Cyber Defense Advisors

Year: 2023

Home / News / 2023 / Page 21

How Penetration Testing and Exploitation Assessments Can Help Keep Your Company Secure

How Penetration Testing and Exploitation Assessments Can Help Keep Your Company Secure In an era where data breaches and cyberattacks have become increasingly sophisticated and frequent, safeguarding your company’s digital assets is paramount. Cybersecurity threats can have devastating consequences, ranging from financial losses to reputational damage. To fortify your defenses against these evolving threats, it’s […]

Penetration Testing and Exploitation Assessment

How Incident Response Plans Can Help Keep Your Company Secure

How Incident Response Plans Can Help Keep Your Company Secure In the ever-evolving landscape of cybersecurity threats, the importance of having a well-defined incident response plan cannot be overstated. As businesses increasingly rely on digital infrastructure and data, the risk of cyberattacks and security breaches continues to grow. In this article, we will explore the […]

Incident Response Testing

How Cyber Security Risk Assessments Can Help Keep Your Company Secure

How Cyber Security Risk Assessments Can Help Keep Your Company Secure In an increasingly interconnected world, where businesses rely heavily on digital technologies, the importance of cyber security cannot be overstated. Cyber threats are on the rise, and companies of all sizes are vulnerable to attacks that can result in data breaches, financial losses, and […]

High-Level Risk Assessment
  • by
  • December 14, 2023

Iranian State-Sponsored OilRig Group Deploys 3 New Malware Downloaders

The Iranian state-sponsored threat actor known as OilRig deployed three different downloader malware throughout 2022 to maintain persistent access to victim organizations located in Israel. The three new downloaders have been named ODAgent, OilCheck, and OilBooster by Slovak cybersecurity company ESET. The attacks also involved the use of an updated version of a known OilRig […]

Cyber News
  • by
  • December 14, 2023

Reimagining Network Pentesting With Automation

Network penetration testing plays a crucial role in protecting businesses in the ever-evolving world of cybersecurity. Yet, business leaders and IT pros have misconceptions about this process, which impacts their security posture and decision-making. This blog acts as a quick guide on network penetration testing, explaining what it is, debunking common myths and reimagining its […]

Cyber News
  • by
  • December 14, 2023

Russian SVR-Linked APT29 Targets JetBrains TeamCity Servers in Ongoing Attacks

Threat actors affiliated with the Russian Foreign Intelligence Service (SVR) have targeted unpatched JetBrains TeamCity servers in widespread attacks since September 2023. The activity has been tied to a nation-state group known as APT29, which is also tracked as BlueBravo, Cloaked Ursa, Cozy Bear, Midnight Blizzard (formerly Nobelium), and The Dukes. It’s notable for the […]

Cyber News
  • by
  • December 14, 2023

UK’s Ministry of Defence fined after Bcc email blinder that put the lives of Afghan citizens at risk

Graham CLULEY December 14, 2023 Promo Protect all your devices, without slowing them down. Free 30-day trial The British Ministry of Defence (MoD) has been fined £350,000 for recklessly causing a data breach that exposed the personal details of citizens of Afghanistan who were seeking to flee the country after the Taliban took control in […]

Cyber News
  • by
  • December 14, 2023

New Hacker Group ‘GambleForce’ Tageting APAC Firms Using SQL Injection Attacks

A previously unknown hacker outfit called GambleForce has been attributed to a series of SQL injection attacks against companies primarily in the Asia-Pacific (APAC) region since at least September 2023. “GambleForce uses a set of basic yet very effective techniques, including SQL injections and the exploitation of vulnerable website content management systems (CMS) to steal […]

Cyber News
  • by
  • December 14, 2023

Microsoft Takes Legal Action to Crack Down on Storm-1152’s Cybercrime Network

Microsoft on Wednesday said it obtained a court order to seize infrastructure set up by a group called Storm-1152 that peddled roughly 750 million fraudulent Microsoft accounts and tools through a network of bogus websites and social media pages to other criminal actors, netting the operators millions of dollars in illicit revenue. “Fraudulent online accounts […]

Cyber News