Microsoft’s Threat Intelligence Centre has found a new zero-day vulnerability in SolarWinds software, which is currently being exploited by a Chinese hacking group. SolarWinds network monitoring software was in the headlines at the end of last year and throughout the first half of 2021 after a software update was compromised and used to hack around 18,000 customers…
Cybercrime , Fraud Management & Cybercrime , Social Engineering Proofpoint Describes Campaign That Uses Conference as a Lure Doug Olenick (DougOlenick) • July 14, 2021 A spear-phishing letter sent by TA453 using University of London’s School of Oriental and African Studies letterhead to fool its victims (Source: Proofpoint) The Iranian advanced persistent threat…
WASHINGTON: Homeland Security’s Cybersecurity and Infrastructure Security Agency issued an emergency directive last night requiring the Pentagon and all other executive branch agencies to fix a Microsoft Windows vulnerability that could allow attackers to gain control of entire networks. The vulnerability, formally called CVE-2021-34527 and dubbed PrintNightmare by security researchers, affects a Microsoft Windows service…
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Fraud Risk Management Experts Dispute Findings of Report by International Institute for Strategic Studies Rashmi Ramesh • July 14, 2021 Some security experts are questioning the findings of a recent report by the International Institute for Strategic Studies, a London-based think tank, that…
The former boss of the Japanese car maker Nissan, who fled the country in a daring escape while under house arrest, has been talking about his experience. Speaking exclusively to BBC’s Business editor Simon Jack, from his home in Beirut, Carlos Ghosn said he had to disguise himself, take a fast train to a regional…
Microsoft rolled out Patch Tuesday updates for the month of July with fixes for a total of 117 security vulnerabilities, including nine zero-day flaws, of which four are said to be under active attacks in the wild, potentially enabling an adversary to take control of affected systems. Of the 117 issues, 13 are rated Critical,…
Four Iranian intelligence officials have been charged with plotting to kidnap a New York-based journalist critical of Iran, US prosecutors have said. While the indictment did not name the target, Masih Alinejad, an Iranian-American author and activist, has said it was her. She told BBC World News about learning she was a target for kidnapping…
Music group Duran Duran decided to collaborate with artificial intelligence (AI) software to create their new music video, Invisible. But what would the band, which has sold over 100 million records and has been performing for five decades, make of the finished product? BBC Click’s Lara Lewington speaks to Nick Rhodes to find out more….
Less than 8 per cent of Transport for NSW staff and 5 per cent of Sydney Trains staff had completed a cyber security training course as of January 2021. However, TfNSW has advised that it will implement mandatory annual training from July 2021 for all staff. Transport for NSW in February confirmed it had lost…
Cybersecurity agencies in Australia and the U.S. are warning of an actively exploited vulnerability impacting ForgeRock’s OpenAM access management solution that could be leveraged to execute arbitrary code on an affected system remotely.“The [Australian Cyber Security Centre] has observed actors exploiting this vulnerability to compromise multiple hosts and deploy additional malware and tools,”
