Infosecurity News
Russia's Sandworm Upgraded to APT44 by Google's Mandiant
Mandiant has confirmed that Sandworm is responsible for many cyber-attacks against Ukraine has close ties with a Russian hacktivist group
New Cyber-Threat MadMxShell Exploits Typosquatting and Google Ads
Zscaler also confirmed MadMxShell uses DLL sideloading and DNS tunneling for C2 communication
US Election Officials Told to Prepare for Nation-State Influence Campaigns
A US government advisory sets out actions election officials need to take to mitigate the impact of nation-state influence campaigns ahead of the November elections
Trust in Cyber Takes a Knock as CNI Budgets Flatline
Bridewell report reveals critical infrastructure firms are losing faith in their defensive tooling
UK Police Lead Disruption of £1m Phishing-as-a-Service Site LabHost
The Metropolitan Police and partners have disrupted the prolific LabHost phishing-as-a-service platform
Linux Cerber Ransomware Variant Exploits Atlassian Servers
The attacks exploit CVE-2023-22518, a critical flaw in Atlassian Confluence Data Center and Server
North Korean Group Kimsuky Exploits DMARC and Web Beacons
Proofpoint confirmed Kimsuky has directly contacted foreign policy experts since 2023 through seemingly benign email conversations
US Government and OpenSSF Partner on New SBOM Management Tool
OpenSSF, in collaboration with the US Government, has developed Protobom, a open source tool designed to simplify SBOM management for organizations
EU Elections: Pro-Russian Propaganda Exploits Meta's Failure to Moderate Political Ads
This year’s EU elections will be a stress test to see whether the newly adopted Digital Services Act can efficiently mitigate misinformation threats
Ivanti Patches Two Critical Avalanche Flaws in Major Update
Ivanti has fixed two critical vulnerabilities in its Avalanche MDM product which could lead to remote code execution
Insider Threats Surge 14% Annually as Cost-of-Living Crisis Bites
Cifas reveals 14% rise in dishonest employees, driven mainly by financial necessity last year
Russian Sandworm Group Using Novel Backdoor to Target Ukraine and Allies
WithSecure researchers said it is likely Russian state group Sandworm has added a novel backdoor dubbed ‘Kapeka’ to its arsenal