Dec 19, 2024 | Podcast
https://securitylabs.datadoghq.com/articles/mut-1244-targeting-offensive-actors Over 390,000 WordPress credentials and sensitive data stolen in a large-scale campaign targeting cybersecurity professionals. A sophisticated cyberespionage campaign spanning over a year...
Dec 18, 2024 | Podcast
https://www.dailymail.co.uk/news/article-14165053/How-stolen-phone-ends-Chinas-Silicon-Valley.html A Dark Journey from London Streets to Chinese Markets The theft of mobile phones in major cities like London has become a significant global issue, with stolen devices...
Dec 17, 2024 | Podcast
https://security.googleblog.com/2024/12/announcing-launch-of-vanir-open-source.html Google has released Vanir, a new open-source tool designed to streamline the process of identifying and applying security patches to Android devices. The Problem: The Android ecosystem...
Dec 16, 2024 | Podcast
https://au.pcmag.com/security/107245/this-captcha-test-can-trick-windows-users-into-installing-malware A new phishing scam is targeting unsuspecting users with fake CAPTCHA tests. These malicious tests, disguised as legitimate security measures, are designed to trick...
Dec 13, 2024 | Podcast
https://www.darkreading.com/vulnerabilities-threats/lessons-largest-software-supply-chain-incidents The rapid pace of software development has led to an increased risk of software supply chain attacks. These attacks target vulnerabilities in the development,...
Dec 12, 2024 | Podcast
https://cloud.google.com/blog/topics/threat-intelligence/c2-browser-isolation-environments A new technique discovered by Mandiant demonstrates how cybercriminals are finding innovative ways to circumvent security measures. The technique involves using QR codes to...
Dec 11, 2024 | Podcast
https://www.bleepingcomputer.com/news/security/wpforms-bug-allows-stripe-refunds-on-millions-of-wordpress-sites A critical security vulnerability has been discovered in WPForms, a popular form builder plugin used by over 6 million WordPress websites. The flaw,...
Dec 10, 2024 | Podcast
https://www.cadosecurity.com/blog/meeten-malware-threat A new phishing campaign is targeting individuals working in the Web3 industry, using fake video conferencing apps to deliver malicious software. How the Scam Works: Fake Company Outreach: Threat actors create...
Dec 9, 2024 | Podcast
https://www.vpnmentor.com/news/shiny-nemesis-report A recent cyberattack, believed to be linked to the ShinyHunters group, has exposed the vulnerabilities of misconfigured AWS environments. The attackers exploited exposed AWS credentials to gain unauthorized access to...
Dec 7, 2024 | Podcast
https://www.bleepingcomputer.com/news/security/new-rockstar-2fa-phishing-service-targets-microsoft-365-accounts A new phishing-as-a-service (PhaaS) platform, known as Rockstar 2FA, has emerged, enabling cybercriminals to launch sophisticated phishing attacks targeting...
