The Struggles of Password Policies in Organizations Many organizations grapple with password policies that look strong on paper but fall flat in practice. These policies can be too rigid, too vague, or disconnected from real security needs. In many cases, employees resort to desperate measures, such as writing passwords on sticky notes placed under keyboards,…
Cyber Espionage Campaign Targeting Telecommunications Providers A recent advisory from Australia, Canada, New Zealand, and the U.S. highlights a significant cyber espionage campaign by People's Republic of China (PRC)-affiliated threat actors. These hackers are specifically targeting telecommunications providers. This is a pressing issue that impacts both national security and the integrity of telecommunications infrastructure worldwide….
Cybersecurity researchers have raised alarms about a new phishing campaign that exploits corrupted Microsoft Office documents and ZIP archives to bypass email defenses. This ongoing attack successfully evades antivirus software, prevents uploads to sandboxes, and circumvents Outlook's spam filters, ensuring that malicious emails land in your inbox. Understanding the Phishing Attack What is Phishing? Phishing…
Veeam Security Updates Address Critical Vulnerability Veeam has released essential security updates to address a critical flaw in the Service Provider Console (VSPC). This vulnerability, tracked as CVE-2024-42448, poses a major risk as it could allow for remote code execution on vulnerable instances. With a CVSS score of 9.9 out of 10, this flaw demands…
Critical Security Vulnerability in SailPoint's IdentityIQ A significant security vulnerability has been disclosed in SailPoint's IdentityIQ identity and access management (IAM) software. This flaw allows unauthorized access to content stored within the application directory, posing a serious risk for organizations that rely on this software for managing user identities and permissions. The vulnerability, tracked as…
Grožnjavi akter naj bi razkril bazo podatkov InfraGard, kar izpostavlja občutljive informacije tisočih uporabnikov, povezanih s partnerskim programom FBI-ja. Ta incident predstavlja pomembno tveganje za kibernetsko varnost, saj je InfraGard zasnovan za spodbujanje varne komunikacije med FBI-jem in voditelji zasebnega sektorja ter zmanjšanje groženj narodnemu varnosti. InfraGard, ki igra ključno vlogo v zaščiti kritične infrastrukture,…
Cisco Issues Warning: Decade-Old Flaw Exposed Cisco has alerted its customers of an active exploitation of a security flaw affecting its Adaptive Security Appliance (ASA). This vulnerability, tracked as CVE-2014-2120, has been around for nearly a decade. With a CVSS score of 4.3, it’s classified as a moderate risk. The flaw arises from insufficient input…
Exploits in VPN Clients: Understanding the Risks and Protections Cybersecurity researchers have uncovered significant vulnerabilities in Palo Alto Networks and SonicWall virtual private network (VPN) clients. These flaws can potentially be exploited to gain remote code execution on both Windows and macOS systems. By targeting the implicit trust that VPN clients assign to servers, attackers…
Understanding the Kimsuky Threat Actor and Their Phishing Attacks Kimsuky, a North Korea-aligned threat actor, has been linked to a series of phishing attacks. These attacks frequently use Russian email addresses to execute credential theft. According to South Korean cybersecurity company Genians, phishing emails were primarily sent via email services in Japan and Korea until…
New Malware Campaign: Horns & Hooves Targets Russian Users and Businesses A newly discovered malware campaign is targeting private users, retailers, and service businesses in Russia. Kaspersky has named this campaign "Horns & Hooves." It primarily delivers two types of Remote Access Trojans (RATs): NetSupport RAT and BurnsRAT. Since its inception in March 2023, the…