Cloud Security Concerns Surge in APAC as Data Breaches Remain High

Nov 4, 2024 | Podcast

https://cpl.thalesgroup.com/apac-cloud-security-research A just released study by Thales reveals that cloud security remains a top concern for organizations in the Asia-Pacific (APAC) region, with data breaches continuing to pose significant threats. Key Findings:...

Large-Scale Operation Steals Cloud Credentials from Exposed Git Repositories

Nov 1, 2024 | Podcast

https://sysdig.com/blog/emeraldwhale A large-scale cyber operation named “EmeraldWhale” has compromised thousands of private repositories by exploiting exposed Git configuration files. Hackers used automated tools to scan a massive range of IP addresses...

Your Site Was Hacked, and You Never Knew About It: My Real-Life Encounter with a Supply Chain Attack

Nov 1, 2024 | Articles, Podcast

Just yesterday, I received a LinkedIn message about an interesting job opportunity, complete with a link to the job ad. Before clicking, I took a quick look at the URL to ensure it was legitimate—something we all do in this line of work. The website appeared normal...

Fake Browser Update Malware Targets WordPress Sites via Malicious Plugins

Oct 31, 2024 | Podcast

https://www.bleepingcomputer.com/news/security/over-6-000-wordpress-sites-hacked-to-install-plugins-pushing-infostealers WordPress website owners beware! A new wave of attacks is targeting your sites to install malicious plugins that display fake software updates and...

Mandiant Report: Exploited Vulnerabilities Reach Record Lows in Time to Patch, But Zero-Days on the Rise

Oct 30, 2024 | Podcast

https://cloud.google.com/blog/topics/threat-intelligence/time-to-exploit-trends-2023 A new report by cybersecurity firm Mandiant reveals a concerning trend: attackers are exploiting vulnerabilities faster than ever before, with zero-day attacks (exploits for unknown...

Massive UN Data Leak Exposes Personal Information of Violence Against Women Victims

Oct 29, 2024 | Podcast

https://www.vpnmentor.com/news/report-unwomen-breach A security researcher uncovered a massive data leak from the UN Trust Fund to End Violence against Women, jeopardizing the privacy of victims and staff. The UN Trust Fund’s database was misconfigured and...

AI Transcription Tool “Whisper” Creates Fabricated Text, Raising Concerns in Healthcare and Beyond

Oct 28, 2024 | Podcast

https://apnews.com/article/ai-artificial-intelligence-health-business-90020cdf5fa16c79ca2e5b6c4c9bbb14 Popular AI tool Whisper, lauded for its accuracy, has a major flaw: it invents entire sentences or phrases, raising concerns about its use in healthcare, closed...

Cyber Skills Gap Widens, Nearly 90% of Businesses Link Breaches to Lack of Expertise

Oct 26, 2024 | Podcast

https://www.fortinet.com/content/dam/fortinet/assets/reports/2024-cybersecurity-skills-gap-report.pdf Fortinet’s latest Global Cybersecurity Skills Gap Report paints a concerning picture: the cybersecurity skills gap is widening, and businesses are increasingly...

Half of Businesses Underestimate SaaS Security Risks, Culture Blamed

Oct 25, 2024 | Podcast

The State of SaaS Security Report 2024 A new report by AppOmni reveals a significant gap between perception and reality when it comes to SaaS security in enterprises. Key Findings: Nearly half (49%) of businesses underestimate the security risks associated with SaaS...

Malicious npm Packages Target Developers’ Ethereum Wallets with SSH Backdoor

Oct 24, 2024 | Podcast

https://blog.phylum.io/trojanized-ethers-forks-on-npm-attempting-to-steal-ethereum-private-keys Security researchers at Phylum have uncovered a series of malicious packages targeting Ethereum developers on the npm registry, the world’s most popular software...