The major browsers natively trust a whole bunch of certificate authorities, and some of them are really sketchy: Google’s Chrome, Apple’s Safari, nonprofit Firefox and others allow the company, TrustCor Systems, to act as what’s known as a root certificate authority, a powerful spot in the internet’s infrastructure that guarantees websites are not fake, guiding […]
Cyber News, Cyber Threat TrendsPC manufacturer Lenovo has been forced to push out a security update to more than two dozen of its laptop models, following the discovery of high severity vulnerabilities that could be exploited by malicious hackers. Security researchers at ESET discovered flaws in 25 of its laptop models – including IdeaPads, Slims, and ThinkBooks – that […]
Cyber News, Cyber Threat TrendsKroll’s Q3 2022 Threat Landscape report showed an unprecedented increase in insider threats
Cyber News, Cyber Threat Trends
Cybersecurity researchers are warning of “massive phishing campaigns” that distribute five different malware targeting banking users in India. “The bank customers targeted include account subscribers of seven banks, including some of the most well-known banks located in the country and potentially affecting millions of customers,” Trend Micro said in a report published this week. Some of the
Cyber News, Cyber Threat TrendsThe report suggests threat intelligence is a crucial source for vulnerability detection
Cyber News, Cyber Threat Trends
Cybersecurity Awareness Month has been going on since 2004. This year, Cybersecurity Awareness Month urged the public, professionals, and industry partners to “see themselves in cyber” in the following ways: The public, by taking action to stay safe online. Professionals, by joining the cyber workforce. Cyber industry partners, as part of the cybersecurity solution. CISA outlined four […]
Cyber News, Cyber Threat Trends
A malicious package discovered on the Python Package Index (PyPI) has been found employing a steganographic trick to conceal malicious code within image files. The package in question, named “apicolor,” was uploaded to the Python third-party repository on October 31, 2022, and described as a “Core lib for REST API,” according to Israeli cybersecurity firm Check […]
Cyber News, Cyber Threat TrendsMikko Hyppönen discusses how cyber-threats will become even more dangerous as reliance on connectivity grows
Cyber News, Cyber Threat Trends
ACM.107 Using an IAM Role Profile with an EC2 Instance for short-term rotating credentials This is a continuation of my series on Automating Cybersecurity Metrics. In the last post we created a VPC endpoint for CloudFormation so we can access the AWS service from a private network. The post also showed you when you might […]
Cyber News, Cyber Threat Trends