Archive for the ‘cybercrime/malcode’ category: Page 15

Dec 20, 2022

Microsoft Details Gatekeeper Bypass Vulnerability in Apple macOS Systems

Posted by in categories: cybercrime/malcode, mobile phones

Microsoft has disclosed details of a now-patched security flaw in Apple macOS that could be exploited by an attacker to get around security protections imposed to prevent the execution of malicious applications.

The shortcoming, dubbed Achilles (CVE-2022–42821, CVSS score: 5.5), was addressed by the iPhone maker in macOS Ventura 13, Monterey 12.6.2, and Big Sur 11.7.2, describing it as a logic issue that could be weaponized by an app to circumvent Gatekeeper checks.

“Gatekeeper bypasses such as this could be leveraged as a vector for initial access by malware and other threats and could help increase the success rate of malicious campaigns and attacks on macOS,” Jonathan Bar Or of the Microsoft 365 Defender Research Team said.

Dec 18, 2022

AI-armed cyberattacks may get lethal in next 5 years, warns report

Posted by in categories: cybercrime/malcode, robotics/AI

AI-powered assaults will definitely excel at impersonation, a tactic utilized frequently in phishing, as per the study.

A recent cyber analytical report has warned that artificial intelligence (AI) enabled cyberattacks which are quite limited until now, may get more aggressive in the coming years.

The Helsinki-based cybersecurity and privacy firm WithSecure, the Finnish Transport and Communications Agency, and the Finnish National Emergency Supply Agency collaborated on the report, according to an article by Cybernews on Thursday.

Dec 18, 2022

Cyberthreats lurk at Messi vs. Mbappé FIFA World Cup final match as 5 billion prepare to watch

Posted by in categories: cybercrime/malcode, transportation

More than 15,000 cameras have been placed throughout the eight stadiums and along roads and transportation infrastructure in Doha.

As Lionel Messi faces Kylian Mbappé in Argentina vs France World Cup final match in Qatar, which billions prepare to watch, cybersecurity experts warn that the event may be a hotspot for cyber threats.

“With major sporting events becoming increasingly digitized, the attack surface for threat actors has also increased,” a recent ZeroFox report on World Cup threats stated.

Continue reading “Cyberthreats lurk at Messi vs. Mbappé FIFA World Cup final match as 5 billion prepare to watch” »

Dec 16, 2022

Space imaging company Maxar agrees to $6.4 billion takeover

Posted by in categories: cybercrime/malcode, finance, government, space

“Advent has a proven record of strengthening its portfolio companies and a desire to support Maxar in advancing our long-term strategic objectives,” Maxar CEO Daniel Jablonsky said in the statement. “As a private company, we will have enhanced flexibility and additional resources to build on Maxar’s strong foundation, further scale operations and capture the significant opportunities in a rapidly expanding market.”

With some $28 billion invested across the defense, security and cybersecurity sectors in the last three years, Boston-based Advent’s portfolio companies support many satellite and defense platforms which serve the U.S. government and its allies as well as companies across the globe. The firm said it arranged debt and equity financing commitments to finance the acquisition.

The transaction is expected to close mid-2023, subject to customary closing conditions. Maxar, which has 4,400 employees, will operate under the same brand and maintain its headquarters in Westminster, Colorado, and will remain U.S.-controlled and operated.

Dec 14, 2022

A DNA Hack Might One Day Save Us From Future Heart Attacks

Posted by in categories: biotech/medical, cybercrime/malcode

It worked on mice—and one day it might work on humans as well.

Dec 11, 2022

Elon Musk’s Twitter Purchase Raises Concerns for MENA Region

Posted by in categories: business, cybercrime/malcode, Elon Musk, government, space, sustainability

“The likelihood of a cyber-attacks on Twitter feel very high right now and their ability to be able to counteract that feels very low,” Radcliffe said. “The amount of information that they have on users is considerable and I think that that’s a potential source of concern, particularly in countries in the Middle East and other places where once the information is on the open market and in the public domain it could potentially be harmful to users.”

Partnering with individuals or groups close to authoritarian regimes raises concerns over how Twitter might react should it be pressured by supply information on dissidents or to quell opposition speech. They also raise questions about Musk’s potential conflict of business interests concerning Tesla and Space X’s availability in certain markets.

Such questions have already been brought up by at least one member of the US Congress. But experts say they’re much more concerned about data security should Twitter go under.

Dec 8, 2022

Automated dark web markets sell corporate email accounts for $2

Posted by in categories: business, cybercrime/malcode

Cybercrime marketplaces are increasingly selling stolen corporate email addresses for as low as $2 to fill a growing demand by hackers who use them for business email compromise and phishing attacks or initial access to networks.

Analysts at Israeli cyber-intelligence firm KELA have closely followed this trend, reporting at least 225,000 email accounts for sale on underground markets.

The largest webmail shops are Xleet and Lufix, claiming to offer access to over 100k breached corporate email accounts, with prices ranging between $2 and $30, if not more, for highly-desirable organizations.

Dec 8, 2022

Bad news! The platform certificates of many phone manufactures have been hacked. These are used to sign trusted apps on Android phones. Now these certificates are being used to certify malicious Android applications

Posted by in categories: cybercrime/malcode, mobile phones

Data security — information security newspaper | hacking news.

Dec 7, 2022

Your Windows PC may be hit with yet another bug, causing some apps to stop responding

Posted by in category: cybercrime/malcode

Microsoft’s Windows Client and Server builds are not hit with a nasty bug, causing some apps to stop responding. The software giant has recently confirmed the issue and promised to bring a fix in an upcoming software update. Microsoft also has a hack to identify if users are currently using any affected apps.

Dec 6, 2022

Darknet markets generate millions in revenue selling stolen personal data, supply chain study finds

Posted by in categories: cybercrime/malcode, law

It is common to hear news reports about large data breaches, but what happens once your personal data is stolen? Our research shows that, like most legal commodities, stolen data products flow through a supply chain consisting of producers, wholesalers and consumers. But this supply chain involves the interconnection of multiple criminal organizations operating in illicit underground marketplaces.

The stolen data begins with producers—hackers who exploit vulnerable systems and steal such as , bank account information and Social Security numbers. Next, the stolen data is advertised by wholesalers and distributors who sell the data. Finally, the data is purchased by consumers who use it to commit various forms of fraud, including fraudulent credit card transactions, identity theft and phishing attacks.

This trafficking of stolen data between producers, wholesalers and consumers is enabled by darknet markets, which are websites that resemble ordinary e-commerce websites but are accessible only using special browsers or authorization codes.

Page 15 of 170First1213141516171819Last