The Immersive Experience Happening This September in Las Vegas! In an era of relentless cybersecurity threats and rapid technological advancement, staying ahead of the curve is not just a necessity, but critical. SANS Institute, the premier global authority in cybersecurity training, is thrilled to announce Network Security 2024, a landmark event designed to empower cybersecurity…
The High Stakes of Ransomware: BlackSuit Demands $500 Million In the high-stakes world of ransomware, the BlackSuit strain has emerged as a formidable threat, demanding exorbitant amounts of money from its victims. Reports from the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) indicate that BlackSuit has demanded as…
Critical Security Flaw in Progress Software WhatsUp Gold Under Attack A critical security flaw has been identified in Progress Software’s WhatsUp Gold, a popular network monitoring application. This vulnerability, known as CVE-2024-4885 and with a CVSS score of 9.8, poses a severe risk as it allows for unauthenticated remote code execution. This means that attackers…
Novo opozorilo: Kibernetski napadi ciljajo na južnokorejski gradbeni in strojni sektor Južnokorejska varnostna agencija je izdala skupno varnostno svetilo, ki opozarja na porast kibernetskih napadov, namenjenih sektorjema gradbeništva in strojnega inženirstva. Varnostno svetilo dviguje alarm glede sofisticiranih napadov, ki jih naj bi izvajale severnokorejske kibernetske skupine Kimsuky in Andariel, katerih cilj je pridobivanje tajnih podatkov…
Odkrivanje ranljivosti v sistemih ogroža podatke V zadnjih dneh je prišlo do odkritja pomembne ranljivosti v enem izmed najbolj razširjenih informacijskih sistemov na svetu. Ta ranljivost omogoča nepooblaščen dostop do sistemov in podatkov s strani kibernetskih napadalcev, kar pomeni resno grožnjo za varnost osebnih in finančnih informacij uporabnikov. Ranjivost se je pojavila zaradi napake v…
Cybersecurity Researchers Unveil Novel Linux Kernel Exploitation Technique Cybersecurity researchers have uncovered a groundbreaking Linux kernel exploitation technique known as SLUBStick. This innovative method has the potential to elevate a limited heap vulnerability to an arbitrary memory read-and-write primitive, posing a serious threat to system security. The Intricacies of SLUBStick The technique relies on a…
Varnostna napaka razkrila osebne podatke več kot 29 milijard ljudi V eni od največjih napak računalniške varnosti vseh časov so bili izpostavljeni podatki več kot 29 milijard ljudi. Gre za eno največjih kršitev varnosti doslej, saj so bili izpostavljeni osebni podatki, kot so polna imena, naslovi in številke socialne varnosti. Ta incident predstavlja ogromen udarec…
The Threat of GoGra: A New Backdoor Targeting Media Organizations in South Asia In November 2023, an unnamed media organization in South Asia fell victim to a sophisticated cyberattack utilizing a previously undocumented backdoor named GoGra. The malicious tool, written in Go programming language, leverages the Microsoft Graph API to communicate with a command-and-control (C&C)…
CrowdStrike’s Root Cause Analysis of Falcon Sensor Software Update Crash Cybersecurity firm CrowdStrike recently documented a root cause analysis elucidating the unfortunate Falcon Sensor software update debacle that caused widespread havoc on numerous Windows devices worldwide. The mishap, dubbed the “Channel File 291” incident in their Preliminary Post Incident Review (PIR), has been attributed to…
Cybersecurity Researchers Expose New Trickery by Chameleon Android Banking Trojan In an ongoing battle against cyber threats, cybersecurity researchers have unearthed a new technique employed by threat actors associated with the Chameleon Android banking trojan. This strategy is aimed at deceiving users in Canada, as the trojan disguises itself as a Customer Relationship Management (CRM)…