06 Feb 2020

IoT Malware Campaign Infects Global Manufacturing Sites

Researchers at TrapX Labs uncovered a malware campaign built to exploit flaws in connected devices has emerged, and it has been targeting manufacturers around the world. The campaign affects products ranging from small technology like smart printers to heavy operational equipment. TrapX Labs initially found the attack targeting Latin American

Read More
05 Feb 2020

Why many security pros lack confidence in their implementation of Zero Trust

Zero Trust has been deemed a necessary security approach to combat cyber threats and is a system in which an organization or country trusts nobody and nothing internally and externally when granting access to data or assets. All types of access must be verified and authorized before gaining access to

Read More
04 Feb 2020

Turkey suffers first deaths in direct combat with Syria since start of war

On Sunday, five Turkish soldiers and one civilian personnel were killed by Syrian forces in the country, producing the first fatalities as a result of direct confrontation between Turkey and Syria since the start of the Syrian civil war in 2011. After facing heavy artillery fire coming from the Syrian

Read More
03 Feb 2020

UN hacked: Attackers got in via SharePoint vulnerability

Last summer the UN’s database was compromised when hackers broke into 40 UN servers in offices located in Geneva and Vienna, obtaining access to sensitive data that could result in serious and far-reaching repercussions for staff and individuals associated with the UN. However, the UN failed to share the implications

Read More
29 Jan 2020

Zoom Fixes Flaw Opening Meetings to Hackers

This week, enterprise video conferencing firm Zoom has patched a flaw that previously allowed attackers to guess a meeting ID and enter a private meeting held between two entities using Zoom services. The company has experienced a series of security issues and subsequent patches after researchers stated that the company’s

Read More
17 Jan 2020

Critical WordPress Bug Leaves 320,000 Sites Open to Attack

Infinite Client and WP Time Capsule, two WordPress plugins, contain vulnerabilities that leave sites open to attack. The bug is a critical authorization complication that allows adversaries access to the backend of a site without a password. The attacker only needs the admin username for the WordPress plugins. Both of

Read More
15 Jan 2020

Video appears to show two missiles striking Ukrainian passenger plane over Iran

New video footage appears to show missiles striking the Ukraine International Airlines Flight 752 on January 8. The plane crashed over the Iranian capital of Tehran, killing all 176 people on board. The crash caused international outrage after Tehran released a statement admitting to causing the crash after claiming that

Read More
14 Jan 2020

Website Collecting Australian Fire Donations Hit by Magecart

A website gathering donations to support the victims of the horrific wildfires in Australia has been attacked by a credential skimming malware, placing thousands of donors at risk. The hack may have compromised donors’ payment information. The attack was carried out using Magecart malware injected into the ATMZOW skimmer on

Read More
14 Jan 2020

US troops in Iraq got warning hours before Iranian attack

American troops knew about the impending missile barrage hours before they hit. Ain al-Asad airbase in western Iraq went on lockdown several hours before the attack, which was carried out by Iranian forces. The attack, which lasted nearly two hours, caused no US casualties, however, several troops were treated for

Read More
03 Jan 2020

Maze Ransomware Sued for Publishing Victim’s Stolen Data

The anonymous threat actors behind the Maze Ransomware attacks are being sued by a victim after an attack in early December left their information vulnerable. The victim, US company Southwire, claims that Maze accessed their network, stole and encrypted data, and later published the information after Southwire failed to pay

Read More