News & Updates

N. Korean Kimsuky Hackers Using New Recon Tool ReconShark in Latest Cyberattacks

/
The North Korean state-sponsored threat actor known as Kimsuky has been discovered using a new reconnaissance tool called ReconShark as part of an ongoing global campaign.
“[ReconShark] is actively delivered to specifically targeted individuals through spear-phishing emails, OneDrive links leading to document downloads, and the execution of malicious macros,” SentinelOne researchers Tom Hegel
News & Updates

Lack of Visibility: The Challenge of Protecting Websites from Third-Party Scripts

/
Third-party apps such as Google Analytics, Meta Pixel, HotJar, and JQuery have become critical tools for businesses to optimize their website performance and services for a global audience. However, as their importance has grown, so has the threat of cyber incidents involving unmanaged third-party apps and open-source tools. Online businesses increasingly struggle to maintain complete visibility
News & Updates

Fleckpe Android malware totaled +620K downloads via Google Play Store

/

Fleckpe is a new Android subscription Trojan that was discovered in the Google Play Store, totaling more than 620,000 downloads since 2022. Fleckpe is a new Android subscription Trojan that spreads via Google Play, the malware discovered by Kaspersky is hidden in photo editing apps, smartphone wallpaper packs, and other general-purpose apps. The malicious campaign […]

The post Fleckpe Android malware totaled +620K downloads via Google Play Store appeared first on Security Affairs.

News & Updates

The Merck appeal: cyber insurance and the definition of war

/

Pharmaceutical firm Merck recently won an appeal that could mean its insurers will have to pay up on a $1.4-billion judgment related to the NotPetya cyberattack in 2017. The New Jersey appellate division judges hearing the appeal judge noted that the plain definition of war applies to the various insurance policies and that a cyberattack against an accounting firm not engaged in hostilities, while criminal and based on ill-will, was not tantamount to an act of war.

As detailed in the judges’ decision, many of the original defendants settled their portion of the insurance claim with Merck. In a separate yet parallel case involving multinational food and beverage company Mondelez International and Zurich American Insurance, a settlement was also reached, missing the opportunity to have a telling effect and adjustment on how cyber insurance will be treated going forward.

To read this article in full, please click here

News & Updates

Fleckpe Android Malware Sneaks onto Google Play Store with Over 620,000 Downloads

/
A new Android subscription malware named Fleckpe has been unearthed on the Google Play Store, amassing more than 620,000 downloads in total since 2022.
Kaspersky, which identified 11 apps on the official app storefront, said the malware masqueraded as legitimate photo editing apps, camera, and smartphone wallpaper packs. The apps have since been taken down.
The operation primarily targeted users
Cybersecurity Tools

What Is IPAM in Networking and Cybersecurity?

/

Managing thousands of IP-connected devices can become a great challenge for many organizations. But imagine trying to keep track of which IP Address is assigned to each device, which DHCP lease is up, or when the IP has changed? In this article, you’ll find out what is IPAM, what are the IPAM components, what are the […]

The post What Is IPAM in Networking and Cybersecurity? appeared first on Heimdal Security Blog.

News & Updates

Russian Hackers Leverage WinRAR to Unleash Wiper Malware on Ukrainian State Networks

/
Security experts spotted Russian hackers leveraging the WinRAR archiving program
to spread wiper malware on Ukrainian state networks in a bid to destroy critical
data on government devices and disrupt services.

In a security advisory describing the hackers’ methods, Ukraine’s Computer
Emergency Response Team (CERT-UA) said they breached the state network by
exploiting compromised VPN accounts that lacked multi-factor authentication.

Once inside, perpetrators deployed scripts designed to wipe f

News & Updates

Cisco Warns of Vulnerability in Popular Phone Adapter, Urges Migration to Newer Model

/
Cisco has warned of a critical security flaw in SPA112 2-Port Phone Adapters that it said could be exploited by a remote attacker to execute arbitrary code on affected devices.
The issue, tracked as CVE-2023-20126, is rated 9.8 out of a maximum of 10 on the CVSS scoring system. The company credited Catalpa of DBappSecurity for reporting the shortcoming.
The product in question makes it possible
Security

Weekly Update 346

/

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It’s Zero Trust tailor-made for Okta. Book

News & Updates

$10M Is Yours If You Can Get This Guy to Leave Russia

/
The U.S. government this week put a $10 million bounty on the head of a Russian man who for the past 18 years operated Try2Check, one of the cybercrime underground’s most trusted services for checking the validity of stolen credit card data. U.S. authorities say 43-year-old Denis Kulkov’s card-checking service made him at least $18 million, which he used to buy a Ferrari, Land Rover, and other luxury items.
Exit mobile version