A financial entity in Vietnam was the target of a previously undocumented threat actor called Lotus Bane that was first detected in March 2023.
Singapore-headquartered Group-IB described the hacking outfit as an advanced persistent threat group that’s believed to have been active since at least 2022.
The exact specifics of the infection chain remain unknown as yet, but it involves the
Category: Cyber Security News
Apple has released security updates to address several security flaws, including two vulnerabilities that it said have been actively exploited in the wild.
The shortcomings are listed below –
CVE-2024-23225 – A memory corruption issue in Kernel that an attacker with arbitrary kernel read and write capability can exploit to bypass kernel memory protections
CVE-2024-23296 – A memory
Cybersecurity giant CrowdStrike (NASDAQ: CRWD) on Tuesday announced plans to acquire of Flow Security, a cloud data runtime security solution, to enhance its cloud security capabilities and offer protection for data in motion and at rest for both endpoint and cloud environments. Flow’s Data Security…
PRESS RELEASECHICAGO — (BUSINESS WIRE) — Network Perception, innovators of operational technology (OT) solutions that protect mission-critical assets, today introduced new platform features and capabilities as part of its roll-out of NP-View version 5.0, including next-generation network access mode…
PRESS RELEASESAN FRANCISCO, March 5, 2024 /PRNewswire/ — Delinea, a leading provider of solutions that seamlessly extend Privileged Access Management (PAM), today announced the introduction of Privilege Control for Servers on the Delinea Platform, enforcing least privilege…
PRESS RELEASEReston, VA – March 5, 2024 — Centripetal, the global leader in intelligence powered cybersecurity, today announced that it has been selected as the Official Cyber Network Security Partner for the Boston Red Sox and Fenway Park. Under the multi-year partnership, Centripeta…
PRESS RELEASESAN FRANCISCO, March 5, 2024 – Horizon3.ai, a pioneer in autonomous security solutions, today announced the availability of the Horizon3.ai Pentesting Services for Compliance. Horizon3.airecognizes that demand for pentesting expertise is at an all-time high, and…
The National Security Agency is sharing new guidance to help organizations limit an adversary’s movement on the internal network by adopting zero-trust framework principles. […]
The wide availability of generative AI will make synthetic identity fraud even easier. Organizations need a multilayered defense to protect themselves.
Source code fire sale, stiffing affiliates — are BlackCat admins intentionally burning their RaaS business to the ground? Experts say something’s up.
The retired US Army lieutenant colonel faces up to 10 years in prison if convicted of sharing secret information about the Russia-Ukraine war with a scammer posing as romantic connection.
Apple released emergency security updates to fix two iOS zero-day vulnerabilities that were exploited in attacks on iPhones. […]
Today is an important day to apply security patches to iPhones old and new. Apple on Tuesday rolled out an urgent software update to fix multiple security flaws in its flagship iOS platform and warned there is evidence of zero-day exploits in the wild. The Cupertino device maker shipped several mobi…
A new malware dubbed ‘WogRAT’ targets both Windows and Linux in attacks abusing an online notepad platform named ‘aNotepad’ as a covert channel for storing and retrieving malicious code. […]
North Korea’s latest espionage tool is tough to pin down, with random generators that throw detection mechanisms off its scent. The DPRK is using the recent critical bugs in ConnectWise ScreenConnect, a remote desktop tool, to deliver the bug.