A hacking gang has been accused of impersonating South Korean officials and journalists in a plot to steal cryptocurrency for the North Korean regime. According to local media reports, South Korea’s police agency has confirmed that between March and October 2023 a total of 1,468 people fell victim to the campaign which attempted to install […]
Cyber NewsSimplify Your M&A Technology Due Diligence In the fast-paced world of mergers and acquisitions (M&A), technology plays a pivotal role. The integration of new technologies can drive efficiency, enhance competitiveness, and open new revenue streams. However, navigating the complex landscape of technology due diligence during an M&A can be a daunting task. In this article, […]
M&A IT Due DiligenceSimplify Your High-Level Risk Assessments Navigating the treacherous waters of risk assessment can be daunting for many organizations. But fear not, for the art of risk assessment can be distilled into actionable, understandable steps, irrespective of how convoluted the initial scenario may appear. In a world where risks evolve continuously, understanding how to break them […]
High-Level Risk Assessment
A North Korean state-sponsored threat actor tracked as Diamond Sleet is distributing a trojanized version of a legitimate application developed by a Taiwanese multimedia software developer called CyberLink to target downstream customers via a supply chain attack. “This malicious file is a legitimate CyberLink application installer that has been modified to include malicious code that […]
Cyber News
A new research has uncovered multiple vulnerabilities that could be exploited to bypass Windows Hello authentication on Dell Inspiron 15, Lenovo ThinkPad T14, and Microsoft Surface Pro X laptops. The flaws were discovered by researchers at hardware and software product security and offensive research firm Blackwing Intelligence, who found the weaknesses in the fingerprint sensors […]
Cyber News
North Korean threat actors have been linked to two campaigns in which they masquerade as both job recruiters and seekers to distribute malware and obtain unauthorized employment with organizations based in the U.S. and other parts of the world. The activity clusters have been codenamed Contagious Interview and Wagemole, respectively, by Palo Alto Networks Unit […]
Cyber News
Signal has had the ability to manually authenticate another account for years. iMessage is getting it: The feature is called Contact Key Verification, and it does just what its name says: it lets you add a manual verification step in an iMessage conversation to confirm that the other person is who their device says they […]
Cyber News
Ambitious Employees Tout New AI Tools, Ignore Serious SaaS Security Risks Like the SaaS shadow IT of the past, AI is placing CISOs and cybersecurity teams in a tough but familiar spot. Employees are covertly using AI with little regard for established IT and cybersecurity review procedures. Considering ChatGPT’s meteoric rise to 100 million users […]
Cyber News
The macOS information stealer known as Atomic is now being delivered to target via a bogus web browser update chain tracked as ClearFake. “This may very well be the first time we see one of the main social engineering campaigns, previously reserved for Windows, branch out not only in terms of geolocation but also operating […]
Cyber News