Security news that informs and inspires

SEARCH

All Articles

Browse by Category:
Duo Labs Industry Events Industry News passwords Product & Engineering
Browse by Tag:
Government Podcast Privacy Microsoft Malware Ransomware Vulnerability Data Breaches Google Encryption Apple Phishing 2fa Hardware Iot Security Apt Android Ciso Supply Chain Cybercrime Cloud Solarwinds Hacker Movies Internet Black Hat Facebook Labs Research Botnet Cisa Linux Patching Government Agencies Vulnerabilities Log4j Windows Patch Vpn Software Security Apache Open Source Legislation Bug Bounty Networking Gdpr Critical Infrastructure Security Mobile Mozilla Magecart Disinformation Vmware
2327 articles:

Police Arrest OPERA1ER Cybercrime Group Suspect

Operation Nervone shows how international and private-public sector collaboration is essential in identifying and arresting cybercriminals.

Interpol, Cybercrime

Iranian Charming Kitten Group Evolves Tools and Tactics

The Charming Kitten attack group is using new tools and tactics in recent operations, including a new macOS backdoor called NokNok.

Iran

StackRot Flaw Bug Fixed in Linux Kernel

A new bug in the Linux kernel (CVE-2023-3269) known as StackRot has been fixed in versions 6.1-6.4.

Linux

Medtronic Fixes Critical Flaw in Cardiac Device Data System

The critical flaw is exploitable remotely and has a low attack complexity, warns CISA.

Medical Devices

New Variant of Rustbucket macOS Malware Found

A new, previously undetected, version of the Rustbucket macOS malware has been discovered in an intrusion by a known North Korean APT group.

North Korea, Cryptocurrency

Decipher Podcast: Source Code 6/30

Welcome back to Source Code, Decipher's weekly news wrap podcast with input from our sources.

Source Code, Podcast

OpenTitan Chips Are on the Horizon

The OpenTitan project, backed by Google, is nearing the release of its first secure root-of-trust chips.

Hardware, Google

CISA Sounds Alarm on Critical Infrastructure Devices Vulnerable to Ransomware

As part of its Ransomware Vulnerability Warning Pilot program, CISA has notified more than 100 organizations that they are running internet-exposed devices with flaws that are frequently targeted by ransomware actors, including 26 alerts related to the MOVEit Transfer flaw.

CISA, Ransomware

New Lazarus Group Malware Found in Log4j Attacks

EarlyRAT serves as another example of the Lazarus Group APT’s ability to quickly build new malware to target organizations worldwide.

Lazarus Group

Conti and Trickbot Crypters Bring Clarity to Complex Threat Landscape

Researchers say that crypters previously attributed to the Trickbot/Conti syndicate are “fundamental” to tracking cybercrime factions.

Malware, Trickbot, Conti

8Base Are Belong to Who?

A somewhat quiet ransomware group known as 8Base has increased its activity in the last month and has researchers wondering who is behind the scenes.

Ransomware

GAO: Federal Agencies Contend With Disparate Cybercrime Metrics

The Government Accountability Office found that various federal agencies don't have a comprehensive way to track cybercrime data, which it says is "leaving the country less prepared to combat cybercrime.”

Cybercrime, Reporting

Cybercriminals Still Want to Cash In on Cryptojacking

Recent campaigns show cybercriminals haven't given up yet on cryptojacking, despite fluctuating cryptocurrency values and the shutdown of Coinhive.

Cryptocurrency, Cryptojacking

Decipher Podcast: Source Code 6/23

Welcome back to Source Code, Decipher's weekly news wrap podcast with input from our sources.

Source Code, Podcast

Apple Patches Zero Days Used in Targeted iOS Attacks

Apple has released new versions of iOS to patch three zero days that have been exploited in targeted attacks.

Apple