News

Image source – freepik.com Newfoundland and Labrador’s Health Care System The health care system of Newfoundland, and Labrador, a province of Canada, were under cyber-attack where attackers changed their whole system. All the appointments in different hospitals were canceled, upsetting all the patients, and leaving all the doctors openmouthed. Appointment Calls Numerous doctors received a call from their hospital where were confirmed that they had an appointment on Monday. The same patients...

Image source - freepik.com Compromised Vulnerabilities of APIs APIs can be segregated as private, partner, or public. In the case of client-facing linked things and apps, APIs are often put as both private and public because outside users won't be acquiring them using a company's private intranet . However, this makes an embryonic vulnerability if companies suppose that a private API doesn't need to be protected . Restricting API access to validated users isn't ample. In this instance, the firm...

Image source - glassdoor.com Surprisingly the United States Senate Federal Credit Union has five people I.T. team. Rather than investing in more expensive physical security appliances that would be time-consuming to maintain by USSFCU's five-person I.T. team . The credit union chose a software-defined, intrinsic approach to infrastructure security , relying on VMware NSX Data Center for virtual firewalling and micro - segmentation . It also included VMware App Defense in its VMware vSphere...

Update 26.10.2021: After additional investigation of initial exposure of ISO.org Content Server, we finally concluded that exposed information is not for public access. For the time of investigation, we can search through very convenient internal search queries and observe: 490k+ different documents 120k+ emails 5k+ different media files By the way, look at the dates below. It seems that with COVID-19 and lockdowns, all internal and external events were postponed or canceled, so there are...

Image source – nytech.com Microsoft claims that it founded the current form of macOS malware modified to use a new eluding and perseverance strategy for growing worldliness. It is also pursued as WizardUpdate or Vigram. As WizardUpdate is the updated form of malware discovered earlier this month by Microsoft security experts. It is probably being distributed through drive-by downloads. It mocks with the legitimate software exactly as it was when the threat intelligence firm Confiant founded its...

Image source – freepik.com Google Chrome announced its recent update as ‘Chrome 95’ on Oct 19, 2021 . This update is likely to roll out in the coming days. This update, Chrome 95.0.4638.54, contains several fixes and improvements, including Secure Payment Confirmation, Eyedropper support, web app improvements, and more. This update will be available immediately for Windows, macOS, and Linux . Chrome has launched this update just after a few weeks of the chrome 94 update, as some external...

Image source – clickssl.net With the Internet Advancing at a speed that not many can catch up with, the risks are crawling their way alongside. Our data is being purchased and handed out via the Terms and Conditions we agree to, all of this in a web of advertisement and money-making. It is now essential for every user to learn the agreement they sign and each application or system they use to know their rights and the basics of online protection . From Strong passwords to purchasing anti-virus...

Image Source - cyberiqs.com The LockBit ransomware gang claimed to have asked for a $50 million ransom and have stolen 6Tb of data. On the other hand, the company remained not publicly acknowledged the said data breach outside of SEC filings . For the fourth quarter and full fiscal year , the news about the ransomware attack was included in the company’s financial report on August 31, 2021. In the past, we have experienced, and in the future, we may again experience, data security incidents...

Image Source - hackercombat.com The tricky and clever mindset behind the malicious malware named Trickbot has reappeared in the cyber-attack world with advanced tricks for trapping the users and reinforcing them by diversifying the malware distribution channel, eventually directing Conti's deployment of ransomware . According to the IBM X-Force report, the dangerous malware gang IT23 and Wizard Spider had become partners with cybercrime gangs named Hive0105 , Hive0106 (Shathak or TA551), and...

Image source - canva.com Apple has released a new security update, 15.0.2, against a vulnerability CVE-2021-30883 in their recent models of IOS and iPad. The update includes a fix for a memory corruption bug that allowed an application to execute arbitrary code with kernel privileges, as reported by the Apple support page on Oct 11, 2021 . Apple also stated that they are aware of a report that this issue may have been actively exploited, so the users are advised to install the update at their...

Image Source - pixabay.com On Monday, October 11, 2021, Lindy Cameron marked her first-year tenure at the National Cyber Security Centre as the CEO . At the Chatham House speech, Cameron warned the nation of the cybercriminals and other malicious actors as a great threat . We expect ransomware will continue to be an attractive route for criminals as long as organizations remain vulnerable and continue to pay. It was also said at the conference by the chairperson that companies that pay and stay...

Image source − shutterstock.com Amid a ransomware attack , the Spring Medical Center was held responsible by an Alabama mother, Teiranni Kidd, for her daughter's death. Reputedly, then a failure in the electronic devices due to the Cyberattack , the doctors could not adequately monitor the child's health during delivery. Nicko Silar was killed due to these unfortunate events, though the hospital still stays in denial. At the same time, the suit clearly stated that the computer systems had been...

Image Source – binance.com From supply chains to healthcare sectors, almost all the industries connected to the internet are under the effect of the biggest threat to online security; Ransomware . Considering this, Binance to ensure the security and sustainable growth of the crypto world committed to protect ing and fighting against ransomware and frauds inflicted with it. Working with the Ukraine Cyber Police , Binance released their first case study of the Bullet Proof Exchanger Project ;...

Image source—freepik.com It is allegedly stated that FinSpy software was sold to the Egyptian government Hosni Mubarak to spy on dissidents and by the Bahraini government to spy on Bahraini activists in Britain – the latter resulting in the software having been found in breach of human rights. FinSpy was thought to be lost and taken care of by the researchers at Kaspersky. Still, after following an eight -month investigation led by Kaspersky, it has been seen that it did not disappear but was...

Image source — freepik.com One of Google's Threat Analysis group Research officers Neel Mehta, specializing in research in hacking and electronic frauds claims in a report that a new technique of changing digital signatures of files is now being used to evade detection from the windows security systems. According to Neel, this technique was developed by a known family of unwanted software named as OpenSUdater . The developers behind OpenSUdater tried to hide their identity by creating malformed...

Image source - kaspersky.com Kaspersky, the cybersecurity solutions provider, has recently discovered a new type of Trojan that affects online gamers and steals the gamer's data. Different attacks have been recorded in Europe, Asia-Pacific regions, and Latin America. An advanced Trojan can steal user's data from online gaming platforms. Kaspersky's research highlights that gaming goods and products are nowadays in demand on the darknet. The logins and password combinations required at different...

The group of researchers from Forescout has completed another portion of vulnerabilities investigation. The new report will be published after 4th August 2021. It will reveal all-new 14 flows in a very popular network stack used by various devices, starting with common IT and ending up on IIoT from giant vendors. Table of Contents New portion of critical and high-scored vulnerabilities. Recent discoveries of Project Memoria. How to proceed and protect yourself? New portion of critical and high-...

As of 2021, Google Play Store has the 1 st spot with an estimated 4 million apps available for download to android users. In contrast, Apple App Store stands in the 2 nd spot with around 2.4 million apps available to IOS users. Both companies' inability to security audit every app being uploaded or available over the Stores leads to a severe threat. The threat is it provides bad actors with an opportunity to upload bogus/fake Apps. These bogus Apps are only intended to steal the data as soon as...

It appears quite usual (I mean not one a decade anymore) to witness the release of a new operating system from Windows. The new Windows 11 still lacks many expected features, which were implemented by other vendors, like better homeworking through free choice of mics or cameras, faster Windows update, and others. But I care mainly about another question – security . Table of Contents Microsoft claimed Windows 11 more secure than previous versions? Windows 11 exploit's the black market situation...