News

The Cybersecurity and Infrastructure Security Agency has warned of Russian state actors exploiting a bug impacting WatchGuard Firebox and XTM firewall appliances. Sandworm, a Russian-sponsored hacking group, believed to be part of the GRU Russian military intelligence agency, reportedly exploited the high severity privilege escalation flaw (CVE-2022-23176) to develop a new botnet, dubbed "Cyclops Blink", out of WatchGuard Small Office/Home Office (SOHO) network devices. CISA has rated the bug with a critical threat level, explaining...

It’s unfortunate, but true: SaaS attacks continue to increase. You can’t get around it, COVID-19 accelerated the already exploding SaaS market and caused industries not planning on making a switch to embrace SaaS. With SaaS apps becoming the default system of record for organizations, it has left many struggling to secure their company’s SaaS estate. CISOs and security professionals work to limit this burgeoning threat landscape, however, it’s a work in progress.   One slight misconfiguration...

Several senior European Union (EU) officials were reportedly targeted with Pegasus spyware last year. Among those targeted were European Justice Commissioner Didier Reynders and at least four other commission staff. Reuters has said that it was notified of the claims by two EU officials and documentation it had reviewed. The EU commission reportedly became aware of staff being targeted by Pegasus spyware in November 2021, when tech giant Apple distributed mass messages warning recipients that...

2021 saw victims of Remote Access Tool (RAT)scams lost £58m in 2021, official UK police figures show. RAT scams involve scammers taking control of a victims device, typically in order to access bank accounts. Some 20,144 victims fell for this type of scam in 2021, averaging around £2800 stolen per incident. Typically, RAT attacks begin with a victim being inundated with pop-ups claiming there is a problem with the computer. Users are often then asked...

Microsoft announced last week that it will make generally available a feature dubbed "Autopatch" included in Windows Enterprise E3 in July 2022. Lior Bela, senior product marketing manager at Microsoft, said in a post last week: "This service will keep Windows and Office software on enrolled endpoints up-to-date automatically, at no additional cost. The second Tuesday of every month will be 'just another Tuesday." The feature is currently set to work with all supported versions...

Salt Labs has uncovered a Server-Side-Request Forgery on a major FinTech platform, enabling an administrative account takeover. Researchers identified API vulnerabilities allowing them to launch attacks where:  Attackers could gain administrative access to the banking platform Attackers could leak users’ personal data  Attackers could access users’ banking details and financial transactions Attackers could perform unauthorised funds transfers into their own bank accounts  This discovery is especially concerning as FinTech platforms are near-irresistible targets for threat...

A new study from Vectra AI has revealed that half of UK cybersecurity leaders consider leaving their jobs due to the pressure they face at work. The security vendor polled 200 security chiefs in the UK in order to better understand the emerging industry health crisis. The study revealed that two out of five security leaders had been forced to seek help as a result of work-related stresses including panic attacks, high blood pressure and...

Gazprom Neft, the oil arm of Russian state gas company Gazprom, has allegedly suffered a hack on Wednesday bringing down its website. A statement allegedly from Gazprom CEO Alexie Miller was displayed on the website, appearing to criticise Russia's invasion of Ukraine. Miller is a close friend of President Vladimir Putin. The website went down soon afterward. “The information published on the site on the morning of April 6 ... is not true and cannot...

The IT Security Guru has teamed up with Synopsys, a recognised leader in application security, to bring you the webinar, 'Secure Your Cloud Environment from Evolving Threats'. As the migration to the cloud continues at an unabated pace, the threats in the cloud are also increasing proportionally and evolving constantly. Data breaches, misconfiguration risks, weak identity and access management controls, insider threats, multi-cloud infrastructure, and increasing complexity are just a few of the many challenges...

Researchers have claimed that a misconfiguration has exposed millions of internal records, including employees' personally identifiable information, belonging to Fox News. The exposure was discovered by a team at Website Planet led by Jeremiah Fowler, who claimed that theoretically, anyone with an internet connection could have found the 58GB of internal records, which was left open with no password protection. The data trove contained almost 13 million records of content management data, including an unspecified...