Webinar Alert: Learn How ITDR Solutions Stop Sophisticated Identity Attacks https://firewall.firm.in/wp-content/uploads/2024/07/silver.png Jul 05, 2024The Hacker NewsCybersecurity / Identity Protection Identity theft isn’t just about stolen credit cards anymore. Today, cybercriminals are using advanced tactics to infiltrate organizations and cause major damage with compromised credentials. The stakes are high: ransomware attacks, lateral movement, and devastating data breaches. Don’t be caught off ...

The Emerging Role of AI in Open-Source Intelligence https://firewall.firm.in/wp-content/uploads/2024/07/sasns.png Jul 03, 2024The Hacker NewsOSINT / Artificial Intelligence Recently the Office of the Director of National Intelligence (ODNI) unveiled a new strategy for open-source intelligence (OSINT) and referred to OSINT as the “INT of first resort”. Public and private sector organizations are realizing the value that the discipline can provide but ...

GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others https://firewall.firm.in/wp-content/uploads/2024/07/gitlab.jpg Jun 28, 2024NewsroomSoftware Security / DevOps GitLab has released security updates to address 14 security flaws, including one critical vulnerability that could be exploited to run continuous integration and continuous deployment (CI/CD) pipelines as any user. The weaknesses, which affect GitLab Community Edition (CE) and Enterprise Edition (EE), ...

Kimsuky Using TRANSLATEXT Chrome Extension to Steal Sensitive Data https://firewall.firm.in/wp-content/uploads/2024/06/north.png Jun 28, 2024NewsroomCyber Espionage / Cyber Attack The North Korea-linked threat actor known as Kimsuky has been linked to the use of a new malicious Google Chrome extension that’s designed to steal sensitive information as part of an ongoing intelligence collection effort. Zscaler ThreatLabz, which observed the activity in early ...

Banks told to stay vigilant amid intel on cyberattack threat – ET CISO https://etimg.etb2bimg.com/thumb/msid-111356132,imgsize-28516,width-1200,height=765,overlay-etciso/cybercrime-fraud/banks-told-to-stay-vigilant-amid-intel-on-cyberattack-threat.jpg Banks across the country have been put on alert amid tip-offs received by the regulator on possible cyberattacks. They have been told to proactively monitor their systems for threat detection on a 24/7 basis. “In the light of credible threat intelligence received regarding potential cyberattacks, regulated ...

Google to Block Entrust Certificates in Chrome Starting November 2024 https://firewall.firm.in/wp-content/uploads/2024/06/dv.png Jun 29, 2024NewsroomCybersecurity / Website Security Google has announced that it’s going to start blocking websites that use certificates from Entrust starting around November 1, 2024, in its Chrome browser, citing compliance failures and the certificate authority’s inability to address security issues in a timely manner. “Over the past ...

Rust-Based P2PInfect Botnet Evolves with Miner and Ransomware Payloads https://firewall.firm.in/wp-content/uploads/2024/06/botnet.png The peer-to-peer malware botnet known as P2PInfect has been found targeting misconfigured Redis servers with ransomware and cryptocurrency miners. The development marks the threat’s transition from what appeared to be a dormant botnet with unclear motives to a financially motivated operation. “With its latest updates to the crypto miner, ransomware ...

ExCobalt Cyber Gang Targets Russian Sectors with New GoRed Backdoor https://firewall.firm.in/wp-content/uploads/2024/06/russia.png Jun 22, 2024NewsroomCyber Espionage / Threat Intelligence Russian organizations have been targeted by a cybercrime gang called ExCobalt using a previously unknown Golang-based backdoor known as GoRed. “ExCobalt focuses on cyber espionage and includes several members active since at least 2016 and presumably once part of the notorious Cobalt ...

New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration https://firewall.firm.in/wp-content/uploads/2024/06/malware.png Jun 20, 2024NewsroomThreat Intelligence / Cybercrime A new Rust-based information stealer malware called Fickle Stealer has been observed being delivered via multiple attack chains with the goal of harvesting sensitive information from compromised hosts. Fortinet FortiGuard Labs said it’s aware of four different distribution methods — namely ...

Cybercrooks use AI, launch bot-based attacks – ET CISO https://etimg.etb2bimg.com/thumb/msid-111049538,imgsize-561945,width-1200,height=765,overlay-etciso/cybercrime-fraud/cybercrooks-use-ai-launch-bot-based-attacks.jpg A Pune-based real estate firm was recently duped out of ₹4 crore when cybercriminals, masquerading as its chairman, tricked an accounts officer into transferring company funds into fraudulent bank accounts. At the local unit of a multinational company, the finance controller fell prey to a similar scam running into crores ...