Zdravstvene organizacije so danes pogosteje tarča kibernetskih groženj in napadov kot druge organizacije podobne velikosti, in sicer zaradi visoke vrednosti njihovih kliničnih, pacientovih in finančnih podatkov. Za razliko od sektorjev, kot sta maloprodaja ali finančne storitve, so stavke v zdravstvu veliko višje. Kako se spopasti s to rastočo grožnjo?Odgovor je Zero Trust, model, ki temelji…
U.S. DOJ Indicts North Korean Operative for Ransomware Attacks The U.S. Department of Justice (DoJ) recently made headlines by unveiling a significant indictment against Rim Jong Hyok, a North Korean military intelligence operative. The charges revolve around his involvement in ransomware attacks aimed at healthcare facilities within the United States. Notably, these attacks were cited…
Cybersecurity Alert: SeleniumGreed Campaign Exploiting Selenium Grid Services Cybersecurity experts have raised concerns about a new threat on the horizon, the SeleniumGreed campaign. The campaign is making use of internet-exposed Selenium Grid services to conduct unauthorized cryptocurrency mining operations, leaving organizations vulnerable to exploitation. Cloud Security Wiz at the Helm Leading the charge in tracking…
CrowdStrike Uncovers Sophisticated Cyber Threat Cybersecurity company CrowdStrike has recently discovered a novel cybersecurity threat targeting German customers. This unfamiliar threat actor is taking advantage of the Falcon Sensor update controversy to distribute dubious installers as part of a highly targeted campaign. In an alert issued by CrowdStrike, the company revealed that on July 24,…
Progress Software Urges Immediate Update to Telerik Report Server Progress Software has issued a warning to all users of Telerik Report Server to promptly update their instances due to a severe security vulnerability that could potentially lead to remote code execution. The identified flaw, identified as CVE-2024-6327 and carrying a CVSS score of 9.9, affects…
Nevarni Python paketi kradejo podatke: Obvestilo uporabnikom Raziskovalci na Cyber Pressu so odprli Pandorino skrinjico, ko so odkrili nevarne Python pakete, ki kradejo podatke iz računalnikov uporbnikov. Ta izjemna ugotovitev ima velik potencial povzročiti znanstveno in tehnološko izumrtje s katastrofalnimi posledicami, zlasti za podjetja, ki se zanašajo na te pakete. Kaj se je zgodilo? Raziskovalci…
North Korea-Linked Threat Actor Expands into Financially-Motivated Attacks In a surprising shift, a North Korea-linked threat actor notorious for its cyber espionage operations has begun venturing into financially-motivated attacks. This nefarious development involves the deployment of ransomware, distinguishing it from other nation-state hacking groups associated with the country. Introducing APT45 The activity cluster behind these…
explore the six core types of security testing that every security professional needs to know about to ensure their applications are secure across various stages of development and deployment, including applications, web applications, and APIs. Let’s delve into each core testing type to grasp its importance and how it contributes to a robust security strategy….
Meta Platforms takes action against Instagram accounts involved in sextortion scams In a recent statement, Meta Platforms announced that it has taken swift action to combat a large number of Instagram accounts in Nigeria that were engaged in financial sextortion scams. This move follows the removal of approximately 63,000 accounts linked to these fraudulent activities….
NIS2 direktiva, ki je bila sprejeta z namenom izboljšanja varnosti omrežij in informacijskih sistemov v Evropski uniji, postavlja visoke standarde za organizacije, ki delujejo v kritičnih sektorjih. S povečanjem zahtev po kibernetski varnosti in zaščiti podatkov se organizacije soočajo z izzivom, kako učinkovito implementirati rešitve, ki ne le izpolnjujejo te zahteve, temveč tudi zagotavljajo dolgoročno…