Tag: emerging threats
3126 articles
CISA Warns of Active Cisco SD-WAN Exploits
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority warning to federal agencies, ordering them to patch three critical Cisco SD-WAN vulnerabilities within four days after discovering they're being actively exploited by hackers. This urgent directive comes after Cisco patched the flaws in its Catalyst SD-WAN Manager platform.
Northrop Grumman Bolsters Bid for F/A-XX Fighter Contract
Northrop Grumman is pulling out all the stops to secure the F/A-XX fighter contract, with CEO Kathy Warden assuring investors that her team is ready to deliver on schedule. The company is gearing up to meet the Navy's ambitious timeline, and Warden is betting her credibility on it.
US Seizes Iranian-Linked Ship in Indo-Pacific Region
US forces have seized a sanctioned oil tanker, the M/T Tifani, in a daring nighttime operation in the Indo-Pacific region, successfully boarding the stateless vessel without incident. The bold move highlights the US military's commitment to enforcing sanctions and maintaining stability in the region.
macOS ClickFix Attacks Harvest Credentials via AppleScript Stealers
macOS users beware: a sneaky ClickFix campaign is using AppleScript stealers to harvest credentials from 14 browsers, 16 cryptocurrency wallets, and over 200 extensions. This targeted attack has already made off with a staggering amount of sensitive info - and it's still on the loose.
Vercel Breach Sparks Security Community Debate
The Vercel breach has sparked a heated discussion among security leaders, leaving many to wonder what was compromised and how far-reaching the impact will be. The incident has clearly got the security community talking, but details about the breach and the conversations surrounding it remain scarce.
Vulnerabilities Expose 20,000 Serial-to-IP Converters to Hijacking Risk
A shocking 20,000 serial-to-IP converters are at risk of being hijacked due to newly discovered vulnerabilities, putting countless systems and data in jeopardy. Cybersecurity experts at Forescout Research Vedere Labs have uncovered 22 flaws in popular models from leading manufacturers Lantronix and Silex.
Malware Exploits Android App to Harvest NFC Card Data
A new malware called NGate is putting NFC payment card users in Brazil at risk, exploiting the popular HandyPay app to steal sensitive card data and PINs. This sneaky attack leaves cardholders vulnerable to financial loss and compromised personal info.
Ukraine Unveils Sea-Air Drone Combo to Counter Russian Shahed Drones
Ukraine's drone force has achieved a game-changing milestone by launching an interceptor drone from a sea vessel to take down a Russian Shahed drone, marking a major leap in their operational capabilities. This innovative sea-air combo is set to give Russia's kamikaze drones a serious headache.
Drones Adopt 3D Vision for GPS-Free Navigation
In a game-changing shift, drones are ditching GPS and embracing 3D vision for navigation, empowering them to fly high even in the most challenging environments. This innovative tech is redefining autonomy, enabling drones to thrive in "dirty" RF and contested conditions where satellite signals are unreliable or unavailable.
Ransomware Negotiator Pleads Guilty to Aiding BlackCat Extortions
Meet Angelo Martino, a 41-year-old from Florida who just pleaded guilty to helping the notorious BlackCat ransomware gang extort even bigger payouts from US companies. Martino teamed up with the BlackCat operators in April 2023, marking the start of his involvement in their malicious activities.
Gorka's Absence Exposes US Counterterrorism Gap
With Iranian threats against US targets making headlines, the glaring absence of a counterterrorism doctrine from Sebastian Gorka, the counterterrorism czar, has left a gaping hole in the US response to foreign threats. The question remains: how will the government respond to emerging threats without a clear guiding framework in place?
Navy Tests Extended-Range JDAM, Hitting Targets 200 Miles Away
The Navy has successfully tested its Extended-Range JDAM, launching modified bombs from F/A-18E Super Hornets that hit targets a whopping 200 miles away. This game-changing feat is forcing a major rethink of military strategy and capabilities.
