Cyber Defense Advisors

Year: 2023

Home / News / 2023 / Page 140
  • by
  • October 25, 2023

Critical OAuth Flaws Uncovered in Grammarly, Vidio, and Bukalapak Platforms

Critical security flaws have been disclosed in the Open Authorization (OAuth) implementation of popular online services such as Grammarly, Vidio, and Bukalapak, building upon previous shortcomings uncovered in Booking[.]com and Expo. The weaknesses, now addressed by the respective companies following responsible disclosure between February and April 2023, could have allowed malicious actors to

Cyber News, Cyber Threat Trends
  • by
  • October 25, 2023

Nation State Hackers Exploiting Zero-Day in Roundcube Webmail Software

The threat actor known as Winter Vivern has been observed exploiting a zero-day flaw in Roundcube webmail software on October 11, 2023, to harvest email messages from victims’ accounts. “Winter Vivern has stepped up its operations by using a zero-day vulnerability in Roundcube,” ESET security researcher Matthieu Faou said in a new report published today. Previously, it was using […]

Cyber News, Cyber Threat Trends
  • by
  • October 25, 2023

AI’s Impact on Cybersecurity

In our inaugural episode, Michael “Siko” Sikorski, CTO and VP of Engineering and Threat Intelligence at Unit 42 answers that question and speaks to the profound influence of artificial intelligence in an interview with David Moulton, Director of thought leadership for Unit 42. What’s Sikorski’s critical concern? The pervasive integration of AI, particularly ChatGPT and […]

Cyber News, Cyber Threat Trends
  • by
  • October 25, 2023

A Cybersecurity Framework for Mitigating Risks to Satellite Systems

Cyber threats on satellite technology will persist and evolve. We need a comprehensive cybersecurity framework to protect them from attackers.

Cyber News, Cyber Threat Trends
  • by
  • October 25, 2023

Defending Against Advanced Threats, Part 1

In the second episode of Threat Vector, Kristopher Russo, senior threat researcher at Unit 42, and David Moulton, discuss the threat landscape and take a deeper dive into the intricate workings of Muddled Libra (related to Scattered Spider and Scatter Swine). This formidable threat group poses significant challenges to telecommunications, technology and software automation industries. […]

Cyber News, Cyber Threat Trends
  • by
  • October 25, 2023

Defending Against Advanced Threats, Part 2

In the second part of our deep dive into Muddled Libra’s tactics, Threat Vector welcomes Stephanie Regan, a senior consultant with Unit 42 with a law enforcement background. Regan and David Moulton, discuss the challenges Muddled Libra and other threat groups pose. Threat actors are often highly persistent and can rapidly pivot when encountering roadblocks. […]

Cyber News, Cyber Threat Trends

AWS: Security Not a Priority For a Third of SMBs

Cloud giant debunks common misconceptions

Cyber News, Cyber Threat Trends

AWS: Security Not a Priority For a Third of SMBs

Cloud giant debunks common misconceptions

Cyber News, Cyber Threat Trends

AWS: Security Not a Priority For a Third of SMBs

Cloud giant debunks common misconceptions

Cyber News, Cyber Threat Trends