InfoSec News 20240524
Top News
-
Report Reveals 341% Rise in Advanced Phishing Attacks
"Security experts from SlashNext have reported a 341% increase in malicious phishing links, business email compromise (BEC), QR code, and attachment-based threats in the past six months."
TLP1 : Green
-
SOCRadar raises $25.2 million to accelerate investments in key areas
"SOCRadar announced the successful completion of its Series B funding round, raising $25.2 million. The round was led by PeakSpan Capital, with participation from Oxx, reflecting investor confidence in SOCRadar’s innovative approach to cybersecurity."
TLP1 : Green
-
Microsoft's Recall Stokes Security and Privacy Concerns
"Microsoft's new automatic screenshot retrieval feature could enable hackers to steal sensitive information such as online banking credentials, security experts warned. Additionally, the U.K ICO will probe Recall for compliance with privacy law."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Hacktivists turn to ransomware in attacks on Philippines government
"Hacktivist operations are using leaked ransomware builders to launch attacks on critical infrastructure in the Philippines — part of a trend among politically motivated groups who are increasingly trying to disrupt life in the Southeast Asian nation."
TLP1 : Green
-
Chinese hackers hide on military and govt networks for 6 years
"Bitdefender researchers who discovered the threat group report that its operations align with Chinese geo-political interests, focusing on intelligence collection and espionage."
TLP1 : Green
-
Pakistani-Aligned APT36 Targets Indian Defense Organizations
"A politically motivated hacking group aligned with Pakistani interests is matching the Indian military's shift away from the Windows operating system with a heavy focus on malware encoded for Linux."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
OmniVision disclosed a data breach after the 2023 Cactus ransomware attack
"The digital imaging products manufacturer OmniVision disclosed a data breach after the 2023 ransomware attack."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
An ongoing malware campaign exploits Microsoft Exchange Server flaws
"This campaign, active since at least 2021, has targeted over 30 victims in various countries, primarily in Africa and the Middle East, with government agencies being the main victims."
TLP1 : Green
-
CLOUD#REVERSER campaign leverages cloud storage for malware delivery
"Delivered via a phishing email attachment, the malicious file makes use of the hidden right-to-left override (RLO) Unicode character (U+202E) to reverse the order of the characters that come after that character in the string."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Protecting Your Organization From Insider Threats - All You Need to Know
"Get practical insights and strategies to manage inadequate offboarding and insider risks effectively."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Why shareable SBOMs are essential for software security
"Development teams need to plan ahead and create shareable SBOMs that are standardized in a format that's readily consumable while also establishing scalable systems for attestation, access management, and data verification, among other factors."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.