Five Australians arrested in global raid on phishing kit seller LabHost – Security
The Australian Federal Police (AFP) has arrested five men as part of a global raid on a cyber-criminal gang linked to industrial-scale phishing. The sting…
Month: April 2024
Who owns customer identity? – Help Net Security
When I’m talking with prospective clients, I like to ask: which department owns customer identity? Everyone immediately looks towards a different team. While every team…
92% of enterprises unprepared for AI security challenges
Most industries continue to run almost two or more months behind in patching software vulnerabilities, endpoints remain vulnerable to threats, and most enterprise PCs must…
Bots dominate internet activity, account for nearly half of all traffic
49.6% of all internet traffic came from bots in 2023, a 2% increase over the previous year, and the highest level Imperva has reported since…
SoumniBot malware exploits Android bugs to evade detection
A new Android banking malware named ‘SoumniBot’ is using a less common obfuscation approach by exploiting weaknesses in the Android manifest extraction and parsing procedure. The method enables…
Microsoft-OpenAI deal set to dodge formal EU merger probe – Software
EU antitrust regulators have concluded that Microsoft’s US$13 billion ($20 billion) investment into OpenAI is not an acquisition, sources familiar with the matter said, signalling…
Hackers hijack OpenMetadata apps in Kubernetes cryptomining attacks
In an ongoing Kubernetes cryptomining campaign, attackers target OpenMetadata workloads using critical remote code execution and authentication vulnerabilities. OpenMetadata is an open-source metadata management platform…
Australian Federal Police to ‘transform’ SAP ERP – Software
The Australian Federal Police (AFP) is looking to replace its core enterprise resource planning platform within the next three years. The federal police force uses…
FIN7 targets American automaker’s IT staff in phishing attacks
The financially motivated threat actor FIN7 targeted a large U.S. car maker with spear-phishing emails for employees in the IT department to infect systems with the…
Should you share your location with your partner?
Every relationship has its disagreements. Who takes out the trash and washes the dishes? Who plans the meals and writes out the grocery list? And…
Moldovan charged for operating botnet used to push ransomware
The U.S. Justice Department charged Moldovan national Alexander Lefterov, the owner and operator of a large-scale botnet that infected thousands of computers across the United States.…
Unfazed by Yet Another Critical Firewall Vulnerability (CVE-2024-3400)
In the wake of the recent disclosure of a critical vulnerability (CVE-2024-3400) affecting a leading firewall solution, Xiid Corporation reminds organizations that Xiid SealedTunnel customers…