ESET research reveals that common Android stalkerware apps are riddled with vulnerabilities that further jeopardize victims and expose the privacy and security of the snoopers themselves Mobile stalkerware, also known as spouseware, is monitoring software silently installed by a stalker onto a victim’s device without the victim’s knowledge. Generally, the stalker needs to have physical…
DarkSide, the group behind the Colonial Pipeline cyberattack that generated fuel shortages and price increases across the United States, is shutting down. This may be due to pressure from the US government. The cybercriminals’ group blog, that was used for naming and shaming, as well as the website used for ransom and CDN, were all…
Cisco Systems has agreed to purchase Kenna Security to help customers more effectively prioritise vulnerabilities based on threat intelligence and business impact. The San Jose, Calif.-based networking giant said its proposed acquisition of Santa Clara, Calif.-based Kenna will make it easier for organizations to work cross-functionally to rapidly identify, prioritize and remediate cyber risk. This…
Ransomware attacks continue to be in the headlines everywhere, and are also an almost weekly reoccurring subject in the SANS Newsbites. As useful as many of the reports are that security firms and researchers publish on the subject, they often focus heavily on one particular incident or type of ransomware, and the associated “indicators of…
Governance & Risk Management , Identity & Access Management , Identity Governance & Administration Insights on RSA Conference, Secure Identity and XDR’s Emerging Role Tom Field (SecurityEditor) • May 17, 2021 Rohit Ghai, RSA Group CEO The past year has been a milestone one for RSA and…
Orlando: The former confidant of Representative Matt Gaetz pleaded guilty on Monday (Tuesday AEST) in federal court in Florida to a range of charges, including sex trafficking a 17-year-old girl, creating an ominous development for the firebrand right-wing congressman. Joel Greenberg, the former confidant of associate of Gaetz, made the plea as part of a…
Business Continuity Management / Disaster Recovery , Fraud Management & Cybercrime , Governance & Risk Management Department of Health and Health Service Executive Both Were Targeted Tony Morbin (@tonymorbin) • May 17, 2021 Irish Department of Health headquarters Two healthcare agencies in Ireland suffered ransomware attacks last week that appear to be related,…
Branches of insurance giant AXA based in Thailand, Malaysia, Hong Kong, and the Philippines have been struck by a ransomware cyber attack. As seen by BleepingComputer yesterday, the Avaddon ransomware group claimed on their leak site that they had stolen 3 TB of sensitive data from AXA’s Asian operations. Additionally, BleepingComputer observed an ongoing Distributed Denial of Service (DDoS)…
It was possible to exploit an Unauthenticated Time-Based Blind SQL Injection vulnerability in the Spam protection, AntiSpam, FireWall by CleanTalk WordPress Plugin before 5.153.4. The update_log function in lib/Cleantalk/ApbctWP/Firewall/SFW.php included a vulnerable query that could be injected via….
The attack on the Colonial Pipeline fuel distribution system in the United States is causing repercussions for the operators of the Darkside ransomware group behind it, sparking fear among other cybercriminals that they will be targeted by law enforcement. Security vendor Intel471 said it had obtained an announcement from the DarkSide gang, posted to the…
