A naukri.com initiative
Cyber Security News
TechCrunch
2w
347
Image Credit: TechCrunch
Someone is trying to recruit security researchers in bizarre hacking campaign
- An individual has been attempting to recruit security researchers in a bizarre hacking campaign.
- The person is using fake accounts with avatars of attractive women to contact cybersecurity professionals and researchers via direct messages.
- The recruited individuals are being offered up to $100,000 per month to hack and take control of Chinese websites.
- The exact motive or purpose of this recruitment campaign remains unclear and raises suspicions about potential malicious intentions.
Read Full Article
20 Likes
TronWeekly
2w
13
Image Credit: TronWeekly
Beyond Lazarus – North Korea’s”Dark Army” Stealing BILLIONS in Crypto
- The Lazarus Group, part of DPRK’s RGB, is responsible for major hacks, showcasing high technical skill.
- Recent hacks on WazirX and Bybit revealed a pattern of social engineering and malicious code to gain control over cold wallets.
- FBI has a dedicated unit to track DPRK hackers, while experts emphasize the need for strong security measures like 2FA and password managers.
- On-chain sleuths and security experts urge utilizing password managers and 2FA as a defense against sophisticated attacks.
Read Full Article
Like
Cybersecurity-Insiders
2w
160
Image Credit: Cybersecurity-Insiders
Russian Railways hit by DDoS Cyber Attack from Hacker Army
- Russian Railways faced a large-scale DDoS cyber attack, impacting its website and mobile application.
- Sale of tickets and rail operations remained unaffected, indicating limited scope of the attack.
- Efforts to restore online services were underway, with expected return to full functionality.
- Preliminary investigations point to a 'Hacker Army' allegedly funded by Ukraine's Military Intelligence as the orchestrators.
Read Full Article
9 Likes
Tech Radar
2w
39
Image Credit: Tech Radar
Top API testing firm APIsec exposed customer data during security lapse
- APIsec, a company specializing in API security testing, exposed sensitive customer data in an unprotected database.
- The database was discovered by cybersecurity researchers UpGuard and remained unsecured for several days.
- Affected customers were allegedly notified, but the exact number of people affected remains undisclosed.
- Unprotected databases continue to be a major cause of data leaks, emphasizing the importance of strong data security measures.
Read Full Article
2 Likes
Medium
2w
404
Image Credit: Medium
How These Top 3 Companies Were Cyberattacked and How You Can Prevent Yours from Losing Everything
- Trivago and Telefonica were attacked by the Wannacry virus.
- Uber successfully prevented a cyberattack due to their strong cybersecurity measures.
- Glovo experienced a cyberattack due to their inadequate infrastructure and lack of cybersecurity training.
- Implementing cybersecurity measures can help protect companies from cyberattacks.
Read Full Article
24 Likes
Tech Radar
2w
304
Image Credit: Tech Radar
Florida Department of State data breach may have exposed information of 500,000 people
- A hacker claims to have stolen sensitive information from the Florida Department of State.
- The stolen data includes email addresses of almost 500,000 people.
- The email addresses could be used in tailored phishing attacks.
- No confirmation or official statement has been released by Florida Department of State regarding the breach.
Read Full Article
18 Likes
Global Fintech Series
2w
160
Image Credit: Global Fintech Series
Innovis Partners with Alloy to Boost Fraud Protection via FailSafe Integration
- Alloy customers can leverage FailSafe within their process workflows to help fight fraud and manage risk.
- Innovis Data Solutions, Inc. announced its integration with Alloy to combat fraud and enable secure customer onboarding.
- The collaboration supports both companies' goals to minimize risk and provide real-time data and intelligence to fight fraud.
- The integration allows financial institutions to quickly access the FailSafe fraud suite, powered by Innovis data, to enhance the customer journey and fraud prevention.
Read Full Article
9 Likes
Securityaffairs
2w
239
Image Credit: Securityaffairs
CrushFTP CVE-2025-2825 flaw actively exploited in the wild
- Threat actors are actively exploiting the CrushFTP CVE-2025-2825 flaw, allowing unauthenticated access to unpatched devices.
- The vulnerability affects CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0, granting unauthorized access to attackers through remote and unauthenticated HTTP requests.
- Security researchers have identified approximately 1,800 vulnerable instances, with over 900 located in the US.
- CrushFTP recommends immediate action to address the vulnerability and suggests enabling the DMZ perimeter network as a temporary security measure.
Read Full Article
14 Likes
Socprime
2w
278
Image Credit: Socprime
Gamaredon Campaign Detection: russia-backed APT Group Targets Ukraine Using LNK Files to Spread Remcos Backdoor
- The Gamaredon APT, a Russia-linked group, is actively targeting Ukraine through the deployment of the Remcos backdoor via malicious LNK files disguised as war-related lures.
- Security experts recommend utilizing the SOC Prime Platform for AI-powered detection engineering and advanced threat hunting to identify Gamaredon Group attacks early on.
- Cisco Talos has identified an ongoing Gamaredon campaign using spear-phishing tactics to distribute weaponized LNK files posing as Office documents to deliver the Remcos backdoor.
- The Remcos RAT, utilized in the campaign, is a common tool for cybercriminals and has been previously employed by other Russia-backed hacking groups targeting Ukraine.
