Lucene search
K

41 matches found

Packet Storm News
Packet Storm News
added 2025/07/18 12:0 a.m.2 views

The CryptoNeo Threat Modelling Framework (CNTMF): Securing Neobanks and Fintech in Integrated Blockchain Ecosystems

The rapid integration of blockchain, cryptocurrency, and Web3 technologies into digital banks and fintech operations has created an integrated environment blending traditional financial systems with decentralised elements. This paper introduces the CryptoNeo Threat Modelling Framework CNTMF, a...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2025/03/18 2:9 p.m.25 views

Unpatched Windows Zero-Day Flaw Exploited by 11 State-Sponsored Threat Groups Since 2017

An unpatched security flaw impacting Microsoft Windows has been exploited by 11 state-sponsored groups from China, Iran, North Korea, and Russia as part of data theft, espionage, and financially motivated campaigns that date back to 2017. The zero-day vulnerability, tracked by Trend Micro's Zero...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2024/11/25 11:30 a.m.26 views

THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 18 - Nov 24)

We hear terms like "state-sponsored attacks" and "critical vulnerabilities" all the time, but what's really going on behind those words? This week's cybersecurity news isn't just about hackers and headlines—it's about how digital risks shape our lives in ways we might not even realize. For...

10CVSS10AI score0.99698EPSS
Exploits39
Malwarebytes
Malwarebytes
added 2024/04/11 7:51 p.m.20 views

Apple warns people of mercenary attacks via threat notification system

Apple has reportedly sent alerts to individuals in 92 nations on Wednesday, April 10, to say its detected that they may have been a victim of a mercenary attack. The company says it has sent out these types of threat notifications to over 150 countries since the start in 2021. Mercenary spyware i...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2024/02/14 11:23 a.m.19 views

Cybersecurity Tactics FinServ Institutions Can Bank On in 2024

The landscape of cybersecurity in financial services is undergoing a rapid transformation. Cybercriminals are exploiting advanced technologies and methodologies, making traditional security measures obsolete. The challenges are compounded for community banks that must safeguard sensitive financia...

7.1AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/08/17 1:0 p.m.23 views

Rapid7’s Mid-Year Threat Review

It will come as little surprise to most people that cyber threats in 2023 have been rather prolific. From widely exploited vulnerabilities to high-profile ransomware and extortion campaigns, the first half of the year has seen more than its fair share of large-scale incidents. Rapid7’s 2023...

7.1AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2023/07/14 5:12 p.m.15 views

The Japanese Financial Services Attack Landscape

Recently, we released a major report analyzing the threat landscape of Japan, the globe’s third largest economy. In that report we looked at the ways in which threat actors infiltrate Japanese companies spoiler alert: it is often through foreign subsidiaries and affiliates and some of the most...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/09 8:53 a.m.180 views

Microsoft Warns of State-Sponsored Attacks Exploiting Critical PaperCut Vulnerability

Iranian nation-state groups have now joined financially motivated actors in actively exploiting a critical flaw in PaperCut print management software, Microsoft disclosed over the weekend. The tech giant's threat intelligence team said it observed both Mango Sandstorm Mercury and Mint Sandstorm...

9.8CVSS9.2AI score0.99999EPSS
Exploits24
Securelist
Securelist
added 2023/01/23 10:0 a.m.22 views

What your SOC will be facing in 2023

As the role of cybersecurity in large businesses increases remarkably year over year, the importance of Security Operations Centers SOCs is becoming paramount. This years Kaspersky Security Bulletin ends with tailored predictions for SOCs – from external and internal points of view. The first par...

