Tag: pro
Compliance is evolving — Is your resilience ready?
Life is changing fast for privacy professionals. A decade ago, our focus was making sure our organizations were being transparent and thoughtful about collecting individuals’ personal data and giving them choice about the handling of their data, meticulously safeguarding it, and advising on obligations and best practices in the event…
Read More
Chinese hackers hit Taiwan semiconductor manufacturing in spear phishing campaign
Proofpoint saw UNK_FistBump, UNK_DropPitch, and UNK_SparkyCarp engaging in spear-phishing The groups were trying to deploy different backdoors and malware The campaign is part of a wider effort to “achieve semiconductor self-sufficiency” experts claim Multiple Chinese state-sponsored threat actors have been coordinating attacks on the Taiwanese semiconductor industry, hitting manufacturing, supply…
Read More
Hacker using backdoor to exploit SonicWall Secure Mobile Access to steal credentials
A threat actor has used a patched vulnerability in SonicWall software The group is tracked as UNC6148 This allowed UNC6148 to potentially steal credentials and deploy ransomware A financially motivated threat actor, tracked by Google’s Threat Intelligence Group as UNC6148, has been observed targeting patched end-of-life SonicWall Secure Mobile Access…
Read More
Cisco ISE maximum severity flaw lets hackers execute root code
Cisco patched a maximum-severity flaw impacting Identity Services Engine and ISE Passive Identity Connector The flaw allowed threat actors to run arbitrary code on the underlying OS It was patched in versions 3.3 and 3.4 A maximum-severity vulnerability was recently discovered, and patched, in Cisco Identity Services Engine (ISE) and…
Read More
It seems even DNS records can be infected with malware now – here’s why that’s a major worry
Researchers found evidence of Joke Screenmate malware hiding on DNS servers Joke Screenmate is a harmless, prank malware There are ways to defend against it Hackers found a way to hide malware in the Domain Name System (DNS), cleverly evading detection and flying under the radar. This is according to…
Read More
Hackers hijack Microsoft Teams to spread malware to certain firms – find out if you’re at risk
Researchers from Morphisec spotted Matanbuchus 3.0 in the wild The malware serves as a loader for Cobalt Strike or ransomware The victims are approached via Teams and asked for remote acccess Security researchers are warning about an ongoing campaign leveraging Microsoft Teams calls to deploy a piece of malware called…
Read More