UK government rings the death knell for SIM farms

November 29, 2023

The UK government plans to introduce new legislation to ban SIM farms, which it views as a widely abused means for carrying out cyber fraud. Upon introduction of the criminal offense, violating it will incur a penalty of an unlimited […]

Crimeware and financial cyberthreats in 2024

November 21, 2023

At Kaspersky, we constantly monitor the financial cyberthreat landscape, which includes threats to financial institutions, such as banks, and financially motivated threats, such as ransomware, that target a broader range of industries. As part of our Kaspersky Security Bulletin, we […]

Google Workspace weaknesses allow plaintext password theft

November 15, 2023

Novel weaknesses in Google Workspace have been exposed by researchers, with exploits potentially leading to ransomware attacks, data exfiltration, and password decryption. Researchers at Bitdefender say the methods could also be used to access Google Cloud Platform (GCP) with custom […]

Network security, Security

Maximizing cybersecurity on a budget

December 4, 2023

Via: Help Net Security

A cybersecurity budget is an allocation of resources, both financial and otherwise, dedicated to protecting an organization’s digital assets from cyber threats. This includes funds for security software, hardware, training, and personnel. A well-structured cybersecurity budget ensures that an organization […]

Cyber-crime, Malware

CyberAv3ngers hit Unitronics PLCs at multiple US-based water facilities

December 4, 2023

Via: Help Net Security

Iran-affiliated attackers CyberAv3ngers continue to exploit vulnerable Unitronics programmable logic controllers (PLCs), US and Israeli authorities have said in a joint cybersecurity advisory. CyberAv3ngers targeting Unitronics PLCs CISA has recently confirmed that Iran-affiliated attackers took over a Unitronics Vision Series […]

Application security, Security

ArmorCode raises $40 million to help companies ship secure software

December 4, 2023

Via: Help Net Security

ArmorCode announced it closed a pre-emptive $40 million Series B round to advance its mission of helping companies ship secure software fast and at scale. Premier venture firm HighlandX led the round, joined by NGP Capital, along with participation from […]

Cyber warfare, Cyber-crime

Today’s ‘China is misbehaving online’ allegations come from Google, Meta

December 1, 2023

Via: The Register

Meta and Google have disclosed what they allege are offensive cyber ops conducted by China. The Social Network™ used its Quarterly Adversarial Threat Report [PDF], published Thursday, to report it booted 4,789 Facebook accounts for violating its policy against coordinated […]

Hacker, Threats & Malware

US readies prison cell for another Russian Trickbot developer

December 1, 2023

Via: The Register

Another member of the Trickbot malware crew now faces a lengthy prison sentence amid US law enforcement’s ongoing search for its leading members. Russian national Vladimir Dunaev, 40, faces a maximum sentence of 35 years in prison for his involvement […]

Threats & Malware, Vulnerabilities

Apple slaps patch on WebKit holes in iPhones and Macs amid fears of active attacks

December 1, 2023

Via: The Register

Apple has issued emergency fixes to plug security flaws in iPhones, iPads, and Macs that may already be under attack. The software updates for iOS, iPadOS, macOS Sonoma, and Safari web browser address two bugs: an out-of-bounds read flaw tracked […]