0.3AI score
Exploits0
Talos Blog
Talos Blog
added 2022/08/18 12:0 p.m.23 views

Ukraine war spotlights agriculture sector's vulnerability to cyber attack

By Joe Marshall. The war in Ukraine has caused massive problems for global food supplies, underscoring the high impact of disruptive events to agriculture entities and related organizations. The challenges to the Ukrainian agriculture sector imposed by the war--and global ripple effects--have bee...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2022/04/12 10:26 a.m.17 views

E.U. Officials Reportedly Targeted with Israeli Pegasus Spyware

Senior officials in the European Union were allegedly targeted with NSO Group's infamous Pegasus surveillance tool, according to a new report from Reuters. At least five individuals, including European Justice Commissioner Didier Reynders, are said to have been singled out in total, the news agen...

1.4AI score
Exploits0
Talos Blog
Talos Blog
added 2022/03/02 6:1 a.m.12 views

Crowd-sourced attacks present new risk of crisis escalation

By Matt Olney.An unpredictable and largely unknown set of actors present a threat to organizations, despite their sometimes unsophisticated techniques. Customers who are typically focused on top-tier, state-sponsored attacks should remain aware of these highly motivated threat actors, as... This ...

3.4AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2021/03/05 5:20 p.m.183 views

Metasploit Wrap-Up

FortiOS Path Traversal Returning community contributor mekhalleh submitted a module targeting a path traversal vulnerability within the SSL VPN web portal in multiple versions of FortiOS. The flaw is leveraged to read the usernames and passwords of currently logged in users which are stored in...

9.3CVSS0.6AI score0.99999EPSS
Exploits77
Securelist
Securelist
added 2018/12/03 10:0 a.m.194 views

Kaspersky Security Bulletin 2018. Top security stories

Kaspersky Security Bulletin 2018. Statistics Kaspersky Security Bulletin 2018. Story of the year: miners Kaspersky Security Bulletin 2018. Threat Predictions for 2019 Introduction The internet is now woven into the fabric of our lives. Many people routinely bank, shop and socialize online and the...

7.6CVSS0.3AI score0.93838EPSS
Exploits31
Malwarebytes
Malwarebytes
added 2018/04/19 4:42 p.m.62 views

Perspectives on Russian hacking

Russia is an endlessly fascinating subject both in and around infosec. Recent years have shifted attention away from pure malware capabilities, to psyops, social engineering, and an endless slew of mind games designed to destabilize and keep nations ever-so-slightly off balance. Security firms in...

7.3AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2018/01/19 2:0 p.m.29 views

This Week in Security News: Hackers and Ransoms

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, we saw discussion on the ransomware attacks plaguing institutions in the New Year, and emerging malware targeting Meltdown/Spectre patches...

7AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2017/12/29 2:34 p.m.33 views

December 29, 2017 – Morning Cyber Coffee Headlines – “2018” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! December 29, 2017 - Headlines Carbon Black in the News: Bitcoin concerns rising...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2016/03/21 1:20 p.m.24 views

Yahoo Deploys Passwordless Account Key Tool

In hopes of eliminating the password, at least on the company’s mobile apps, Yahoo on Friday deployed a stable version of its Account Key mechanism. The feature, essentially two-step authentication—without the first step—allows Yahoo users to log into the company’s Finance, Fantasy, Mail,...

7.2AI score
Exploits0References6
ThreatPost
ThreatPost
added 2015/12/22 10:43 a.m.8 views

Yahoo to Warn Users of State-Sponsored Attacks

Yahoo has announced it will follow in the footsteps of Twitter and Facebook and begin warning users when it believes their accounts have been targeted by a state-sponsored actor. Bob Lord, who was hired as the company’s new CISO in October, discussed the initiative in a blog post Monday. Lord sai...

Exploits0References4
ThreatPost
ThreatPost
added 2014/09/05 3:3 p.m.10 views

Mozilla 1024-Bit Deprecation Leaves 107,000 Sites Untrusted

When Firefox 32 shipped this week, Mozilla also officially ended its support of 1024-bit certificate authority certificates in its trusted store. While it still takes a considerable amount of resources to factor and crack a 1024-bit RSA key, important organizations such as NIST have been advising...

0.3AI score
Exploits0References7
Rows per page
Query Builder