NIST Requests Public Comments on FIPS 202, “SHA-3 Standard,” and SP 800-185, “SHA-3 Derived Functions”
NIST is in the process of a periodic review and maintenance of its cryptography standards and guidelines. Currently, we are…
July 2023
NIST Requests Public Comments on SP 800-135 Revision 1, Recommendation for Existing Application-Specific Key Derivation Functions
NIST is in the process of a periodic review and maintenance of its cryptography standards and guidelines. Currently, we are…
BlueBravo Deploys GraphicalProton Backdoor Against European Diplomatic Entities
The Russian nation-state actor known as BlueBravo has been observed targeting diplomatic entities throughout Eastern Europe with the goal of…
The Road to Redemption: Ransomware Recovery Strategies for Businesses
Ransomware attacks have become one of the most significant cybersecurity threats facing businesses and organizations today. These malicious attacks encrypt…
U.S. Government Contractor Maximus Hit by Massive Data Breach
U.S. government service contracting giant Maximus has disclosed a data breach warning that threat actors stole the personal data (including…
Dark Power Ransomware Abusing Vulnerable Dynamic-Link Libraries in Resolved API Flow
In a previously-published material, Heimdal® has analyzed the emergent Dark Power malware – a ransomware strain written in the NIM…
CoinsPaid blames North Korea-linked APT Lazarus for theft of $37M worth of cryptocurrency
Crypto-payments service provider CoinsPaid suffered a cyber attack that resulted in the theft of $37,200,000 worth of cryptocurrency. CoinsPaid, a…
Monitor Insider Threats but Build Trust First
The issue of how to prevent insider threats without infringing on employee privacy is one that has been a hot…
Weekly Update 358
Presently sponsored by: Kolide ensures that if a device isn’t secure, it can’t access your apps. It’s Device Trust for…
Cybersecurity Agencies Warn Against IDOR Bugs Exploited for Data Breaches
Cybersecurity agencies in Australia and the U.S. have published a joint cybersecurity advisory warning against security flaws in web applications…