Cyber Defense Advisors

Month: November 2022

Home / News / 2022 / November

Twitter isn’t going to stop people posting COVID-19 misinformation anymore

As of September 2022, Twitter had challenged 11.72 million accounts, suspended 11,230 accounts, and removed over 97,674 pieces of misleading content related to COVID-19 worldwide. Today? It’s not doing anything. As an update on the company’s COVID-19 misinformation report webpage notes: Effective November 23, 2022, Twitter is no longer enforcing the COVID-19 misleading information policy. […]

Cyber News, Cyber Threat Trends
  • by
  • November 30, 2022

Fortanix unveils AWS integration for centralized key management

Cloud security vendor Fortanix has updated its Data Security Manager to incorporate support for AWS’ external encryption key store system, adding another major public cloud vendor to the list of those supported for the company’s key management system. With this week’s update, Fortanix, which already supports this type of cloud key management system in Azure […]

Cyber News, Cyber Threat Trends
  • by
  • November 30, 2022

AWS’ Inspector offers vulnerability management for Lambda serverless functions

Amazon Web Services has announced AWS Lambda serverless function support for its automated vulnerability management service, Amazon Inspector, and a new automated sensitive data discovery capability in its machine learning security and privacy service, Amazon Macie. Both announcements were made during the AWS Re:Invent 2022 conference in Las Vegas this week. They follow other security-focused […]

Cyber News, Cyber Threat Trends
  • by
  • November 30, 2022

North Korea Hackers Using New “Dolphin” Backdoor to Spy on South Korean Targets

The North Korea-linked ScarCruft group has been attributed to a previously undocumented backdoor called Dolphin that the threat actor has used against targets located in its southern counterpart. “The backdoor […] has a wide range of spying capabilities, including monitoring drives and portable devices and exfiltrating files of interest, keylogging and taking screenshots, and stealing

Cyber News, Cyber Threat Trends

Majority of US Defense Contractors Not Meeting Basic Cybersecurity Requirements

87% of DoD contractors are failing to meet the basic level of compliance ahead of CMMC coming into force next year

Cyber News, Cyber Threat Trends
  • by
  • November 30, 2022

Serious Security: MD5 considered harmful – to the tune of $600,000

It’s not just the hashing, by the way. It’s the salting and the stretching, too!

Cyber News, Cyber Threat Trends

Australian Parliament Passes Privacy Penalty Bill

The higher penalties and extended powers will become effective after the bill receives royal assent

Cyber News, Cyber Threat Trends

Who’s swimming in South Korean waters? Meet ScarCruft’s Dolphin

ESET researchers uncover Dolphin, a sophisticated backdoor extending the arsenal of the ScarCruft APT group The post Who’s swimming in South Korean waters? Meet ScarCruft’s Dolphin appeared first on WeLiveSecurity

Cyber News, Cyber Threat Trends

Zero-Day Flaw Discovered in Quarkus Java Framework

The flaw has a CVSS v3 base score rating of 9.8 and can be found in the Dev UI Config Editor

Cyber News, Cyber Threat Trends