Emotet malware continues to climb the rankings of Check Point’s Most Wanted Malware list for March, thanks to a new campaign that relies on spam emails containing malicious OneNote files. This threat is now number two on the list, moving…
A North Korean threat actor known as the Lazarus Group has been observed changing its targets and improving its techniques as part of a campaign dubbed “DeathNote” by Kaspersky. Kaspersky Senior Security Researcher Seongsu Park explained the findings in an…
The US Cybersecurity and Infrastructure Security Agency (CISA) published the second version of its Zero Trust maturity model on Tuesday. It incorporates recommendations from the public comment period. The updated guidelines are intended to facilitate federal progress toward a Zero…
A difficult question to answer: “How many service accounts do you have in your environment?” The harder question is, “Do you know what these accounts are doing?” And perhaps the hardest part is, “If one of your service accounts is…
Travelers have been told to be careful when plugging their smartphones and laptops into USB chargers. Last Thursday, the official Twitter account of the FBI in Denver posted a warning: “Avoid using free charging stations in airports, hotels and shopping…
Microsoft’s Patch Tuesday release this month included a security update for a zero-day Windows vulnerability in the wild. The bug in question, CVE-2023-28252, has been described as a privilege escalation vulnerability in the Windows Common Log File System (CLFS) driver.…
Attackers using hacking tools from an Israeli surveillance ware vendor named QuaDream targeted at least five members of civil society in North America, Central Asia, Southeast Asia, Europe and the Middle East. A group of Citizen Lab researchers found that…
OpenAI is offering white hat hackers up to $20,000 to find security flaws as part of its bug bounty program launched on April 11, 2023. The developers of ChatGPT have announced this initiative as part of their commitment to secure…
Security vendor Sonatype detected 6,933 malicious open source packages in March alone, bringing the total number detected since 2019 to 115,165. The infostealer consisted of quite a few of these malicious components, including imitations of the popular W4SP stealer, such…
Security researchers have discovered a new zero-click, zero-day exploit targeting iPhone users in 2021 using commercial spyware created by Israeli secret company QuaDream. Together, Microsoft and Citizen Labs have unveiled a campaign targeting at least five “victims of civil society”…
All Rights Reserved. Kowatek Blog by IWUCHI
Home | About Us | Disclaimer | Privacy Policy | Contact Us
