Latest Multi-Stage Attack Scenarios with Real-World Examples
Multi-stage cyber attacks, characterized by their complex execution chains, are designed to avoid detection and trick victims into a false sense of security. Knowing how…
Month: November 2024
The Black Friday 2024 Cybersecurity, IT, VPN, & Antivirus Deals
Black Friday 2024 is almost here, and great deals are already live in computer security, software, online courses, system admin services, antivirus, and VPN software.…
Researchers Discover “Bootkitty” – First UEFI Bootkit Targeting Linux Kernels
Nov 27, 2024Ravie LakshmananLinux / Malware Cybersecurity researchers have shed light on what has been described as the first Unified Extensible Firmware Interface (UEFI) bootkit…
Eurocontrol works with Atos to support public cloud move
Atos has overseen the deployment of the first multi-region public cloud for pan-European civil-military aviation organisation Eurocontrol, which will be used to host air traffic…
INTERPOL arrested 1,006 suspects in 19 African countries
Operation Serengeti: INTERPOL arrested 1,006 suspects in 19 African countries Pierluigi Paganini November 27, 2024 Operation Serengeti: INTERPOL arrested 1,006 suspects in 19 African countries…
How Is API Abuse Different from Web Application Attacks by Bots?
API abuse and web application bot attacks are often confused. This is understandable, as both involve automated interactions and are usually executed by bots. Both…
Philippine Entrepreneur Combines Blockchain Innovation with Environmental Conservation through Ora Coin Foundation
Cebu-based entrepreneur Brian Christopher Aguilar has emerged as a notable figure in the cryptocurrency sector, leveraging blockchain technology to support environmental sustainability. As the founder…
Supply Chains Make Insider Threat Defense More Complex
Regular insider threats are bad enough — conventional security tools don’t detect them, they know where it’ll hurt to hit, and management doesn’t suspect them.…
In the cloud, effective IAM should align to zero-trust principles
In today’s digital landscape, the traditional security perimeter has dissolved, making identity the new frontline of defence. As organisations increasingly adopt cloud services and remote…
Hackers Exploiting ProjectSend Authentication Vulnerability In The Wild
Hackers are actively exploiting a critical authentication vulnerability in ProjectSend, a popular open-source file-sharing web application. The vulnerability, now identified as CVE-2024-11680, allows remote, unauthenticated…
INTERPOL Arrests 1,000 and Dismantles Cybercrime Networks Across Africa
Group-IB collaborated with INTERPOL and AFRIPO in a major crackdown on cybercrime in Africa for “Operation Serengeti.” This article provides details of the operation, including…
Zero-Day Attack Exploits Corrupted Files to Evade Advanced Security Tools
Cybersecurity experts at ANY.RUN have uncovered an active zero-day attack campaign that leverages corrupted files to bypass antivirus software, sandbox environments, and even email spam…