For providers

Biometrics promise a passwordless world – here’s how security teams can make that happen.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

On the 31 Dec 2023, after trying multiple username/password combination, actor using IP 194.30.53.68 successfully loging to the honeypot and uploaded eight files where 2 of them are protected with a 7zip password ( updates1.7z & updates2.7z). Some of  these files have been identified to be related to the Prometei trojan by Virustotal. The file sqhost.exe [ 6] was last found by Talos [ 7] used with the Prometei botnet as a trojan coin miner. 

If many people can detect simple phishing emails these days, some attacks are very well crafted and also have built-in techniques not only to ensure that potential victims will fall into the trap but there is another aspect. From an attacker&#x27s point of view, how to improve the quality of collected data?

SiliconAngle reports that major cloud-based email security firm Mimecast has entered a deal to purchase workforce risk management solutions provider Elevate Security.

Data breaches and other cybersecurity incidents would prompt 75% of U.S. consumers to remove their support for impacted brands and organizations, while 66% said they would no longer entrust their data to breach-hit companies, indicating the importance of cybersecurity in maintaining brand trust, according to Cybernews.

Six security flaws in Google Chrome have been addressed as part of the browser's first security update this year, reports SecurityWeek.

Zeppelin ransomware had source code and cracked builder declared to be sold for only $500 by the threat actor using "RET" as their handle, BleepingComputer reports.