less than 1% vulnerabilities pose highest risk in 2023, finds Qualys
Less than 1% of security vulnerabilities created the highest risks to businesses in 2023, with 97 high-risk vulnerabilities exploited undetected, says Qualys Threat Research Unit report.
Guardio Labs exposes critical vulnerability in Opera browser
Guardio Labs uncovers a significant zero-day vulnerability in Opera's browser, threatening its 350 million active users; Opera's 'My-Flow' feature enables act of exploitation.
EnSilica integrates post-quantum cryptography accelerators in eSi-Crypto range
EnSilica, a cybersecurity firm, integrates Post Quantum Cryptography (PQC) accelerators into its hardware range, strengthening encryption against prospective quantum computing threats.
Logpoint launches cloud security solution for SAP BTP
Logpoint's new Business Critical Security solution arms organisations with enhanced cloud security features for the SAP Business Technology Platform.
SentinelLabs exposes FBot malware targeting cloud, payment services
SentinelLabs details FBot, a distinct Python-based malware tool, focused on cloud and payment services. Unlike peers, FBot doesn't use Androxgh0st code.
iboss unveils cybersecurity module to boost government DNS protection
iboss reveals a Government Protective DNS Module seeking to safeguard government agencies from DNS cyber vulnerabilities by leveraging the Cybersecurity and Infrastructure Security Agency's protective DNS service.
Rise in DDoS attacks & API security threats in 2023
Cloudflare's reports highlight the spike in DDoS attacks amid conflict in Palestine and Israel, and the growing security threats posed by 'shadow APIs'.
Shadow IT threatens corporate cybersecurity, new study reveals
The rise in remote working has increased shadow IT usage among employees, leading to 11% of all cyber incidents, according to Kaspersky.
2024 Cybersecurity Forecast highlights new trends & threats
The 2024 Cybersecurity Forecast report by Security and Identity Cloud uncovers future security trends, highlighting the potent role of generative AI in enhancing cybersecurity and impending threats from 'shadow AI'.
Google Cloud launches tool to detect plaintext credentials for free
Google Cloud launches a secret discovery tool aimed at boosting organisation's security by detecting and monitoring plaintext credentials, part of its no-cost Sensitive Data Protection offering.
ESET uncovers malicious Python projects spreading via PyPI
ESET Research has discovered a series of malicious Python projects distributed via PyPI repository, introducing a customised backdoor into Windows, Linux systems, and stealing personal data.
Okta set to acquire Spera Security in enhancement of identity threat detection
Identity security giant, Okta, gears up to acquire 2022-born Spera Security, set to boost its identity threat detection capabilities and enrich its customer base with advanced technology.
Operation Triangulation: Undocumented iPhone hardware feature exposed
Kaspersky's GReAT team has uncovered an undisclosed iPhone hardware feature used in Operation Triangulation attacks.
Surge in ransomware attacks surpasses yearly predictions
Unprecedented surge in global ransomware attacks in 2023 outstrips yearly prediction, according to NCC Group report.