Chinese APT Exploits BeyondTrust API Key to Access U.S. Treasury Systems and Documents https://firewall.firm.in/wp-content/uploads/2024/12/chinesehackers.png Dec 31, 2024Ravie LakshmananVulnerability / Incident Response The United States Treasury Department said it suffered a “major cybersecurity incident” that allowed suspected Chinese threat actors to remotely access some computers and unclassified documents. “On December 8, 2024, Treasury was notified by a third-party software service provider, ...

Year ender 2024: Biggest cyberattacks in India – ET CISO https://etimg.etb2bimg.com/thumb/msid-116817678,imgsize-48156,width-1200,height=765,overlay-etciso/cybercrime-fraud/year-ender-2024-biggest-cyberattacks-in-india.jpg The growing digitisation of data has led to a rise in cyberattacks, digital fraud, data breaches and operational failures. Cyberattacks globally rose by 76% within the first quarter of 2024, with India being one of the most impacted countries. Here are some of India’s biggest cyberattacks in 2024: BSNL ...

How much further will AI disrupt lives?, IT Security News, ET CISO Cyber threats are set to escalate with AI intensifying the sophistication of every scam-phishing, pig butchering, OTP fraud, digital arrest-and new ones likely emerging. Easy access to deepfake tools will make it easy to impersonate anyone in a virtual meeting. Voice cloning will become even harder to detect. ...

Chinese hackers breach US treasury; third-party alert triggers cybersecurity probe – ET CISO https://etimg.etb2bimg.com/thumb/msid-116817644,imgsize-886682,width-1200,height=765,overlay-etciso/data-breaches/chinese-hackers-breach-us-treasury-third-party-alert-triggers-cybersecurity-probe.jpg The US treasury department revealed on Monday that Chinese hackers managed to access several workstations and unclassified documents by breaching a third-party software service provider. The attack occurred earlier this month and is now being investigated as a major cybersecurity incident. The Treasury did not reveal ...

New U.S. DoJ Rule Halts Bulk Data Transfers to Adversarial Nations to Protect Privacy https://firewall.firm.in/wp-content/uploads/2024/12/data.png Dec 31, 2024Ravie LakshmananData Security / Privacy The U.S. Department of Justice (DoJ) has issued a final rule carrying out Executive Order (EO) 14117, which prevents mass transfer of citizens’ personal data to countries of concern such as China (including Hong Kong and Macau), Cuba, ...

Ransomware attack exposes database of one of France’s biggest IT companies with over 100,000 employees – ET CISO https://etimg.etb2bimg.com/thumb/msid-116817885,imgsize-1360918,width-1200,height=765,overlay-etciso/corporate/ransomware-attack-exposes-database-of-one-of-frances-biggest-it-companies-with-over-100000-employees.jpg French tech major Atos SE is reportedly been targeted by a ransomware attack. The company has confirmed that it is currently investigating claims by ransomware group Space Bears that announced compromising one of Atos’s databases. In these attacks, cybercriminals encrypt the ...

CISOs guide to mobile app and mobile API security in 2025, IT Security News, ET CISO Protectt.ai has revealed their perspectives on Mobile App and Mobile API Security trends in 2025. Mobile Apps Security Paradigm Shift The mobile-first era isn’t just upon us; it’s reshaping the very fabric of how we interact with technology. As businesses accelerate their mobile initiatives, ...

15,000+ Four-Faith Routers Exposed to New Exploit Due to Default Credentials https://firewall.firm.in/wp-content/uploads/2024/12/router.png Dec 28, 2024Ravie LakshmananVulnerability / Threat Intelligence A high-severity flaw impacting select Four-Faith routers has come under active exploitation in the wild, according to new findings from VulnCheck. The vulnerability, tracked as CVE-2024-12856 (CVSS score: 7.2), has been described as an operating system (OS) command injection bug affecting ...

Databases, access and carding: study reveals top cybercrime trends on the Indian dark web – ET CISO https://etimg.etb2bimg.com/thumb/msid-116732036,imgsize-7190,width-1200,height=765,overlay-etciso/cybercrime-fraud/databases-access-and-carding-study-reveals-top-cybercrime-trends-on-the-indian-dark-web.jpg Databases, access and carding — the most popular queries on the Indian dark web have become common knowledge Cybercriminals on the Indian dark web are most interested in databases, access to company infrastructure and bank card data. This is stated in a ...

Data-loss prevention company cyberhaven hit by breach, statement says – ET CISO https://etimg.etb2bimg.com/thumb/msid-116731150,imgsize-79476,width-1200,height=765,overlay-etciso/data-breaches/data-loss-prevention-company-cyberhaven-hit-by-breach-statement-says.jpg FILE PHOTO: Miniatures of people with computers are seen in front of binary codes and words ‘Cyber attack’ in this illustration taken July 19, 2023. REUTERS/Dado Ruvic/Illustration/File Photo Hackers compromised an employee of the data-protection company Cyberhaven and used the worker’s access to potentially steal sensitive information ...