Cybersecurity

North Korea's Lazarus Group is one of the biggest criminal groups in the crypto world.

#NorthKorea #Crypto #Blockchain #CyberSecurity #infosec

https://cnews.link/north-koreas-lazarus-group-millions-frozen-3/

Brunswick psychiatric hospital in New York latest ransomware victim⤵️
#ransomware #cybersecurity #infosec

https://cnews.link/brunswick-hospital-psychiatric-center-ransomware/

Apple has asked a federal court in San Francisco to drop its three-year-old case against spyware company NSO, citing worries about disclosing its own sensitive data during discovery. By @9to5mac. #Apple #NSO #Cybersecurity #Tech #Technology #Spyware https://9to5mac.com/2024/09/13/apple-wants-to-revoke-its-three-year-old-lawsuit-against-spyware-group/

Fortinet has confirmed it suffered a data breach after a threat actor released 440 gigabytes of exfiltrated data online.

#Fortinet #DataBreach #DataSecurity #cybersecurity #infosec

https://cnews.link/fortinet-data-breach-threat-actor-3/

The British government announced Thursday it will now classify UK data centers as "critical national infrastructure."

#UK #DataSecurity #cybersecurity #infosec #cyberattack

https://cnews.link/uk-data-centers-critical-national-infrastructure-3/

The UK National Crime Agency announces the arrest of a 17-year-old teenager in connection with the Transport for London cyberattack, still ongoing.

#UK #cybersecurity #infosec #DataSecurity #DataPrivacy

https://cnews.link/teen-arrest-london-transport-cyberattack-customer-data-3/

Mastercard acquires US cybersecurity firm Recorded Future, expanding its footprint into the threat intelligence world.

#US #Mastercard #RecordedFuture #cybersecurity #infosec

https://cnews.link/mastercard-expands-cybersecurity-footprint-with-acquisition-3/

Ireland's Data Protection Commission wants to check if Google complied with the bloc’s rules when developing its PaLM 2 language model.

#Google #AI #EU #Ireland #DataSecurity #CyberSecurity

https://cnews.link/google-ai-model-under-eu-scrutiny-3/

WordPress Plugin and Theme Developers Told They Must Use 2FA.

Read more in my article on the Tripwire blog: https://www.tripwire.com/state-of-security/wordpress-plugin-and-theme-developers-told-they-must-use-2fa

#cybersecurity #supplychain #2fa #wordpress

More than $55 billion was lost over the past decade to business email compromise (BEC) scams.

#FBI #scams #Wyoming #CyberSecurity #infosec

https://cnews.link/email-scam-losses-fbi-8/

👀🤭
#meme #cybersecurity #infosec

Pyongyang cyber warriors often pose as fake IT workers to infiltrate organizations.

#hack #malware #NorthKorea #cybersecurity #infosec

https://cnews.link/north-korean-hackers-target-jobseekers-with-fake-coding-tests-3/

▪ @cybernews@infosec.exchange research ▪ A single overly broad permission can lead to data exposure. Here’s what we found about 50 popular Android apps.

#cybersecurity #datasecurity #infosec #forex #Brazil

https://cnews.link/braza-bank-data-leaked/

Some "fully patched" Windows 10 PCs left exposed for months after Microsoft rolled-back security fixes.

Read more in my article on the Bitdefender blog: https://www.bitdefender.com/blog/hotforsecurity/some-fully-patched-windows-10-pcs-left-exposed-for-months-after-microsoft-rolled-back-security-fixes/

#cybersecurity #microsoft #vulnerability #windows

Several US agencies and regulators will join forces to educate people about the so-called "pig butchering" scams.

#Crypto #scamming #cybersecurity #US #infosec

https://cnews.link/crypto-pig-butchering-scam-3/

“A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system,” CISA warns.

#Microsoft #BigTech #CyberSecurity #infosec #CISA

https://cnews.link/critical-windows-vulnerabilities-exploited-3/

Leaders of the decentralized neo-fascist transnational terrorist group face a maximum penalty of 220 years in prison.

