HackDig : Dig high-quality web security articles

Anticipate, Respond & Adapt: Organizational Resilience

Gary Hibberd, professor of communicating cyber for Cyberfort and former head of business continuity and information security at various companies, teaches the importance of building resilience in your organization not just with technology but also with people and processes.Spotify: https://open.spotify.com/show/5UDKiGLlzxhiGnd6FtvEnmStitcher: https://www.sti
Publish At:2021-06-28 07:44 | Read:161 | Comments:0 | Tags:Podcast cybersecurity Information Security Resilience

The Many Challenges of a CISO – The ClubCISO 2021 Information Security Maturity Report

We all have heard and read how the pandemic has disrupted our lives, how it has accelerated digital transformation to an unprecedented extent and how it challenged the existing security policies and practices. The question is how the people responsible for fortifying their organizations experienced the whole situation.Letter from the frontlineThe ClubCISO co
Publish At:2021-06-08 05:12 | Read:333 | Comments:0 | Tags:IT Security and Data Protection CISO Information Security Re

Threat Report Portugal: Q1 2021

The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from January to March, Q1, of 2021. Threat Report Portugal Q1 2021: Phishing and malware by numbers. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed a
Publish At:2021-05-03 03:25 | Read:1154 | Comments:0 | Tags:Breaking News Cyber Crime Malware Reports cyber security new

WeSteal, a shameless commodity cryptocurrency stealer available for sale

The bold author of a new cryptocurrency stealer, dubbed WeSteal, is promising its customers a leading way to make money in 2021. A new cryptocurrency stealer dubbed WeSteal is available on the cybercrime underground, unlike other commodity cryptocurrency stealers, its author doesn’t masquerade its purpose and promises “the leading way to make money
Publish At:2021-05-02 12:34 | Read:1171 | Comments:0 | Tags:Breaking News Cyber Crime Malware cryptocurrenct stealer cyb

Security Affairs newsletter Round 312

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. 10,000+ unpatched ABUS Secvest home alarms can be deactivated remotelyHackers are targeting Soliton FileZen file-sharing serversA supply chain attack compromised the update mechanism of Passwordstate Pas
Publish At:2021-05-02 10:30 | Read:989 | Comments:0 | Tags:Breaking News cyber security news Cybersecurity Hacking hack

Hacking a Tesla Model X with a DJI Mavic 2 drone equipped with a WIFI dongle

A security duo has demonstrated how to hack a Tesla Model X’s and open the doors using a DJI Mavic 2 drone equipped with a WIFI dongle. The scenario is disconcerting, hackers could use a drone to fly on your Tesla Model X and open the doors, a couple of researchers demonstrated. The researchers Kunnamon, Inc.’s Ralf-Philipp Weinmann and Comsecuris Gmb
Publish At:2021-05-02 07:50 | Read:1113 | Comments:0 | Tags:Breaking News Hacking Car hacking cyber security news Cybers

Cloud hosting provider Swiss Cloud suffered a ransomware attack

Swiss cloud hosting provider Swiss Cloud has suffered a ransomware attack that seriously impacted its server infrastructure. On April 27 the Swiss cloud hosting provider was hit by a ransomware attack that brought down the company’s server infrastructure. The company is currently working to restore operations from its backups with the help of experts f
Publish At:2021-05-02 04:44 | Read:1044 | Comments:0 | Tags:Breaking News Cyber Crime Malware cyber security news Cybers

AgeLocker ransomware operation targets QNAP NAS devices

Taiwanese vendor QNAP is warning its customers of AgeLocker ransomware attacks on their NAS devices. Crooks behind the AgeLocker ransomware operation are targeting QNAP NAS devices, the Taiwanese vendor warns. The vendor doesn’t provide technical details of the attacks, it is not clear if the ransomware gang exploited know vulnerabilities. “
Publish At:2021-05-01 14:55 | Read:962 | Comments:0 | Tags:Breaking News Cyber Crime Internet of Things Malware AgeLock

Flaws in the BIND software expose DNS servers to attacks

The Internet Systems Consortium (ISC) released updates for the BIND DNS software to patch several denial-of-service (DoS) and potential RCE flaws. The Internet Systems Consortium (ISC) has released security updates for the BIND DNS software to address several vulnerabilities that can be exploited by attackers to trigger denial-of-service (DoS) conditions
Publish At:2021-05-01 12:15 | Read:1039 | Comments:0 | Tags:Breaking News Security BIND cyber security news Cybersecurit

China-linked APT uses a new backdoor in attacks at Russian defense contractor

China-linked APT group targets Russian nuclear sub designer with an undocumented backdoor A China-linked cyberespionage group targets a Russian defense contractor involved in designing nuclear submarines for the Russian Navy. Cybereason researchers reported that a China-linked APT group targets a Russian defense contractor involved in designing nuclear
Publish At:2021-04-30 19:20 | Read:1050 | Comments:0 | Tags:APT Breaking News Hacking Malware cyber security news Cybere

Saving World Health Day: UNICC and Group-IB take down scam campaign impersonating the World Health Organization

UNICC and Group-IB detected and took down a massive multistage scam campaign circulating online on April 7, World Health Day. Group-IB, a global threat hunting and adversary-centric cyber intelligence company that specializes in investigating hi-tech cybercrimes, and the United Nations International Computing Centre (UNICC), detected and took down a massi
Publish At:2021-04-30 10:11 | Read:964 | Comments:0 | Tags:Breaking News Cyber Crime cyber security news Cybercrime Cyb

Microsoft warns of BadAlloc flaws in OT, IoT devices

Microsoft researchers are warning of major security vulnerabilities affecting OT and IoT devices and high-risks for businesses using them. Researchers from Microsoft’s Section 52 team recently uncovered several critical memory allocation flaws, collectively tracked as BadAlloc, affecting IoT and OT devices. The vulnerabilities could be exploited by attack
Publish At:2021-04-30 09:39 | Read:917 | Comments:0 | Tags:Breaking News Internet of Things BadAlloc cyber security new

Command injection flaw in PHP Composer allowed supply-chain attacks

A vulnerability in the PHP Composer could have allowed an attacker to execute arbitrary commands and backdoor every PHP package. The maintainers of the PHP Composer package have addressed a critical vulnerability, tracked as CVE-2021-29472, that could have allowed an attacker to execute arbitrary commands and establish a backdoor in every PHP package.
Publish At:2021-04-29 17:59 | Read:1035 | Comments:0 | Tags:Breaking News Security cyber security news Cybersecurity Hac

An alleged ransomware attack hit the Italian Banca di Credito Cooperativo causing chaos

Banca di Credito Cooperativo (BCC), one of the largest Italian cooperative credit banks was hit by a ransomware attack. Banca di Credito Cooperativo (BCC), one of the largest Italian cooperative credit banks, was hit by a cyberattack allegedly carried out by one of the most aggressive ransomware gangs, Darkside. The attack paralyzed the operations at
Publish At:2021-04-29 14:36 | Read:963 | Comments:0 | Tags:Breaking News Cyber Crime Malware Banca di Credito Cooperati

An issue in the Linux Kernel could allow the hack of your system

An information disclosure issue in Linux Kernel allows KASLR bypass could be potentially exploited in attacks in the wild. An information disclosure flaw in the Linux kernel, tracked as CVE-2020-28588, could allow attackers to bypass the Kernel Address Space Layout Randomization bypass (KASLR). The Kernel Address space layout randomization (KASLR) is a
Publish At:2021-04-29 14:04 | Read:1080 | Comments:0 | Tags:Breaking News Security cyber security news Cybersecurity Hac

Tag Cloud