The infamous Lazarus Group actor has been targeting vulnerable versions of Microsoft Internet Information Services (IIS) servers as an initial breach route to deploy malware on targeted systems.
The findings come from the AhnLab Security Emergency response Center (ASEC), which detailed the advanced persistent threat’s (APT) continued abuse of DLL side-loading techniques to deploy malware.
“The

ESET found a new remote access trojan (RAT), dubbed AhRat, on the Google Play Store that was concealed in an Android screen recording app. ESET researchers have discovered an Android app on Google Play that was hiding a new remote access trojan (RAT) dubbed AhRat. The app, named iRecorder – Screen Recorder, has more than […]

The post AhRat Android RAT was concealed in iRecorder app in Google Play appeared first on Security Affairs.

Like most CSOs, Joe Sullivan was drawn to the role to help prevent cybercrimes. His role as CSO of Uber was something of a shift from his previous job prosecuting cybercriminals as an assistant US attorney, but closer to the tip of the cybersecurity spear. As a top-level professional in the business of defending against the bad guys, it was unexpected and not a little ironic that he would find himself on the other side of the justice system.

On May 4, 2023, Sullivan was sentenced to three years of probation for felony obstruction and misprision for not reporting a 2016 breach at rideshare and delivery company Uber that threatened to expose the data of 600,000 drivers and the personal information associated with 57 million riders. In an interview with CSO, Sullivan said he’s less concerned with his personal fate than the possibility that the entire episode will cause CISOs to become more concerned about protecting themselves from aggressive prosecution than protecting their organizations.

To read this article in full, please click here

Was haben DHL-Lieferbetrug und die Illuminaten gemeinsam? Eine gefälschte
E-Mail-Adresse.

Vermeintliche DHL-Lieferankündigungen erfreuen sich wieder größter Beliebtheit.
Gleiches gilt für – und das ist etwas überraschend – Einladungen, sich den
Illuminaten anzuschließen.

Phishing-E-Mails, die vorgeben, aus der Feder von DHL zu stammen, haben diese
Woche wieder die Runde gemacht und blieben in den Bitdefender Antispam Labs
natürlich nicht unbemerkt. Ganz konkret landeten die E-Mails, die als
ve

Seit dem 24. April 2023 ergeben sich aus Artikel L12-10-1 des französischen
Versicherungsgesetzes
[https://www.legifrance.gouv.fr/codes/id/LEGISCTA000047048148] ([1]
[https://www.twobirds.com/en/insights/2023/france/data-breaches-and-insurance-coverage-in-france#section1]
) neue Vorschriften für Unternehmen und Privatpersonen in Ausübung ihrer
beruflichen Tätigkeit, die von ihrem Versicherer eine Entschädigung für Verluste
und Schäden erhalten wollen, die durch eine Datenverletzungen entstanden

Apple und Google haben angekündigt, dass sie gemeinsam gegen die
Sicherheitsrisiken vorgehen wollen, die mit AirTags und anderen Ortungsgeräten
einhergehen.

In einer gemeinsamen Pressemitteilung
[https://www.apple.com/newsroom/2023/05/apple-google-partner-on-an-industry-specification-to-address-unwanted-tracking/]
gaben die beiden Technologieriesen Pläne bekannt, gemeinsam gegen das wachsende
Problem des Missbrauch von Bluetooth-Ortungsgeräten für unerwünschtes Tracking
vorgehen zu wollen.

Ur

Companies are starting to address AI misuse. At Google I/O, for example, executives promised its AI has safety measures.