Szolgáltatóknak

While reviewing my DShield honeypot logs, I noticed for the first time something strange in my list of Top Username & Password where several domain name were use as password. Initially, I was under the impression this might be a parsing error by Logstash and decided to review the raw logs to make sure it was parsed correctly to confirm data integrity. Since username and passwords isn't something submitted to DShield, I reviewed my own raw logs to confirm the data was accurate and reviewed the capture rate of username/password combination for the past few weeks:

A social engineering phone call lends authenticity to the attacker's malicious email.

Progress Software plans to collect millions in cyber insurance policy payouts after the MOVEit breaches, which will make getting coverage more expensive and harder to get for everyone else, experts say.

Is it a bird? Is it a plane? No, it’s the latest certifications from Cisco Learning and Certifications! That’s right, I’m happy to share some details on the three newest Cisco Specialist certifications with you all. And all three relate to that topic that continues to be on the minds of every engineer, IT leader, […]

CISA and FBI warn the RaaS provider's affiliates are striking critical industries, with more attacks expected to come from additional ransomware groups in the months ahead.

Microsoft Entra ID support has been integrated by enterprise identity protection startup Semperis into its attack path management tool Forest Druid in a bid to better combat cybersecurity threats against on-premises Active Directory and cloud systems, SiliconAngle reports.

California Gov. Gavin Newsom has approved into law legislation that would enable the state's cybersecurity agency CAL-SIC to provide assistance to K-12 schools amid the growing prevalence of K-12 cyberattacks, reports CBS Bay Area.

The U.S. Environmental Protection Agency has withdrawn its guidance requiring cybersecurity audits for water utilities across the country following a lawsuit filed by Arkansas, Iowa, and Missouri and supported by trade groups that challenged the viability of water utility cybersecurity regulation in the long term, according to CyberScoop.

TechCrunch reports that French cloud gaming startup Shadow had its customers' personal data compromised in a data breach stemming from a social engineering attack against an employee last month.

Threat actors have targeted .NET developers with a malicious NuGet package typosquatting the Pathoschild.Stardew.ModBuildConfig deploying the SeroXen RAT, The Hacker News reports.