Tag: Cyber Risk

India's government and defense face 'Operation RusticWeb,' a phishing threat using Rust-based malware for intel. SEQRITE spotted this in Oct '23.

The notorious Carbanak malware, initially recognized for its role in banking attacks, has reemerged with a fresh approach, now incorporating ransomware tactics.

McAfee's Mobile Research finds Xamalicious, a savvy Android backdoor leveraging Xamarin, employing social engineering for payload downloads.

Check Point has identified a concerning surge in sophisticated phishing attacks within the cryptocurrency sector, focusing on draining funds.

CISA releases Version 1.0 of Secure Configuration Baselines for Microsoft 365 to enhance federal email and cloud security in SCuBA project.

CISA adds CVE-2023-49897 and CVE-2023-47565 to its Known Exploited Vulnerabilities Catalog, citing active exploitation risks.

CISA warns of an OS Command Injection flaw (CVE-2023-49897) in FXC AE1021/AE1021PE routers allowing remote code execution.

A report from the National Institute for Standards and Technology (NIST) underscores the growing cybersecurity and privacy challenges surrounding genomic data.

OpenAI has released an incomplete fix for a data leak vulnerability in ChatGPT, a flaw discovered by security researcher Johann Rehberger.

ESET resolves critical CVE-2023-5594 vulnerability in Secure Traffic Scanning Feature, mitigating risks to web browser security.