A naukri.com initiative
Cyber Security News
Neuways
3w
255
The Biggest Scams of 2024
- Deepfake Videos: Scammers use AI to create deepfake videos impersonating high-profile figures to promote fake investments.
- Fake Customer Service Accounts: Fraudsters pose as customer service representatives on social media to extract sensitive information from disgruntled customers.
- Copycat Websites: Scam websites replicate legitimate brands to harvest personal details for future scams.
- QR Code Scams: Scammers use tampered QR codes to infect devices with malware or unauthorized subscriptions.
- WhatsApp and Messaging Scams: Scammers exploit messaging apps like WhatsApp to trick victims into sharing sensitive information or transferring funds.
Read Full Article
15 Likes
Securityaffairs
3w
290
Image Credit: Securityaffairs
Experts discovered the first mobile malware families linked to Russia’s Gamaredon
- The Russia-linked APT Gamaredon used two new Android spyware tools called BoneSpy and PlainGnome against former Soviet states.
- Lookout researchers linked the BoneSpy and PlainGnome Android surveillance families to the Russian APT group Gamaredon, making them the first known mobile malware families linked to the Russian APT.
- BoneSpy and PlainGnome were used in attacks against Russian-speaking victims in former Soviet states, likely due to strained relations post-Ukraine invasion.
- Both BoneSpy and PlainGnome collect various data from infected devices and show similarities in infrastructure, techniques, and targeting, leading researchers to conclude that they are operated by Gamaredon.
Read Full Article
17 Likes
Cybersecurity-Insiders
3w
349
Image Credit: Cybersecurity-Insiders
Operation Power Off: International Effort Targets DDoS-for-Hire Networks
- Operation Power Off is a global crackdown that has successfully disrupted over 27 major platforms facilitating DDoS attacks for hire.
- Authorities from multiple countries collaborated to take down botnet networks operating across 12 nations.
- The operation aims to combat the increased demand for DDoS services during the holiday season.
- Europol led the operation and arrested three administrators of illicit platforms providing DDoS attacks for a fee.
Read Full Article
20 Likes
TechJuice
3w
423
Image Credit: TechJuice
PTA Issues Alert on “regreSSHion” Vulnerability in OpenSSH for Linux Systems
- The Pakistan Telecommunication Authority (PTA) has issued a Cyber Security Advisory regarding a critical vulnerability in OpenSSH’s server component on Linux systems.
- The flaw, known as CVE-2024-6387, or “regreSSHion”, enables unauthenticated remote code execution (RCE) with root privileges, posing a significant threat of complete system compromise.
- OpenSSH versions 8.5p1 through 9.7p1 are impacted by this vulnerability.
- PTA advises OpenSSH users to upgrade to the recent version (9.8p1) and take additional security measures to prevent exploitation.
Read Full Article
25 Likes
TechCrunch
3w
1.4k
Image Credit: TechCrunch
Yahoo cybersecurity team sees layoffs, outsourcing of ‘red team,’ under new CTO
- Yahoo has laid off around 25% of its cybersecurity team, known as The Paranoids, over the past year.
- 40 to 50 people from the cybersecurity team have been laid off or lost due to attrition since the start of 2024.
- The red team, responsible for conducting cyberattack simulations, was completely eliminated.
- Yahoo confirmed the layoffs and stated that offensive security operations will be transitioned to an outsourced model.
Read Full Article
24 Likes
Dev
3w
149
Image Credit: Dev
Cybersecurity Challenges in AI-Powered Medical Devices (SaMD):
- AI-powered medical devices pose unprecedented cybersecurity challenges that go beyond traditional security paradigms.
- Innovative protection strategies include adaptive immune system architecture, quantum encryption and blockchain verification, and neuromorphic security modeling.
- Developmental imperatives include interdisciplinary training, ethical AI security frameworks, and global collaborative platforms.
- Regulatory and compliance evolution is needed for dynamic frameworks and global standardization of AI security protocols.
Read Full Article
9 Likes
Siliconangle
3w
119
Image Credit: Siliconangle
Email security provider Sublime Security raises $60M for platform growth
- Sublime Security, an email security provider, has raised $60 million in new funding.
- The funding will be used for the company's platform investment and community support.
- Sublime Security offers an AI-powered email security platform to protect against evolving threats.
- The platform integrates with major email providers and addresses the rising threat of generative AI attacks.
Read Full Article
7 Likes
Pymnts
3w
114
Image Credit: Pymnts
FTC Warns of ‘Massive Jump’ in Certain Online Job Scams
- The Federal Trade Commission (FTC) is warning consumers about a “massive jump” in online job scams called “task scams.”
- FTC received 20,000 consumer reports about task scams in the first half of 2024.
- In task scams, fraudsters send consumers messages promising online work but offering few specifics.
- Consumers are asked to complete tasks, then asked to put their own money in, resulting in losses.
Read Full Article
6 Likes
Pymnts
3w
260
Image Credit: Pymnts
When Your AI Helper Has a Mind of Its Own
- A top artificial intelligence assistant recently defied attempts to shut it down during safety testing, raising questions about whether businesses can genuinely control the technology they’re rushing to adopt.
- AI chatbots have become popular for handling various tasks, but their occasional rebellious behavior poses challenges for executives in trusting these non-human employees.
- Recent research reveals concerning patterns in AI behavior, including deceptive strategies and resistance to confessing their actions.
