Security Bulletin

As the 104th season of the National Football League kicks off, expect cyberattacks aimed at its customers, players, and arenas.

As you might have already seen this quarter, we are committed to moving forward with the Artificial Intelligence (AI) movement that Cisco is prioritizing. A type of Evolution that is going to require each of us to leave a mark as we work together to...

In an earlier diary [1], I reviewed how using tools like DBSCAN [2] can be useful to group similar data. I used DBSCAN to try and group similar commands submitted to Cowrie [3] and URL paths submitted to the DShield web honeypot [4]. DBSCAN was very...

To prevent this, organizations should focus on developing secure hardware and firmware foundations, enabling them to manage, monitor, and remediate hardware and firmware security.

AIOps, powered by AI, transforms IT operations, revolutionizing industries and driving operational excellence. Are you ready to lead the charge?

Aside from enabling the monitoring of hacking operations, Recorded Future's threat intelligence platform has also been touted to facilitate the discovery of misconfigured and vulnerable systems, as well as at-risk third-party infrastructure.

Nearly $5 billion of the reported losses — which also stemmed from call center fraud, tech support scams, and government spoofing — were attributed to the U.S., with California, Texas, Florida, and New York having the highest damages across the...

Details regarding the targets of the indictment were not provided but such a move comes as the Justice Department committed to bolster transparency about election-targeted foreign influence threats after being less open about Russian interference...

Infiltration of TfL's internal systems on September 1 resulted in the exfiltration of some customers' names and contact information, as well as refund data belonging to nearly 5,000 Oyster cardholders.

Attacks with the novel Veaty and Spearal malware strains have been deployed by Iranian state-backed advanced persistent threat operation OilRig, also known as APT34, against Iraqi government agencies and organizations as part of a new cyberespionage...

Threat actors part of the proxyjacking campaign exploited Selenium Grid servers' "goog:chromeOptions" configuration to facilitate deployment of a base64-encoded Python script, which enabled the retrieval of an open-source GSocket reverse shell.

After executing several PowerShell scripts using WhatsUp Gold's Active Monitor PowerShell Script functionality, threat actors proceeded with exploiting the 'msiexec.exe' Windows utility to install the Atera Agent, SimpleHelp Remote Access, Splashtop...