Fake Job Applications Deliver Dangerous More_eggs Malware to HR Professionals
A spear-phishing email campaign has been observed targeting recruiters with a JavaScript backdoor called More_eggs, indicating persistent efforts to single…
Python-Based Malware Slithers Into Systems via Legit VS Code
The prolific Chinese APT Mustang Panda is the likely culprit behind a sophisticated cyber-espionage attack that sets up persistent remote…
Alert: Over 700,000 DrayTek Routers Exposed to Hacking via 14 New Vulnerabilities
A little over a dozen new security vulnerabilities have been discovered in residential and enterprise routers manufactured by DrayTek that…
Top 5 Myths of AI & Cybersecurity
Organizations looking to maximize their security posture will find AI a valuable complement to existing people, systems, and processes. Organizations…
Alert: Adobe Commerce and Magento Stores Under Attack from CosmicSting Exploit
Cybersecurity researchers have disclosed that 5% of all Adobe Commerce and Magento stores have been hacked by malicious actors by…
Manufacturers Rank as Ransomware’s Biggest Target
Improvements in cybersecurity and basics like patching aren’t keeping pace with the manufacturing sector’s rapid growth. Improvements in cybersecurity and…
5 Must-Have Tools for Effective Dynamic Malware Analysis
Dynamic malware analysis is a key part of any threat investigation. It involves executing a sample of a malicious program…
Andariel Hacking Group Shifts Focus to Financial Attacks on U.S. Organizations
Three different organizations in the U.S. were targeted in August 2024 by a North Korean state-sponsored threat actor called Andariel…
California AI Safety Bill Vetoed
Governor Newsom has vetoed the state’s AI safety bill. I have mixed feelings about the bill. There’s a lot to…
Normalizing Security Culture: Don’t Have to Get Ready If You Stay Ready
Prioritizing security as a critical element to an organization’s effectiveness and success will reduce the risk of incidents, while benefiting…
