Rhode Island Cyberattack Exposes Personal Data Of Thousands
Rhode Island is tackling with a major cybersecurity breach that has compromised the personal information of thousands of residents. The Rhode Island cyberattack targeted the…
Month: December 2024
A Remote Code Execution Vulnerability in Medical Imaging
A critical Remote Code Execution (RCE) vulnerability has been discovered in a popular open-source biomedical tool used worldwide. This vulnerability, identified as CVE-2024-42845, has raised…
Cyble Sensor Intelligence Report Surge In Vulnerabilities
The latest Sensor Intelligence Report from Cyble, dated December 4–10, 2024, sheds light on a troubling increase in cyber threats, including malware intrusions, phishing scams,…
Ukrainian Minors Recruited for Cyber Ops and Reconnaissance in Russian Airstrikes
Dec 16, 2024Ravie LakshmananCyber Attack / Cyber Espionage The Security Service of Ukraine (SBU or SSU) has exposed a novel espionage campaign suspected to be…
Authorities Use Novispy Spyware & Cellebrite Forensic Tools to Hack Journalists
Serbian police and intelligence services have been reported to use advanced phone spyware in conjunction with mobile forensic tools to conduct unlawful surveillance on journalists,…
How Man-in-the-Middle Attacks Can Be Thwarted
Man-in-the-middle (MITM) attacks are a significant cybersecurity threat, where an attacker intercepts and potentially alters communication between two parties without their knowledge. These attacks are…
Security Risks Of Exposed Human Machine Interfaces In WWS
The Cybersecurity and Infrastructure Security Agency (CISA) and the Environmental Protection Agency (EPA) have jointly released a crucial fact sheet highlighting the cybersecurity risks posed…
Hackers Exploiting Google Search Ads to Launch Malvertising Campaigns
Threat researchers have identified a persistent series of malvertising campaigns targeting graphic design professionals, using Google Search ads as a vector. This campaign, active since…
With DORA approaching, financial institutions must strengthen their cyber resilience
The clock is ticking for financial institutions across the EU as the January 17, 2025, deadline for the Digital Operational Resilience Act (DORA) approaches. This…
How companies can address bias and privacy challenges in AI models
In this Help Net Security interview, Emre Kazim, Co-CEO of Holistic AI, discusses the need for companies to integrate responsible AI practices into their business…
Trapster Community: Open-source, low-interaction honeypot
Trapster Community is an open-source, lightweight, low-interaction honeypot designed for deployment within internal networks. It enhances network security by creating a deceptive layer that monitors…
Malicious ad distributes SocGholish malware to Kaiser Permanente employees
On December 15, we detected a malicious campaign targeting Kaiser Permanente employees via Google Search Ads. The fraudulent ad masquerades as the health care company’s…