#Telegram #CyberSecurity #infosec #cybercrime #terrorism

https://cnews.link/two-leaders-of-terrorgram-charged-3/

▪️@cybernews Research▪️ AA massive data leak at a Florida-based recruitment company has affected more than ten thousand hospitals and medical workers.

#dataleak #database #US #CyberSecurity

https://cnews.link/mna-healthcare-data-leak-4/

Investors are estimated to have lost at least $5.6 billion to crypto scammers last year, according to the FBI.

#Apple #TimCook #FBI #crypto #cybersecurity

https://cnews.link/fbi-crypto-scams-deepfake-3/

The mysterious Quad7 botnet has evolved its tactics to compromise several brands of Wi-Fi routers and VPN appliances.

#WiFi #VPN #CyberSecurity #DataSecurity #infosec

https://cnews.link/wifi-routers-and-vpn-appliances-targeted-by-quad7-3/

🧪 NEW BETA RELEASES 🧪

📱 iOS 17.7 RC (21H16)
📱 iOS 18 RC (22A3354)
📱 iPadOS 17.7 RC (21H16)
📱 iPadOS 18 RC (22A3354)
💻 macOS 15 RC (24A335)
📺 tvOS 18 RC (22J357)
🥽 visionOS 2 RC (22N320)
⌚ watchOS 11 RC (22R349)
🔨 Xcode 16 RC (16A242)

#apple #cybersecurity #infosec #security #ios

Happy Monday everyone!

On September 3rd the Federal Bureau of Investigation (FBI) released a Public Service Announcement that raises the awareness of some "well-disguised" social engineering attacks. These attacks have been attributed to The Democratic People's Republic of Korea ("DPRK" aka North Korea) and is targeting the #crypto industry.

Some examples of the effort that is put into these types of attacks, especially from a nation state actor, are:

• The group conducts some serious "pre-operational" research of their victims.
• They individualize the fake scenarios by initiating prolonged conversations with their victims to build rapport. It's not just a drive by/hope for the best encounter.
• They impersonate individuals their victims may know or follow, like prominent people associated with certain technologies, possibly an influencer.

And the FBI shares some indicators that you may be at the end of a social engineering attack:

• Requests to execute code or download applications.
• Conduct a "pre-employment" test or debugging exercise.
• Offers of employment from prominent cryptocurrency or tech firms

Well, this one's a little different, but enjoy the article and Happy Hunting!

North Korea Aggressively Targeting Crypto Industry with Well-Disguised Social Engineering Attacks
https://www.ic3.gov/Media/Y2024/PSA240903

Cyborg Security Intel 471 #CyberSecurity #ITSecurity #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting #readoftheday

Behold the magic of the fediverse! In the Flipboard app, you can now follow these cybersecurity experts and journalists from the Mastodon community:

@alex@cybervillains.com @jerry@infosec.exchange
@alyssam_infosec@infosec.exchange
@hacks4pancakes@infosec.exchange
@percepticon@ioc.exchange
@cybernews@infosec.exchange.

In case you missed it, we announced a few weeks ago that accounts from the fediverse are now discoverable and followable on Flipboard. Download the app to check it out:

https://about.flipboard.com/download-flipboard/

#Flipboard #Cybersecurity #Infosec #Fediverse #Federation

"Smashing Security" podcast episode 383: The Godfather club, and AirTags to the rescue.

There’s a whole new dating scam that could mean you end up out of pocket (or beaten up) after a first date with a glamorous admirer, and a woman in Los Alamos uses an Air Tag to entrap a thief.

Plus – don’t miss our featured interview with Maya Levine of Sysdig.

Find it in all good podcast apps, or at https://grahamcluley.com/smashing-security-podcast-383/

#cybersecurity #podcast

Cicada Ransomware - What You Need To Know

https://www.tripwire.com/state-of-security/cicada-ransomware-what-you-need-know

#ransomware #cybersecurity