University admission platform Leverage EDU exposed student passports
The popular university admission platform Leverage EDU leaked almost 240,000 sensitive files, including students’ passports, financial documents, certificates, and exam...
Month: May 2023
Lancefly APT Hackers Using Custom Backdoor to Attack Government Orgs
The cybersecurity researchers at Symantec Threat Labs recently discovered APT hacking group has been utilizing the specialized ‘Merdoor’ backdoor malware...
U.S. Offers $10 Million Bounty for Capture of Notorious Russian Ransomware Operator
A Russian national has been charged and indicted by the U.S. Department of Justice (DoJ) for launching ransomware attacks against...
Increase in Malicious RAR SFX files, (Wed, May 17th)
This isn’t a new attack vector, but I’ve found many malicious RAR SFX files in the wild for a few...
Here’s what proactive security looks like
Proactive security will consist of good security posture, a focus on prioritization, and extensive practice. Article Link: Here’s what proactive...
Preparing for federal supply chain security standardization
In 2021, the Biden Administration published the Executive Order on Improving the Nation’s Cybersecurity (EO 14028), setting off an agency-wide...
Malicious open-source components threatening digital infrastructure
A new risk emerges in the digital era, where open-source software has become a fundamental pillar in developing innovative applications....
Infamous cybercrime marketplace offers pre-order service for stolen credentials
Infostealer malware, which consist of code that infects devices without the user’s knowledge and steals data, remains widely available to...
ISC Stormcast For Wednesday, May 17th, 2023 https://isc.sans.edu/podcastdetail/8500, (Wed, May 17th)
Article Link: https://isc.sans.edu/diary/rss/29854 1 post - 1 participant Read full topic
The CIS Benchmarks Community consensus process
The Center for Internet Security (CIS) recently celebrated 20 years of bringing confidence to the connected world with consensus-based security...