Cyber Defense Advisors

Month: December 2023

  • by
  • December 30, 2023

Beware: Scam-as-a-Service Aiding Cybercriminals in Crypto Wallet-Draining Attacks

Cybersecurity researchers are warning about an increase in phishing attacks that are capable of draining cryptocurrency wallets. “These threats are unique in their approach, targeting a wide range of blockchain networks, from Ethereum and Binance Smart Chain to Polygon, Avalanche, and almost 20 other networks by using a crypto wallet-draining technique,” Check Point researchers Oded […]

Cyber News
  • by
  • December 29, 2023

Happy 14th Birthday, KrebsOnSecurity!

KrebsOnSecurity celebrates its 14th year of existence today! I promised myself this post wouldn’t devolve into yet another Cybersecurity Year in Review. Nor do I wish to hold forth about whatever cyber horrors may await us in 2024. But I do want to thank you all for your continued readership, encouragement and support, without which […]

Cyber News
  • by
  • December 29, 2023

Friday Squid Blogging: Sqids

Are there health risks to using public toilets? Here’s what experts say.https://www.yahoo.com/lifestyle/are-there-health-risks-to-using-public-toilets-140059968.html “What makes public bathrooms particularly germy is the sheer volume of people that go through them, and the microbes that those people might be carrying,” Lena Ciric, professor of built environment microbiology at University College London, tells Yahoo Life. “You ultimately just don’t […]

Cyber News

Essential for 2024: Why Small Businesses Must Embrace Threat Modeling to Build Cyber Resilience

Essential for 2024: Why Small Businesses Must Embrace Threat Modeling to Build Cyber Resilience The Rising Risk: Small Businesses Are Prime Targets for Cyber Attacks As cyber threats continue to evolve in 2024, small businesses are facing an increasing risk of being targeted by cybercriminals. Many small companies still operate under the assumption that their […]

Cyber Thoughts
  • by
  • December 29, 2023

Albanian Parliament and One Albania Telecom Hit by Cyber Attacks

The Assembly of the Republic of Albania and telecom company One Albania have been targeted by cyber attacks, the country’s National Authority for Electronic Certification and Cyber Security (AKCESK) revealed this week. “These infrastructures, under the legislation in force, are not currently classified as critical or important information infrastructure,” AKCESK said. One Albania, which has […]

Cyber News
  • by
  • December 29, 2023

AI Is Scarily Good at Guessing the Location of Random Photos

Wow: To test PIGEON’s performance, I gave it five personal photos from a trip I took across America years ago, none of which have been published online. Some photos were snapped in cities, but a few were taken in places nowhere near roads or other easily recognizable landmarks. That didn’t seem to matter much. It […]

Cyber News
  • by
  • December 29, 2023

CERT-UA Uncovers New Malware Wave Distributing OCEANMAP, MASEPIE, STEELHOOK

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign orchestrated by the Russia-linked APT28 group to deploy previously undocumented malware such as OCEANMAP, MASEPIE, and STEELHOOK to harvest sensitive information. The activity, which was detected by the agency between December 15 and 25, 2023, targets government entities with email […]

Cyber News
  • by
  • December 29, 2023

Kimsuky Hackers Deploying AppleSeed, Meterpreter, and TinyNuke in Latest Attacks

Nation-state actors affiliated to North Korea have been observed using spear-phishing attacks to deliver an assortment of backdoors and tools such as AppleSeed, Meterpreter, and TinyNuke to seize control of compromised machines. South Korea-based cybersecurity company AhnLab attributed the activity to an advanced persistent threat group known as Kimsuky. “A notable point about attacks that […]

Cyber News
  • by
  • December 29, 2023

Microsoft Disables MSIX App Installer Protocol Widely Used in Malware Attacks

Microsoft on Thursday said it’s once again disabling the ms-appinstaller protocol handler by default following its abuse by multiple threat actors to distribute malware. “The observed threat actor activity abuses the current implementation of the ms-appinstaller protocol handler as an access vector for malware that may lead to ransomware distribution,” the Microsoft Threat Intelligence team […]

Cyber News