US Navy Faces Daunting Submarine Delivery Challenge
The US Navy's top submarine official, Vice Adm. Robert Gaucher, warns that delivering the first Columbia-class submarine by 2028 will be a monumental challenge, with inevitable surprises and setbacks along the way. He's blunt about the hurdles ahead, calling it a "wicked heavy lift" that will require navigating uncharted waters.
Scattered Spider Member Pleads Guilty to $8 Million Crypto Heist
A 24-year-old British hacker, Tyler Robert Buchanan, has pleaded guilty to masterminding an $8 million crypto heist as part of the notorious Scattered Spider cybercrime group. His downfall began with a trail of seemingly harmless text messages that ultimately led to his guilty plea.
Threat Response Times Hinge on Smart SOC Design
When a breach occurs, the clock is ticking - and the cost of delayed response can be crippling, with every hour of inaction threatening data exfiltration, service disruption, regulatory exposure, and brand damage. A smart SOC design can be the difference between a swift response and a devastating fallout.
Gentlemen Ransomware Spreads Rapidly Through Affiliate Network
Gentlemen Ransomware is spreading rapidly through its affiliate network, fueling a surge in multi-platform attacks and infections linked to the malicious tool SystemBC. This ransomware-as-a-service operation is making it alarmingly easy for cybercriminals to join the fray and wreak havoc.
Fraud Prevention Evolves to Balance Security and User Experience
The age-old trade-off between security and user experience is no longer a given - in fact, it's possible to boost security without slowing down your customers. By combining identity, device, and network signals, businesses can effectively block fraud while providing a seamless experience for legitimate users.
Former Ransomware Negotiator Pleads Guilty in High-Profile Gang Case
In a shocking twist, a former ransomware negotiator has pleaded guilty to aiding the notorious ALPHV/BlackCat gang in extorting millions from US businesses, raising disturbing questions about the blurred lines between victim and perpetrator. This comes on the heels of a nonprofit organization paying a staggering $26.8 million ransom.
UK Regulator Probes Telegram Over CSAM Sharing Concerns
The UK's communications regulator, Ofcom, has launched a crucial investigation into Telegram over concerns that the platform is being used to share child sexual abuse material, sparking a delicate balance between regulation and user protection. This probe also extends to teen chat sites, raising important questions about moderation, oversight, and the safety of young users.
AI Agents Fuel Cybersecurity Breaches at Most Firms
As AI agents increasingly power business operations, they're also fueling cybersecurity breaches at most firms, leading to data exposure, operational disruption, and financial losses. The rapid rise of AI is sparking a pressing dilemma: how can organizations balance innovation with control?
AI Advances Vulnerability Discovery, Raises Bar for Defenders
The game-changing AI system, Mythos, has made significant strides in vulnerability discovery, revealing software flaws with unprecedented depth - but does this progress signal a sigh of relief or a surge of concern for defenders? As automated discovery advances, it's clear that Mythos is a crucial step forward, not a sudden collapse of security efforts.
US Bolsters Asian Allies with Record-Breaking Balikatan Military Drills
The US and Philippines have just wrapped up the largest-ever Balikatan military drills, a bold display of strength and cooperation that's sending a powerful message to Asian allies - and potential rivals. Held near regional hotspots, this massive exercise is a delicate balancing act between reassurance and provocation.
Mexican Surveillance Firm Expands into US Market
A Mexican surveillance company is setting its sights on the US market, raising important questions about the intersection of technology, law, commerce, and civic values. Grupo Seguritech's expansion into new territory sparks a complex conversation about the implications of increased surveillance.
Vercel Breach Exposes OAuth, AI-Driven Threats
A recent breach at Vercel exposed sensitive data after attackers exploited OAuth and hijacked an employee's account, showcasing a disturbingly swift and sophisticated assault that may have been fueled by artificial intelligence. The stolen data is now being sold to the highest bidder for a whopping $2 million.