Security Bulletin

Threat actors are harvesting credentials today to decrypt later when quantum computers are readily available – so now’s the time for teams to start planning.

While these threats remain a valid concern, US government agencies have doubled down on their assurances to the American public that election infrastructure is secure.

The advanced Python-based PysSilon malware can steal data, record keystrokes, and execute remote commands. The attackers behind it are promising to leak details of deleted X posts related to accused rapper and music producer Sean Combs.

Aside from utilizing advanced machine learning models enabling application usage, data access rights, and security permissions management, GravityZone PHASR also leverages its endpoint security and risk analytics integration to identify organizations...

Relentless optimism, especially around AI, was the order of the day as the InfoSec World 2024 conference kicked off in Orlando.

U.S.-based laptop farms have been leveraged by North Korea to ensure the employment of North Korean IT workers, who are mostly located in China or Russia, with the devices connected to various remote management tools.

Aside from leveraging dynamic IP addresses, Fox Kitten also sought to conceal its attack infrastructure through broad Autonomous System deployment and spurious certificate names.

Attackers' infiltration of the IBM AIX server incompatible with the firm's current security tools in March facilitated malicious activity for the next four months.

Russian cyberattacks against Ukraine originated from eight different threat clusters, some of which were associated with the country's national guard RosGvardia.

To maintain AI leadership, Congress and regulatory agencies must recognize that our foreign competitors are working to surpass us.

Such an attack was noted by Swedish officials to have been conducted to falsely portray the country's Islamophobia and increase polarization among its citizens.

Aside from disrupting the websites of the country's financial service entities, airports, and stock exchange, both NoName057(16) and OverFlame hackers have also deployed DDoS intrusions against the websites of Austria's OVP and SPO political parties.