The Importance of Detection and Response (DR) in Cloud Security The link between detection and response (DR) practices and cloud security has often been undervalued. As global organizations increasingly adopt cloud environments, security strategies have primarily focused on “shift-left” practices. These practices involve securing code, ensuring proper cloud posture, and fixing misconfigurations. While these steps…
Security Flaws in Ivanti Cloud Service Appliance Recent reports have highlighted alarming news about a suspected nation-state adversary actively weaponizing three significant security flaws in the Ivanti Cloud Service Appliance (CSA). According to Fortinet FortiGuard Labs, these vulnerabilities have been exploited to carry out malicious actions. Notably, a zero-day vulnerability has allowed unauthorized access to…
Cyber Sigurnost: Odprt Razgovor o Zavarovanju V svetu, kjer se vsak dan izkažejo novejše napake in grožnje, je zavarovanje pomembno kot kdajkoli prej. Cyber sigurnost je ključna za zaščito vaših podatkov in sistemov pred nevarnostmi, ki prežijo na spletu. V tem blogu bomo podrobno raziskali, kako uporabiti različne strategije, da vas zaščitimo pred različnimi grožnjami….
Active Threats Targeting Veeam Backup & Replication Threat actors are actively attempting to exploit a recently patched security flaw in Veeam Backup & Replication. This flaw, identified as CVE-2024-40711, has garnered the attention of cybersecurity experts. According to research conducted by Sophos, hackers have been leveraging this vulnerability to deploy Akira and Fog ransomware. Understanding…
Uvod v Symantecovo Web Isolacijo V dobi, ko smo vsakodnevno izpostavljeni številnim grožnjam na spletu, je cyber varnost postala ključnega pomena. Symantecova Web Isolacija je rešitev, ki se izkaže kot ena najboljših tehnologij za zaščito pred napadi. S to tehnologijo lahko preprečimo škodljive napade, saj deluje tako, da izolira vašo spletno aktivnost od vašega računalnika….
OilRig Exploits Windows Kernel Flaw in Cyber Espionage The Iranian threat actor known as OilRig has been observed exploiting a now-patched privilege escalation flaw impacting the Windows Kernel. This action is part of a broader cyber espionage campaign targeting the United Arab Emirates (U.A.E.) and the Gulf region. The sophistication of OilRig's tactics makes them…
Operation Token Mirrors: Major Fraud Investigation Targets Digital Asset Manipulation The U.S. Department of Justice (DoJ) has revealed significant arrests and charges against various individuals and entities. These actions are linked to alleged manipulation of digital asset markets, as part of a widespread fraud operation known as Operation Token Mirrors. This law enforcement initiative comes…
Holandske oblasti so uspešno razbile Bohemia/Cannabis, največjo in najdlje obstoječo temno spletno tržnico na svetu. Ta operacija je pomemben mejnik v boju proti nezakonitim spletnim dejavnostim, predvsem proti kibernetskemu kriminalu in prodaji drog. Mednarodno sodelovanje in aretacije Preiskava Bohemia/Cannabia je bila vodena s strani tima za boj proti visokotehnološkemu kriminalu, ki deluje pod Nacionalno službo…
New Malware Campaign Targets Insurance and Finance Sectors A new tax-themed malware campaign is gaining traction among cybercriminals, specifically targeting the insurance and finance sectors. Threat actors are leveraging GitHub links in phishing emails to bypass security measures and deliver Remcos Remote Access Trojan (RAT). This indicates a shift in tactics, making it essential for…
Bohemia je v zadnjem času postala ena najbolj prepoznavnih platform na dark webu, zlasti po zaprtju večjih alternativ, kot so AlphaBay in Tor2Door. Ta članek se osredotoča na zgodovino Bohemie, njeno delovanje, vrste izdelkov, ki jih ponuja, ter nedavne dogodke, ki so vplivali na njen status. Zgodovina Bohemie Bohemia je bila ustanovljena maja 2021 in…