DigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation Oversight https://firewall.firm.in/wp-content/uploads/2024/07/ssl.png Jul 31, 2024Ravie LakshmananWeb Security / Compliance Certificate authority (CA) DigiCert has warned that it will be revoking a subset of SSL/TLS certificates within 24 hours due to an oversight with how it verified if a digital certificate is issued to the rightful owner of a domain. The ...

Cybercriminals Target Polish Businesses with Agent Tesla and Formbook Malware https://firewall.firm.in/wp-content/uploads/2024/07/malware.png Jul 30, 2024Ravie LakshmananMalware / Cyber Threat Cybersecurity researchers have detailed widespread phishing campaigns targeting small and medium-sized businesses (SMBs) in Poland during May 2024 that led to the deployment of several malware families like Agent Tesla, Formbook, and Remcos RAT. Some of the other regions targeted by the ...

French Authorities Launch Operation to Remove PlugX Malware from Infected Systems https://firewall.firm.in/wp-content/uploads/2024/07/france.png Jul 27, 2024NewsroomMalware / Cyber Intelligence French judicial authorities, in collaboration with Europol, have launched a so-called “disinfection operation” to rid compromised hosts of a known malware called PlugX. The Paris Prosecutor’s Office, Parquet de Paris, said the initiative was launched on July 18 and that it’s expected ...

Bharath Data Protection Officer program launched at Rashtriya Raksha University Puducherry – ET CISO https://etimg.etb2bimg.com/thumb/msid-111841713,imgsize-33986,width-1200,height=765,overlay-etciso/ot-security/bharath-data-protection-officer-program-launched-at-rashtriya-raksha-university-puducherry.jpg Puducherry Speaker Embalam Selvam during the launch of Bharath Data Protection Officer Certificate and Training Program at Rashtriya Raksha University Puducherry campus The Bharath Data Protection Officer (DPO) training and certification program has been inaugurated by the Speaker of Puducherry, Embalam Selvam, at the Rashtriya ...

Alert: HotPage Adware Disguised as Ad Blocker Installs Malicious Kernel Driver https://firewall.firm.in/wp-content/uploads/2024/07/shell.png Jul 18, 2024NewsroomMalware / Windows Security Cybersecurity researchers have shed light on an adware module that purports to block ads and malicious websites, while stealthily offloading a kernel driver component that grants attackers the ability to run arbitrary code with elevated permissions on Windows hosts. The malware, dubbed ...

Threat Prevention & Detection in SaaS Environments – 101 https://firewall.firm.in/wp-content/uploads/2024/07/adaptive.png Identity-based threats on SaaS applications are a growing concern among security professionals, although few have the capabilities to detect and respond to them. According to the US Cybersecurity and Infrastructure Security Agency (CISA), 90% of all cyberattacks begin with phishing, an identity-based threat. Throw in attacks that use stolen credentials, ...

AT&T Confirms Data Breach Affecting Nearly All Wireless Customers https://firewall.firm.in/wp-content/uploads/2024/07/att.png American telecom service provider AT&T has confirmed that threat actors managed to access data belonging to “nearly all” of its wireless customers as well as customers of mobile virtual network operators (MVNOs) using AT&T’s wireless network. “Threat actors unlawfully accessed an AT&T workspace on a third-party cloud platform and, between ...

Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool https://firewall.firm.in/wp-content/uploads/2024/07/palo.png Jul 11, 2024NewsroomVulnerability / Enterprise Security Palo Alto Networks has released security updates to address five security flaws impacting its products, including a critical bug that could lead to an authentication bypass. Cataloged as CVE-2024-5910 (CVSS score: 9.3), the vulnerability has been described as a case of missing authentication ...

New Ransomware Group Exploiting Veeam Backup Software Vulnerability https://firewall.firm.in/wp-content/uploads/2024/07/gib.png Jul 10, 2024NewsroomData Breach / Malware A now-patched security flaw in Veeam Backup & Replication software is being exploited by a nascent ransomware operation known as EstateRansomware. Singapore-headquartered Group-IB, which discovered the threat actor in early April 2024, said the modus operandi involved the exploitation of CVE-2023-27532 (CVSS score: 7.5) to ...

Trojanized jQuery Packages Found on npm, GitHub, and jsDelivr Code Repositories https://firewall.firm.in/wp-content/uploads/2024/07/jquery.png Jul 09, 2024NewsroomSupply Chain Attack / Web Security Unknown threat actors have been found propagating trojanized versions of jQuery on npm, GitHub, and jsDelivr in what appears to be an instance of a “complex and persistent” supply chain attack. “This attack stands out due to the high variability ...