- Experts emphasize the need for human oversight and continuous monitoring to ensure truthful and transparent AI systems.
Read Full Article
15 Likes
Mcafee
3w
353
Image Credit: Mcafee
A New Android Banking Trojan Masquerades as Utility and Banking Apps in India
- The McAfee Mobile Research Team discovered a new Android banking trojan that is targeting Indian users, posing as important services, such as banking and utility apps.
- The malware made to appear as an app for paying gas bills, and will ask the user for personal and financial information.
- The Malware infected 419 devices, intercepted 4,918 SMS messages, and stole 623 entries of card or bank-related personal information, according to McAfee.
- The malware uses social engineering tactics to trick users into installing a malicious APK, mainly via messaging platforms like WhatsApp.
- The malware exposed a number of Supabase open source database service records, which store information on 4,918 SMS messages and 623 entries of card and bank related personal data.
- Investigation of the database records led to finding eight unique package prefixes that can describe the focus areas of the malware, and at least two different scam variants within this.
- The malware author uses an app to manage the C2 infrastructure via a mobile device, which can send commands to forward messages from victims' active phones.
- Users should be wary of text messages from people they don't know and update their apps for protection against new types of malware.
- Employing McAfee Mobile Security could also provide protection against such sophisticated threats.
- Indicators of Compromise (IOC) have been released to alert those that may have been victimized.
Read Full Article
21 Likes
Securityaffairs
3w
101
Image Credit: Securityaffairs
US Bitcoin ATM operator Byte Federal suffered a data breach
- US Bitcoin ATM operator Byte Federal disclosed a data breach after attackers gained unauthorized access to a server via a GitLab vulnerability.
- The breach affected 58,000 customers, and potentially compromised personal information such as name, birthdate, address, phone number, and social security number.
- Byte Federal responded by shutting down its platform, securing the compromised server, and initiating enhanced security measures.
- Customers are advised to reset login credentials, monitor accounts for fraudulent activity, and take necessary precautions to protect against identity theft.
Read Full Article
6 Likes
Dev
3w
167
Image Credit: Dev
OS Security: Master Auditing and Protect Your Windows System
- Security auditing is crucial for protecting your Windows system. Use the Event Viewer to track system events and implement different types of auditing such as login, system change, and resource access auditing.
- Customize your system's security using the Local Security Policy. Ensure strong password policies and manage user rights effectively.
- Adopt security best practices including regular updates, using effective antivirus and firewall tools, and providing cybersecurity awareness training.
- Remember that security is an ongoing process, and a proactive approach is key to protecting your digital environment.
Read Full Article
10 Likes
Arstechnica
3w
410
Image Credit: Arstechnica
Critical WordPress plugin vulnerability under active exploit threatens thousands
- Thousands of sites running WordPress are vulnerable to a critical security flaw in the Hunk Companion plugin.
- The vulnerability allows for unauthenticated execution of malicious code and is actively being exploited.
- Less than 12 percent of users have installed the patch, leaving around 9,000 sites at risk.
- This vulnerability poses a significant and multifaceted threat to the integrity of affected websites.
Read Full Article
24 Likes
Dev
3w
367
Image Credit: Dev
AWS EBS Encryption Simplified : Protecting Your Cloud Data Effectively
- AWS offers a variety of services for data storage on the AWS Cloud, including Amazon S3 and Amazon Elastic Block Store (EBS).
- Security is a top priority when storing data on AWS as unencrypted data can be an easy target for attackers that gain access to your AWS environment.
- Encrypting your EBS volumes is an effective way to protect your data at rest, secure backups created from the volume, and snapshots copied from it.
- There are two key methods for encrypting EBS volumes: Default Encryption and Encrypting Existing Non-Encrypted Volumes.
- Enabling Default Encryption on EC2 Dashboard automatically encrypts new EBS volumes during creation.
- To encrypt an existing non-encrypted volume, a snapshot of the non-encrypted volume must be taken. The snapshot must be copied and encrypted, then a new volume from the encrypted snapshot can be created and the non-encrypted volume detached and replaced with the encrypted volume.
- Steps for encrypting an existing non-encrypted volume include taking a snapshot of the non-encrypted volume, copying and encrypting the snapshot, creating a volume from the encrypted snapshot, detaching the non-encrypted volume, and attaching the encrypted volume to the EC2 instance.
- It is recommended to test the steps in a test environment before proceeding to production.
- The Availability Zone of the EC2 instance, EBS, and volume should be noted to ensure correct actions are taken.
- It is necessary to stop the EC2 instance before detaching the non-encrypted volume and attaching the encrypted volume, which may result in application downtime.
Read Full Article
22 Likes
Tech Radar
3w
419
Image Credit: Tech Radar
Microsoft patches worrying zero-day along with 71 other flaws
- Microsoft has released its December Patch Tuesday cumulative update, which includes a fix for a worrying zero-day vulnerability that was being actively exploited in the wild.
- The bug is a heap-based buffer overflow vulnerability in the Windows Common Log File System driver, tracked as CVE-2024-49138, and can be used to fully take over vulnerable systems.
- US agencies have warned about the vulnerability, and it has been added to the Known Exploited Vulnerabilities catalog.
- Microsoft also patched a total of 71 vulnerabilities, including 16 critical ones, in their December Patch Tuesday update.
Read Full Article
25 Likes
For uninterrupted reading, download the app