Arun Kumar

According to Gartner, many of the security concerns that MSEs face are similar to those that larger enterprises face. The rising usage of cloud applications, open-source code, the internet of things (IoT), and cyber-physical systems, for example, has increased attack surfaces. As a result of this, MSE administrators will have to secure a more complicated organizational environment. The…

On 24th March (Thursday), Google’s threat analysis group (TAG) released a statement that disclosed details about the activity of two North Korean based hacker groups, who had exploited Chrome’s zero-day vulnerability to target several fintech, news media, IT and cryptocurrency firms. Previously, the attackers carried out two campaigns, namely Operation Dream Job and Operation Apple…

Passwords and other sensitive information can now be easily obtained using a variety of phishing methods. However, a new phishing tactic known as the BitB attack has recently been uncovered, and it is so perfectly crafted that most people would fall for it. This method entails creating a bogus pop-up login window that displays on a website. By combining HTML with CSS, threat actors create a…

Amidst the ongoing Ukraine-Russia war, the FBI has disclosed that there is a growing amount of interest shown by Russian hackers in US-based energy firms, although there are no signs of a cyberattack being planned for the time being. The FBI advisory accessed by Associated Press on Tuesday (March 22) also revealed that the Russian cyberattackers have examined atleast five energy companies for…

LAPSUS$, a data extortion hacking group that recently targeted Nvidia and Samsung, has stated that it has also targeted Microsoft, LG, and Okta. According to El Chapuzas Informatico, around 90 percent of the information from Bing Maps was stolen in the Microsoft hacks, while approximately 45 percent was obtained from Bing and Cortana. The extortion group released a torrent for a 9 GB zip file…

In a recently released cybersecurity advisory, the FBI revealed that Avoslocker, the Ransomware-as-a-Service group that surfaced in mid-2021, was responsible for targeting US-based critical infrastructure across multiple sectors. The statement was jointly authored by the US Treasury Department and the Financial Crimes Enforcement Network (FinCEN). The press release also shed light on the modus…

Since the onset of the war on Feb. 24, the Ukraine government has tallied 3,000 DDOS strikes, including a one-day high of 275. The State Service of Special Communication and Information Protection of Ukrainesays: “Russia’s aggression, the intensity of cyberattacks against Ukraine’s vital information infrastructure hasn’t decreased. While Russian missiles are…

Phishing attacks have been an age-old cybersecurity problem, with threat actors sending out bulk emails in an attempt to trick users into sharing confidential data, fraudulent bank transactions, or entering their passwords via bogus login portals. Threat actors are exploiting email accounts by hijacking ongoing conversations between the users to send out phishing emails. This method is more…