Sophos Acquires Secureworks
Transforming the future, together
Similar Posts
China-linked Salt Typhoon Exploits Critical Cisco Vulnerability to Target Canadian Telecom
Bys sThe Canadian Centre for Cyber Security and the U.S. Federal Bureau of Investigation (FBI) have issued an advisory warning of cyber attacks mounted by the China-linked Salt Typhoon actors to breach major global telecommunications providers as part of a cyber espionage campaign. The attackers exploited a critical Cisco IOS XE software (CVE-2023-20198, CVSS score: 10.0)…
Terrible tales of opsec oversights: How cybercrooks get themselves caught
Bys sConnor Jones reports: They say that success breeds complacency, and complacency leads to failure. For cybercriminals, taking too many shortcuts when it comes to opsec delivers a little more than that. In these cases, failure might mean the criminal doesn’t get access to the server with the most valuable data to copy, or fails to…
Russia arrests young cybersecurity entrepreneur on treason charges
Bys sDaryna Antoniuk reports: A 21-year-old tech entrepreneur and cybersecurity specialist was arrested in Moscow on treason charges late last week — the latest case targeting Russia’s own tech community. Details of the case are classified, but Russian media say Timur Kilin may have drawn official ire after publicly criticizing the state-owned messaging app Max and the government’s anti-cybercrime legislation…….
GlobalX, Airline for Trump’s Deportations, Hacked
Bys sJoseph Cox and Jaso Koebler report: Hackers have targeted GlobalX Air, one of the main airlines the Trump administration is using as part of its deportation efforts, and stolen what they say are flight records and passenger manifests of all of its flights, including those for deportation, 404 Media has learned. The data, which the…
Resource: NY DFS Issues New Cybersecurity Guidance to Address Risks Associated with the Use of Third-Party Service Providers
Bys sFrom NY DFS: New York State Department of Financial Services (DFS) Acting Superintendent Kaitlin Asrow today issued new cybersecurity guidance addressing the risks associated with entities becoming increasingly reliant on third-party service providers (TPSPs). The guidance builds on the Department’s ongoing work to protect New Yorkers and DFS-regulated entities from cybersecurity risks through its nation-leading……
Cyber Criminals Exploit Open-Source Tools to Compromise Financial Institutions Across Africa
Bys sCybersecurity researchers are calling attention to a series of cyber attacks targeting financial organizations across Africa since at least July 2023 using a mix of open-source and publicly available tools to maintain access. Palo Alto Networks Unit 42 is tracking the activity under the moniker CL-CRI-1014, where “CL” refers to “cluster” and “CRI” stands for…