Can cyber defenders use the presence of infostealers as a canary in the coal mine to preempt ransomware attacks?
Автор: Nate Nelson, Contributing Writer
Infostealers: An Early Warning for Ransomware Attacks
Can cyber defenders use the presence of infostealers as a canary in the coal mine to preempt ransomware attacks?
Zero-Click RCE Bug in macOS Calendar Exposes iCloud Data
A researcher bypassed the Calendar sandbox, Gatekeeper, and TCC in a chain attack that allowed for wanton theft of iCloud photos.
Ukraine, Gaza Wars Inspire DDoS Surge Against Finservs
Hacktivists love to target financial services companies, and their attacks are growing both larger and longer.
Microsoft VS Code Undermined in Asian Spy Attack
A technique to abuse Microsoft’s built-in source code editor has finally made it into the wild, thanks to China’s Mustang Panda APT.
When Startup Founders Should Start Thinking About Cybersecurity
Most investors aren’t demanding cybersecurity preparedness from startups, but founders should still be worried about the risks.
Hackers Proxyjack & Cryptomine Selenium Grid Servers
A vendor honeypot caught two attacks intended to leverage the tens of thousands of exposed Selenium Grid Web app testing servers.
Air-Gapped Networks Vulnerable to Acoustic Attack via LCD Screens
In the "PixHell" attack, sound waves generated by pixels on a screen can transmit information across seemingly impenetrable air gaps.
Chinese Tag Team APTs Keep Stealing Asian Gov’t Secrets
A PRC threat cluster known as "Crimson Palace" is demonstrating the benefits of having specialized units carry out distinct stages of a wider attack chain.
Malvertising Campaign Builds a Phish for Lowe’s Employees
Retail employees are being duped into divulging their credentials by typosquatting malvertisements.