Why is .US Being Used to Phish So Many of Us? – Krebs on Security
Domain names ending in “.US” — the top-level domain for the United States — are among the most prevalent in phishing scams, new research shows.…
Month: September 2023
Unraveling EternalBlue: inside the WannaCry’s enabler
Unraveling EternalBlue: inside the WannaCry’s enabler Pierluigi Paganini September 01, 2023 WannaCry and NotPetya, probably two most damaging cyberattacks in recent history, were both only…
Police Scotland five-year digital strategy approved
The Scottish Police Authority (SPA) has approved a five-year digital strategy for Police Scotland that seeks to shift the force from “doing digital” to “being…
Researchers released a free decryptor for Key Group ransomware
Researchers released a free decryptor for the Key Group ransomware Pierluigi Paganini September 01, 2023 Researchers released a free decryptor for the Key Group ransomware…
A Conversation with OmniIndex’s James Stanbridge on DE&I in Tech Recruitment- IT Security Guru
We know that the cybersecurity industry has a skills gap and talent shortage. We also know that hiring from a larger, more diverse talent pool…
IT experts issue new warnings over Online Safety Bill plans to weaken end-to-end encryption
Plans by the government in the Online Safety Bill to require tech companies to scan encrypted messages will damage the UK’s reputation for data security,…
Live Hacking Event Invitations – 2022 Guide
Hello Hackers, Live Hacking Events are an experience like no other: hackers collaborate and connect with security teams, each other and HackerOne. 2022 is our…
Threat Actors Adopt, Modify Open Source ‘SapphireStealer’ Information Stealer
Multiple threat actors have adopted ‘SapphireStealer’ after the information stealer’s source code was published on GitHub, Cisco’s Talos security researchers report. Written in .NET, the…
Golf gear giant Callaway data breach exposes info of 1.1 million
Topgolf Callaway (Callaway) suffered a data breach at the start of August, which exposed the sensitive personal and account data of more than a million…
Elon Musk Says X, Formerly Twitter, Will Have Voice and Video Calls, Updates Privacy Policy
Elon Musk said Thursday that his social network X, formerly known as Twitter, will give users the ability to make voice and video calls on…
Labyrinth Chollima behind PyPI supply chain attacks
North Korea-linked APT Labyrinth Chollima behind PyPI supply chain attacks Pierluigi Paganini September 01, 2023 ReversingLabs researchers linked the VMConnect campaign to the North Korea-linked…
Junos OS Flaw Allows a Attacker to Launch DoS Attack
Junos OS and Junos OS Evolved have been found to be vulnerable to a DoS (Denial of Service) condition, which an unauthenticated, network-based attacker can…