Tag: digital trust
50 articles

AI Adoption Outpaces Security Policies, Heightens Cyber Risk
Most organizations are already using AI tools, with 90% of digital trust professionals confirming employees are leveraging them, yet only 38% have a comprehensive policy in place to manage the risks. This disconnect leaves a staggering 25% of organizations with no AI policy at all, heightening cyber risk.

Unit 42 Uncovers Axios Supply Chain Attack's Far-Reaching Consequences
When a trusted software pathway is compromised, the consequences can be far-reaching - as Unit 42's recent analysis of the Axios supply chain attack starkly reveals, threatening digital trust and resilience. The team's detailed examination exposes the attack's full chain, from initial dropper to forensic cleanup.

code-signing certificates: Stunning Risky Trust Crisis
Microsoft revoked more than 200 code‑signing certificates after attackers used fake Teams installers to deliver the Oyster backdoor and Rhysida ransomware — a wake‑up call that trusted seals can be forged and organizations need signature checks plus behavior‑based defenses.

phishing emails: Urgent Warning—Must-Have Best Tips
Don’t panic — LastPass says it wasn’t hacked; those alarming emails are a phishing scam. Pause, verify updates through the official app or website, and report any suspicious messages.

GitHub Pages Risky SEO Attack — Exclusive Warning
Imagine downloading what looks like legitimate software only to find your PC compromised — attackers are using SEO tricks and GitHub Pages to push kkRAT to Chinese-speaking users by creating convincing fake download pages and hijacking search rankings. Fortinet warns this weaponized trust turns routine searches into infection vectors, so stick to vendor sites and double-check every download.

Impersonation as a service: Stunning and Dangerous Threat
Imagine your password doesn’t matter because someone can perfectly impersonate you — that’s the new reality as “impersonation as a service” blends deepfakes, scraped data, and skilled social engineers to trick businesses and people into handing over money and secrets. The fix isn’t just tech: smarter verification, AI detection, and simple habits like out-of-band confirmation can blunt the threat if organizations and users start assuming anyone can be imitated.

QR codes Risky: Must-Have Defenses Against Quishing
Think twice before you scan — attackers are now weaponizing QR codes with split and hidden payloads that can reassemble on your device or piggyback on legitimate codes, making phishing harder to spot. As QR use spreads to payments and workplace authentication, simple scan previews, better detection, and a healthy dose of skepticism are your best defenses.

Ghanaian romance fraud: Shocking Devastating $100M Scam
Imagine thinking you’ve found love—only to learn it’s a $100M scam; the indictment of four Ghanaian nationals exposes how online romance can be weaponized, devastating lives and forcing urgent action on cross‑border fraud and digital trust.

AI Impersonation Security: Must-Have Best Protections
When AI can mimic voices and write like humans—as the Marco Rubio impersonation showed—digital trust can evaporate overnight. We need layered defenses now—strong authentication, synthetic-content detection, clear policies, and rapid response—to stop convincing forgeries before they cause real harm.

Proxy Services: Stunning, Risky Threat to Ukraine
As daylight fades over Kyiv, a quieter crisis unfolds online: huge swaths of Ukrainian IP space have been transferred to proxy services and intermediaries. That shift lets privacy tools and malicious actors alike masquerade as local, undermining trust, security, and everyday life for millions.

Abacus Market Shuts Down Following Exit Scam, Experts Warn
Abacus Market has vanished overnight, leaving users stunned and wallets empty in what experts are calling a classic exit scam—discover how this darknet giant’s sudden shutdown is shaking the underground world.

Fake News Sites Impersonate CNN BBC CNBC Fueling Investment Scams
Beware: fake news sites pretending to be CNN, BBC, and CNBC are duping investors worldwide, turning trusted headlines into clever traps for scams.

US Sanctions Funnull Cloud Over Pig Butchering Scam Surge
The U.S. crackdown on Funnull Technology exposes how cybercriminals exploit cloud networks to fuel “pig butchering” scams, raising urgent questions about trust and security in our digital world.

US Sanctions Funnull Cloud Provider Linked to Pig Butchering Scams
The U.S. Treasury just hit a major cloud provider tied to massive cryptocurrency scams, spotlighting the hidden digital networks fueling online fraud and the global fight to stop them.

The Age of Integrity: Building Trust in a Changing World
In a world where data fuels every decision, ensuring its integrity isn’t just technical—it’s the foundation of trust that keeps our lives and institutions secure. Discover why protecting the truth behind the numbers matters more now than ever.

Cisco Achieves a Flawless 10, But It’s for a Major Vulnerability in Its Communication Platform
Cisco scores a perfect 10 for its critical communication platform vulnerability, highlighting significant security concerns in its widely-used systems.

Typhoon-Style Gang Uses TLS Certificate ‘Authorized’ by LAPD
Typhoon-style gang exploits TLS certificate ‘authorized’ by LAPD, raising concerns over cybersecurity and law enforcement’s digital oversight.

Discover Hidden LOTS Attacks in Trusted Tools — Join Our Free Expert Session!
Uncover hidden LOTS attacks using trusted tools. Join our free expert session for insights and strategies to enhance your cybersecurity defenses!

Zoomcar discloses security breach impacting 8.4 million users
Zoomcar security breach impacts 8.4M users. Discover details on compromised data, response measures, and steps to enhance user protection.

ISMG Editors: Supply Chain Attacks Are Spiking – Here’s Why
ISMG Editors report a surge in supply chain attacks—exploring the causes and cybersecurity implications driving this alarming trend.

40,000 IoT Cameras Left Unsecured on the Open Internet
40,000 IoT cameras left exposed online pose serious security risks by compromising user privacy and enabling potential data breaches.

Microsoft creates separate Windows 11 24H2 update for incompatible PCs
Microsoft launches a dedicated Windows 11 24H2 update for incompatible PCs, ensuring continued support and a smooth upgrade experience.

CISA Expands Catalog of Known Exploited Vulnerabilities with Erlang SSH and Roundcube Issues
CISA broadens its exploited vulnerabilities catalog by adding Erlang SSH and Roundcube issues, alerting organizations to emerging cyber risks.

OpenAI Bans ChatGPT Accounts Used by Russian, Iranian, and Chinese Hacker Groups
OpenAI bans ChatGPT accounts linked to Russian, Iranian, and Chinese hacker groups to bolster cybersecurity and block malicious activities.