- Gamaredon's phishing campaigns exploit the theme of the Ukraine invasion, distributing malicious LNK files within ZIP archives under invasion-related filenames.
- The campaign employs obfuscated PowerShell scripts within the LNK files to download and execute the Remcos backdoor stealthily, using methods to avoid detection.
- The use of advanced techniques such as DLL sideloading and geo-fenced servers indicates Gamaredon's persistence in targeting Ukraine amidst geopolitical tensions.
- Organizations are advised to enhance their defenses against APT attacks, with tools like SOC Prime Platform offering advanced capabilities for collective cyber defense.
- Security professionals can leverage Uncoder AI for threat-informed detection engineering and language code analysis to strengthen their detection strategies.
- Gamaredon's continuous cyber-espionage campaigns against Ukraine underscore the need for proactive threat detection measures and staying updated on evolving adversary tactics.
Read Full Article
16 Likes
TechDigest
2w
139
Image Credit: TechDigest
UK Government plans to strengthen critical infrastructure with new cyber Bill
- The UK government is introducing a new Cyber Security and Resilience Bill to enhance the cyber defences of critical infrastructure.
- Approximately 1,000 service providers supplying essential IT services will be required to improve their cyber security measures.
- The government aims to increase public and investor confidence in digital services and reduce vulnerability to cyberattacks.
- The bill is part of broader government initiatives to strengthen the UK's cyber security and respond to emerging cyber threats.
Read Full Article
8 Likes
Siliconangle
2w
147
Image Credit: Siliconangle
Google marks Gmail’s 21st anniversary with launch of client-side end-to-end email encryption
- Google has introduced a new end-to-end email encryption solution for Gmail to make encrypted communication more accessible for organizations.
- The new encryption offering aims to reduce the complexity associated with secure enterprise messaging.
- The solution eliminates the need for certificate exchange and proprietary plugins, making it easier to implement and maintain.
- The feature allows senders to retain control over message access and is compliant with data privacy regulations.
Read Full Article
8 Likes
Siliconangle
2w
360
Image Credit: Siliconangle
Exabeam introduces Nova AI agent to streamline threat detection and response
- Exabeam Inc. introduces Exabeam Nova, an autonomous artificial intelligence agent.
- Exabeam Nova actively investigates cases and classifies threats based on real-world behavioral context.
- Exabeam claims that Nova provides up to an 80% increase in analyst productivity.
- Along with Exabeam Nova, the company also unveils new features to its New-Scale Platform, LogRhythm SIEM Platform, and NetMon network visibility solution.
Read Full Article
21 Likes
The New Stack
2w
404
Image Credit: The New Stack
How To Centralize Kubernetes Secrets Management With Vault
- Managing secrets in Kubernetes environments is crucial, and relying solely on K8s' built-in secrets can lead to security vulnerabilities and operational inefficiencies.
- Challenges with K8s secrets include storage in plaintext in etcd, hardcoded secrets, lack of encryption, limited access control, and rotation complexities.
- Using an external secrets store like HashiCorp Vault provides centralized secrets management, dynamic secret retrieval, access control enforcement, and automated rotation.
- Integrating K8s clusters with Vault involves using K8s authentication, dynamic secret retrieval, and tools like Vault Agent or Secrets Store CSI Driver for secret injection.
- Centralizing secrets in Vault across multiple clusters simplifies secret management, ensures consistency, and reduces the risk of exposure through misconfigurations.
- Avoiding direct Vault API calls by using the Secrets Store CSI Driver decouples applications from Vault, enhances security, and allows seamless secret updates.
- Vault with Secrets Store CSI Driver architecture involves Vault server, CSI daemonset, Secrets Store CSI Driver, and SecretProviderClass CRD for dynamic secret injection.
- Ensuring high availability, performance optimization, and following least privilege principles are crucial for successful deployment of Vault in large-scale K8s environments.
- Securing secrets in K8s with Vault goes beyond best practice, offering encryption, access control, automated rotation, and improved resilience for sensitive data protection.
- Centralizing secrets in Vault and utilizing the Secrets Store CSI Driver enhance security, reduce human errors, and improve operational efficiency in managing secrets at scale.
Read Full Article
24 Likes
The Verge
2w
39
Image Credit: The Verge
Gmail is making it easier for businesses to send encrypted emails to anyone
- Google is updating Gmail to allow enterprise users to send encrypted messages to any inbox.
- Unlike the current encryption feature, the new model does not require custom software or exchange of encryption certificates.
- The feature is initially available for Google enterprise users to send encrypted emails to other Gmail users within the same organization.
- The encrypted emails can be viewed and replied to by non-Gmail recipients through a restricted version of Gmail or via S/MIME if already configured.
Read Full Article
2 Likes
Tech Radar
2w
353
Image Credit: Tech Radar
Microsoft has its AI-powered Security Copilot discover a whole host of previously unknown vulnerabilities
- Microsoft used Security Copilot to scan open source bootloaders for vulnerabilities.
- It discovered 20 new flaws in just a short time.
- Microsoft says the AI tool saved the company at least a week of work.
- The vulnerabilities could be used to bypass Secure Boot and install stealthy bootkits.
Read Full Article
21 Likes
For uninterrupted reading, download the app