CISOs acknowledge that the complexity of siled teams, point solutions, and cloud ecosystems makes it more likely that software vulnerabilities will make it into production. Dynatrace, an observability specialist, surveyed 1,300 global CISOs from large organizations with 1,000+ employees to…
April 24, 2023Rabbi LakshmananThreat Intel / Cyber Attack Print management software provider PaperCut cites two vulnerability reports from cybersecurity firm Trend Micro, citing “evidence that suggests unpatched servers are being exploited in the wild.” said. “PaperCut has conducted an analysis…
April 24, 2023Rabbi LakshmananCyber Risk / Dark Web A new “all-in-one” stealer malware named Evil Extractor (also known as Evil Extractor) is sold to other attackers to steal data and files from Windows systems. Fortinet FortiGuard Labs researcher Cara Lin…
April 22, 2023Rabbi Lakshmananpatch management / vulnerabilities The US Cybersecurity and Infrastructure Security Agency (CISA) on Friday added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation. The three vulnerabilities are: CVE-2023-28432 (CVSS…
April 22, 2023Rabbi LakshmananSupply Chain / Cyber Threat Lazarus, the prolific North Korean hacking group behind the cascading supply chain attacks targeting 3CX, used the trojanized X_TRADER application to compromise two critical infrastructures in the power and energy sectors. The…
Popular software tools such as Zoom, Cisco AnyConnect, ChatGPT, and Citrix Workspace have been trojanized to distribute malware known as Bumblebee. Secureworks’ Counter Threat Unit (CTU) analyzed the findings in a report published Thursday and found that the infection chain…
Known as Evil Extractor and developed by a company called Kodex as an “educational tool,” the attack tool is used by attackers to target Windows-based machines. The claim comes from Fortinet security researchers and is explained in an advisory published…
ControlPlane Founder and CEO Andrew Martin recently released a report titled Cloud Native and Kubernetes Security Predictions 2023. These predictions highlight the rapidly evolving landscape of Kubernetes and cloud security, and the need for organizations to stay informed and adopt…
US Consumer Financial Protection Bureau (CFPB) employees have reportedly transferred confidential records of approximately 256,000 consumers and confidential supervisory information from approximately 50 agencies to personal email accounts. Congressman Bill Huizenga addressed the allegations in a letter dated April 18…
April 21, 2023Rabbi LakshmananKubernetes / cryptocurrency Large-scale attack campaigns have been discovered that exploit Kubernetes (K8s) role-based access control (RBAC) to create backdoors and run cryptocurrency miners. “The attackers also deployed a DaemonSet to hijack and hijack the resources of…
All Rights Reserved. Kowatek Blog by IWUCHI
Home | About Us | Disclaimer | Privacy Policy | Contact Us
