Cybersecurity researchers uncovered a sophisticated attack campaign by the Water Sigbin (aka 8220 Gang) threat actor that exploited vulnerabilities in the Oracle WebLogic Server, notably CVE-2017-3506 and CVE-2023-21839, to deploy the XMRig cryptocurrency miner on compromised systems. The attack begins with the threat actor exploiting the WebLogic vulnerabilities to execute a malicious PowerShell script on the victim…
Companies in the market for cybersecurity professionals could face a new method of attack, made harder to spot because of artificial intelligence: Hackers posing as job applicants. As cyber threats targeting U.S. companies multiply, some security leaders have increased scrutiny during hiring to weed out bad actors—or simply applicants with over-embellished resumes. Globally, the cyber…
SANS-GIAC Workforce research report for the year 2024 is based on a first-of-its-kind survey that analyzed the cybersecurity workforce with the goal of identifying the key factors to successfully build high-performing cybersecurity teams. The report focuses on efforts to hire and retain mid-level cyber security professionals The survey results analysed in this report zero in…
Hackers Backdoored Courtroom Video Recording Software With System Hijacking Malware Courtroom software hijacked discovered by researchers of Rapid7 A vulnerability (CVE-2024-4978) has been identified in JAVS Viewer v8.3.7, a critical component for managing digital recordings in legal and government environments. The installer for this version is backdoored, allowing attackers to remotely seize control of infected…
By Gregor Stewart, Vice President of Artificial Intelligence at SentinelOne The tech world has been abuzz surrounding AI for well over a year. Yet, beyond creating photo-realistic images that involve too many fingers, it remains unclear to the cybersecurity community how exactly this technology can be implemented to their benefit. Even more, how can it…
The Bengaluru office now stands as the company’s second-largest globally, following its headquarters in Tel Aviv, Israel. As per the company India’s cyber security market is rapidly evolving, driven by increasingly sophisticated cyber threats. Check Point Software Technologies, a provider of cyber security solutions globally, has recently opened its new office in Bengaluru, to meet the…
During the Hajj season, there is an increased risk of online scams targeting individuals who are planning to make the pilgrimage to Mecca. Fraudsters employ various tactics to deceive and defraud unsuspecting pilgrims. According to the Association of British Travel Agents (ABTA), every year, around 25,000 pilgrims from the UK travel to Saudi Arabia…
(Bloomberg) The Canadian government released its first-ever cybersecurity strategy on Wednesday, with the aim of addressing challenges posed by remote work, cloud computing, aging infrastructure and recruitment. The strategy, announced by Treasury Board President Anita Anand, concluded that government departments and agencies generally lacked “repeatable” processes to identify and respond to new and emerging cyber…
The American technology giant has notified some of its customers about a data breach that involved sensitive data, including users’ physical addresses. Dell Technologies says that it’s currently investigating an incident “involving a Dell portal,” which contains a database with customer information related to purchases. “We believe there is not a significant risk to our…
Nearly one in four Indians faced hacking attacks in the first quarter (January-March period) this year, as malware continues to be a major cyber threat, a report showed on Friday. In the quarterly data released by global security company Kaspersky, 22.9% of web users in the country were attacked by web-borne threats. About 20.1 percent…
