News

Latest news about B2B cyber security >>> PR agencies: add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Category: Short News

BSI warns: Multiple vulnerabilities in Microsoft Edge
17 January 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The BSI has issued a warning about vulnerabilities in the new Chromium-based web browser Edge. Users should update the browser on MacOS X or Windows, since attackers could execute arbitrary program code and escalate their privileges. The Federal Office for Information Security warns of two vulnerabilities in the new Chrome-based browser Edge. The vulnerabilities CVE-2023-21775 and CVE-2023-21796 are classified as “High” dangerous with a CVSS Base Score of 8.3. In this way, attackers could exploit the vulnerabilities to execute arbitrary program code and thus increase their privileges on the system. Open Edge...

Read more

Microsoft patches gaps according to NSA information
16 January 2023
| No comments
| Short news
Tenable news

Microsoft's Patchday release this month includes fixes for 98 CVEs, 11 of which are rated Critical and 87 are Major. In addition, Microsoft closes two zero-day vulnerabilities. A lot of information came from the American National Security Agency - NSA. Microsoft says this bug has already been exploited in practice as a zero day: CVE-2023-21674 is an elevation-of-privilege vulnerability in Windows Advanced Local Procedure Call (ALPC) that simplifies interprocess communication for Windows operating system components. Serious zero-day vulnerability Although no details about the flaw were available at the time Microsoft published the advisory on Patch Tuesday, it seems…

Read more

ChatGPT: AI-designed malicious emails and code
15 January 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

Check Point's security research department warns of hackers who could use OpenAI's ChatGPT and Codex to launch targeted and efficient cyberattacks. The intelligence can create phishing emails and generates dangerous VBA code for Excel files. In experimental correspondence, Check Point Research (CPR) tested whether the ChatBot could be used to create malicious code to initiate cyber attacks. ChatGPT (Generative Pre-trained Transformer) is a free-to-use AI chatbot that can provide its users with contextual answers based on data found on the internet. Codex, on the other hand, is an OpenAI…

Read more

British Post is a LockBit ransomware victim
14 January 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

According to the British Post's website, they were unlucky on Friday the 13th: the Royal Mail was the victim of a cyber attack and is currently unable to process international mail. Apparently, an affiliate partner struck with the LockBit ransomware. The first thing that came to mind at the Royal Mail was the LockBit group, when the machines were encrypted and a ransom note was printed out. However, in this case only the LockBit tools, i.e. the ransomware, were used by an affiliate partner. These partners leverage LockBit's ransomware and infrastructure, and give a high percentage...

Read more

Iranian TA453 group targets researchers and accounts
13 January 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The cyber criminal group TA453, which is associated with Iran, is increasingly using new attack methods and aggressively addressing new targets. This is the preliminary result of ongoing investigations by the cybersecurity company Proofpoint. Since late 2020, Proofpoint researchers have observed discrepancies in TA453's phishing activity (which overlaps with groups publicly known as "Charming Kitten", "PHOSPHORUS" and "APT42"), with the group using new methods and others targets than in the past. TA453 also known as APT42 Email campaigns from TA453 had previously almost always targeted academics, researchers, diplomats,...

Read more

Is TikTok a threat to government workers' mobile devices? 
12 January 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The US Senate has passed legislation to ban federal employees from using TikTok on state-owned devices. Is the Chinese operator of TikTok, ByteDance a danger? Possibly also for European or German officials and government employees? The vote is the latest action by US lawmakers to crack down on Chinese company ByteDance amid national security agencies' fears Beijing could misuse the TikTok app deployed on officials' mobile devices to spy on Americans. A comment from Akhilesh Dhawan, Senior Director of Security Solutions at Lookout. Want to spy on TikTok too?…

Read more

Twitter accounts: 235 million records are up for sale
11 January 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

A few weeks ago, a database with 400 million records of Twitter accounts was offered. Now a cleaned version with 235 million records is offered which apparently contains real data such as e-mail addresses, telephone numbers and publicly available information - but probably no passwords. Even if the database for the Twitter accounts does not contain any passwords and probably only a small number of telephone numbers, the data can be used very well for phishing and doxxing. This is also how expert Alon Gal, CTO at Hudson Rock, sees it, the company that the first thing to do is to…

Read more

BaFin and BSI warn of Android banking Trojan Godfather
10 January 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

The Android banking Trojan Godfather has become a major threat. Now, after the BSI, the BaFin - Federal Financial Supervisory Authority - felt compelled to issue a warning. The app now attacks victims using over 400 international targets, including banking apps, cryptocurrency wallets, and crypto exchanges. According to the test laboratory AV-TEST, some protection apps now recognize the danger and fend off Godfather. The Godfather banking Trojan is up to mischief on Android and is very difficult to detect. Godfather's destinations include financial service providers in Canada, France, Germany, UK, Italy...

Read more

Cyber ​​attack on Hamburg University of Applied Sciences
9 January 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

With the HAW - the Hamburg University of Applied Sciences, another educational institution was hit by a cyber attack. At times, all computer systems and even the university's locks were affected. Things are now under control again. Shortly before the turn of the year, the cyber attack was carried out on the HAW - the Hamburg University of Applied Sciences. The attack was so massive that the university took everything offline to prevent further damage. To date, however, the damage is still so great that all communication by telephone or e-mail has not yet...

Read more

Ukraine: Hacks, DDoS, Ransomware - is this a cyber war?
8 January 2023
| No comments
| Kaspersky, Short news
Kaspersky_news

For the "Story of the Year" Kaspersky experts analyzed cyberspace activities such as DDoS or hacks in connection with the war in Ukraine. It is part of the Kaspersky Security Bulletin, an annual series of forecasts and analytical reports. The year 2022 was marked by a military conflict that brought with it uncertainty and some serious risks. In the course of this, a series of significant events in cyberspace, such as DDoS attacks or hacks, also took place. For the "Story of the Year", Kaspersky experts analyzed each phase of the war, as well as the events that…

Read more

© 2024 MedPressIT GbR
Cookie Settings