The National Institute of Standards and Technology (NIST) has announced a new program called Assessing Risks and Impacts of AI (ARIA), aimed at better understanding the capabilities and impacts of artificial intelligence. ARIA is designed to help organizations and…
Category: CySecurity News – Latest Information Security and Hacking Incidents
Enhancing Cybersecurity: Automated Vulnerability Detection and Red Team Exercises with Validation Scans
In today’s digital age, cybersecurity has become a top priority for organizations of all sizes. The ever-evolving landscape of cyber threats necessitates robust and comprehensive approaches to identifying and mitigating vulnerabilities. Two effective methods in this domain are automated vulnerability…
Unmasking Moonstone Sleet: A Deep Dive into North Korea’s Latest Cyber Threat
Moonstone Sleet: A New North Korean Threat Actor Microsoft discovered a new North Korean threat actor, Moonstone Sleet (formerly Storm-1789), who targets companies with a combination of tried-and-true techniques used by other North Korean threat actors as well as unique…
Security Lapse at First American Exposes Data of 44,000 Clients
It has been reported that First American Financial Corporation, one of the largest title insurance companies in the United States, was compromised in December when the company’s computer systems were taken down due to a cyberattack that compromised the…
FBI Takes Down Massive Global Army of Zombie Computer Device
In a significant victory against cybercrime, an international law enforcement team has successfully dismantled the massive “911 S5” botnet, which has been operational for almost a decade. This extensive network, believed to be the largest of its kind globally,…
SEC Tightens Cybersecurity Regulations for Public Companies
In 2023, the Securities and Exchange Commission (SEC) significantly tightened its cybersecurity regulations for publicly traded companies. This move, aimed at enhancing investor protection and ensuring market transparency, responds to the increasing prevalence of cyber threats and their potential…
Fraudulent SMS Entities Blacklisted in Government Crackdown
An official release states that the government has blacklisted ‘principal entities’ behind SMS headers that have been sent over 10,000 fraudulent messages over the past three months as part of a crackdown on SMS scammers. As part of the Sanchar…
Facebook Account Takeovers: Can Tech Giant Stop Hijacking Scams?
A Go Public investigation discovered that Meta has allowed a scam campaign to flourish on Facebook, as fraudsters lock users out of their accounts and mimic them. According to the CBC, Lesa Lowery is one of the many victims.…
Phishing Campaigns Exploit Cloudflare Workers to Harvest User Credentials
Cybersecurity researchers are raising alarms about phishing campaigns that exploit Cloudflare Workers to serve phishing sites designed to harvest user credentials associated with Microsoft, Gmail, Yahoo!, and cPanel Webmail. This attack method, known as transparent phishing or adversary-in-the-middle (AitM)…
Navigating the Danger Zone: Discord’s Battle Against Malware
In a recent six-month investigation, cybersecurity firm Bitdefender discovered a disturbing trend: fraudsters are using Discord, a popular communication platform, to distribute malware and carry out phishing attacks. The Rise of Malicious Links The research, in which Bitdefender shows over 50,000…