Recent AD News

Beware of this new phishing attack!

March 17, 2022
Phishing attacks have been an age-old cybersecurity problem, with threat actors sending out bulk emails in an attempt to trick users into sharing confidential data, fraudulent bank transactions, or entering their passwords via bogus login portals. Threat actors are exploiting email accounts by hijacking ongoing conversations between the users to send out phishing emails. This method is more…
Read more
Recent AD News

Vodafone attacked? Lapsus$ claims to have obtained access to over 200 GB of data.

March 11, 2022
Lapsus$, the infamous hacking group, claims to have acquired around 200 GB of source code files, which represents over 5,000 GitHub repositories. The Vodafone source code that the hackers claim to have obtained has not been leaked. Instead, they are asking thousands of users to join their Telegram channel. Vodafone Portugal blamed certain service outages on a “malicious hack” in…
Read more
Recent AD News

More than 50 % of all discovered vulnerabilities are more than two years old.

March 11, 2022
According to a report by Edgescan, organizations continue to take nearly two months to rectify critical risk vulnerabilities, with an average mean time to remediate (MTTR) of 60 days across the complete stack. High rates of “known” (i.e. patchable) vulnerabilities with live exploits employed by the well-known nation-state and cybercriminal groups are not prevalent. Significantly, 57…
Read more
Recent AD News

RagnarLocker, a cyber threat group, has breached 52 US organizations

March 10, 2022
According to the US Federal Bureau of Investigation (FBI), the RagnarLocker threat group breached 52 entities, of which 10 are critical infrastructure sectors including financial services, manufacturing, energy, government, and IT. To avoid suspicion and ensure administrators do not intervene with the deployment process, the ransomware operators breached and disabled remote management software…
Read more
Recent AD News

The renaissance of the SharkBot malware.

March 10, 2022
An advanced banking malware known as SharkBot has been discovered on the Google Play Store for the second time. It was first discovered in November 2021, the treacherous malware is camouflaged as an antivirus app with virus detection and system cleaning capabilities. By exploiting the accessibility permission on Android devices and granting itself other necessary permissions, the updated version…
Read more
Recent AD News

Samsung confirms security breach, about 190 GB of data leaked online.

March 9, 2022
Samsung has confirmed a security breach after hacking group – Lapsus$ stole and exposed about 190 gigabytes of proprietary data, including source code for numerous technologies and algorithms for biometric unlock operations. The same group had previously broken into Nvidia and leaked hundreds of employee credentials on the internet. “We were recently made aware that there was a…
Read more
Recent AD News

64% of users are vulnerable to account breaches and brute-force attacks

March 9, 2022
According to SpyCloud research that focuses on exposed data, in 2021, researchers found 1.7 billion exposed credentials, up 15% from 2020, and 13.8 billion reclaimed Personally Identifiable Information (PII) data from breaches. ”Reused passwords have been the leading vector in cyberattacks in recent years, and the threat of digital identity exposure is a growing problem. The findings of…
Read more
Recent AD News

650+ compromised credentials found to be in use within NEW Cooperative-the latest organization hit by ransomware

October 4, 2021
NEW Cooperative, an Iowa-based farm cooperative was recently hit by a ransomware attack that forced it to take its systems offline. NEW Cooperative has operations in over 50 locations and provides a variety of digital and software services to its network of farmers. The ransomware group BlackMatter is reportedly behind the attack. Security experts believe that BlackMatter is either being run by…
Read more
Recent AD News

CISA, FBI, and NSA anticipate a rise in Conti ransomware attacks, issue joint cybersecurity advisory

September 29, 2021
The FBI, National Security Agency, and the Cybersecurity Infrastructure and Security Agency issued a joint advisory on Sept 22, 2021, warning US organizations to prepare for a rise in Conti ransomware attacks and urged them to apply mitigations suggested. The joint advisory noted that the Conti ransomware has been used in over 400 attacks targeting the US and international…
Read more
Recent AD News

Azure security flaw puts Zero-Trust in the spotlight

September 29, 2021
In the wake of the recent Microsoft Azure vulnerability, ChaosDB, security experts are stressing that organizations, especially those that rely on public cloud infrastructure can no longer delay adopting the zero-trust model. Cloud security firm Wiz, which first discovered the vulnerability in Microsoft Azure’s managed database service, Cosmos DB said that the vulnerability gave threat…
Read more