Microsoft observed that a covert Chinese botnet, relying on compromised TP-Link routers, commits stealthy password-spraying attacks, only attempting to access accounts once per day. This malicious operation was discovered in August 2023 and employed an average of 8,000 compromised devices at any given time, according to a new report by Microsoft Threat Intelligence. The botnet…
RIYADH: Cybersecurity industry leaders have emphasized the growing importance of digital protection as the world becomes increasingly interconnected at a special event in Riyadh. Speaking at the Global Cybersecurity Forum, Saad Al-Aboodi, CEO of the Saudi Information Technology Co., highlighted the global nature of the challenge during an address at the event, titled “Advancing Collective…
Ivanti Cloud Addresses Critical Vulnerabilities in Endpoint Manager According to the September 2024 security update published by Ivanti Cloud has enhanced its internal scanning, manual exploitation, and testing capabilities in recent months while also refining its responsible disclosure process to ensure the timely identification and resolution of potential issues. This has led to an increase…
IT management solutions provider Ivanti confirmed that a high-severity flaw patched this week in an older version of its Cloud Service Appliance (CSA) has been exploited in attacks. The vulnerability was fixed as part of the company’s September security update, which also included patches for critical and high-severity flaws in other products. Ivanti has revealed…
As open source software grows to represent an ever-increasing percentage of enterprise application code, application security (AppSec) leaders and developers are challenged to mitigate the risk of falling victim to the weaponization of such packages by threat actors. Reporting on current open source AppSec practices and problems, Checkmarx, the industry leader in cloud-native application security for…
India’s strategic foray into Central America: India is rapidly expanding its influence in Central America, particularly in the telecommunications and cybersecurity sectors. (Reuters) India is rapidly expanding its influence in Central America, particularly in the telecommunications and cybersecurity sectors. With a focus on El Salvador and Guatemala, India is set to make significant inroads, leveraging…
India’s telecom watchdog on Tuesday directed service providers to stop all promotional calls from unregistered callers and blacklist them as it looks to tackle a surge in spam and phishing calls that has seen people lose millions of rupees. The government has been looking to clamp down on the spike in such calls including those…
In July, a software update from the cybersecurity firm CrowdStrike caused Microsoft Windows operating systems to crash. The US Government Accountability Office called this event “potentially the largest IT outage in history.” The broad-based impact generated by the incident heightens the need to develop an effective risk management process to combat systemic cyber risks. The CrowdStrike incident…
The global insurance and reinsurance industry is likely to avoid any major financial impact from the outage sparked by CrowdStrike’s glitchy security software update that disrupted internet services worldwide last week, Fitch Ratings said. Preliminary estimates suggest that insured losses could be in the range of mid-to-high single-digit billion dollars and most claims would be…
The Azure outage, which originated in Microsoft’s Central US region on Thursday evening, had a cascading effect on multiple airlines. A major outage of Microsoft’s Azure cloud computing platform this week wreaked havoc on airlines globally, causing flight groundings and operational disruptions. The incident highlighted the vulnerability of cloud-dependent systems, prompting cybersecurity firm CrowdStrike to…
