Splunk RCE Vulnerability Let Attackers Upload Malicious File
A high-severity Remote Code Execution (RCE) flaw in Splunk Enterprise has been discovered, enabling an attacker to upload malicious files. Versions of Splunk Enterprise less than…
Month: November 2023
Threat Intelligence with Sandbox Analysis: Security Analyst Guide
Threat intelligence (TI) is critical to organizations’ cybersecurity infrastructure, allowing them to keep track of the evolving threat landscape and ensure timely detection. However, TI…
Popular Dragon Touch Tablet for Kids Infected with Corejava Malware
The Dragon Touch KidzPad Y88X 10 tablet on Amazon, analyzed by EFF researchers, also comes with preinstalled riskware and an outdated parental control app called…
Johnson Controls Patches Critical Vulnerability in Industrial Refrigeration Products
Johnson Controls recently announced patches for a critical vulnerability found by an external researcher in some of its industrial refrigeration products. According to advisories published…
Hackers Exploit Google Workspace to Exfiltrate Data
Recent research into Google Workspace and Google Cloud Platform by Bitdefender Labs reveals novel attack methods, potentially leading to network-wide breaches and raising concerns about…
Former OpenAI boss to lead Microsoft Advanced AI division
Microsoft has hired OpenAI co-founder Sam Altman less than 36 hours after he stepped down as CEO of the ChatGPT creator. Emmett Shear, former Twitch…
Yamaha Motor Confirms Data Breach Following Ransomware Attack
The personal information of employees was stolen in a ransomware attack targeting a Philippines subsidiary of Yamaha Motor. The incident, the Japanese mobility and industrial…
LummaC2 Malware Deploys New Trigonometry-Based Anti-Sandbox Technique
Nov 20, 2023NewsroomMalware / Cyber Attack The stealer malware known as LummaC2 (aka Lumma Stealer) now features a new anti-sandbox technique that leverages the mathematical…
5 Steps to Assessing Risk Profiles of Third-Party SSE Platforms
Shifting the approach to cybersecurity from multi-vendor security tools sprawl to a converged Secure Services Edge (SSE) model with a clear migration path to SASE…
Recognising Scam Patterns and Preventing Data Loss: A Unified Approach
Cybersecurity professionals stand on the frontlines, ever-vigilant against an increasing tide of cyber threats. From protecting sensitive corporate data to safeguarding our personal information, the…
Open Detection System Uncover SIEM Blind Points
Cyberattacks pose a significant risk, and prevention alone isn’t enough, so timely detection is crucial. That’s why most organizations use SIEM (Security Information and Event…
Why Defenders Should Embrace a Hacker Mindset
Today’s security leaders must manage a constantly evolving attack surface and a dynamic threat environment due to interconnected devices, cloud services, IoT technologies, and hybrid…