Cyber Defense Advisors

Year: 2023

  • by
  • January 19, 2023

New Research Delves into the World of Malicious LNK Files and Hackers Behind Them

Cybercriminals are increasingly leveraging malicious LNK files as an initial access method to download and execute payloads such as Bumblebee, IcedID, and Qakbot. A recent study by cybersecurity experts has shown that it is possible to identify relationships between different threat actors by analyzing the metadata of malicious LNK files, uncovering information such as the […]

Cyber News, Cyber Threat Trends

Security Analysis of Threema

A group of Swiss researchers have published an impressive security analysis of Threema. We provide an extensive cryptographic analysis of Threema, a Swiss-based encrypted messaging application with more than 10 million users and 7000 corporate customers. We present seven different attacks against the protocol in three different threat models. As one example, we present a […]

Cyber News, Cyber Threat Trends

Improve your AWS security posture, Step 3: Encrypt AWS data in transit and at rest

In the first two blogs in this series, we discussed properly setting up IAM and avoiding direct internet access to AWS resources. In this blog, we’ll tackle encrypting AWS in transit and at rest. Sometimes, despite all efforts to the contrary, data can be compromised.  This can occur due to data leakage through faulty apps or systems, […]

Cyber News, Cyber Threat Trends

FTX: Over $400m Stolen from Bankrupt Exchange

FTX founder already charged with fraud and money laundering

Cyber News, Cyber Threat Trends

FTX: Over $400m Stolen from Bankrupt Exchange

FTX founder already charged with fraud and money laundering

Cyber News, Cyber Threat Trends

Smashing Security podcast #305: Norton unlocked, and police leaks

Carole’s in her sick bed, which leaves Graham in charge of the good ship “Smashing Security” as it navigates the choppy seas of credential stuffing and avoids the swirling waters of apps being sloppy with sensitive information. Find out more in this latest edition of the “Smashing Security” podcast, hosted by Graham Cluley with special […]

Cyber News, Cyber Threat Trends
  • by
  • January 19, 2023

Mailchimp Suffers Another Security Breach Compromising Some Customers’ Information

Popular email marketing and newsletter service Mailchimp has disclosed yet another security breach that enabled threat actors to access an internal support and account admin tool to obtain information about 133 customers. “The unauthorized actor conducted a social engineering attack on Mailchimp employees and contractors, and obtained access to select Mailchimp accounts using employee

Cyber News, Cyber Threat Trends

Smashing Security podcast #305: Norton unlocked, and police leaks

Carole’s in her sick bed, which leaves Graham in charge of the good ship “Smashing Security” as it navigates the choppy seas of credential stuffing and avoids the swirling waters of apps being sloppy with sensitive information. Find out more in this latest edition of the “Smashing Security” podcast, hosted by Graham Cluley with special […]

Cyber News, Cyber Threat Trends

Smashing Security podcast #305: Norton unlocked, and police leaks

Carole’s in her sick bed, which leaves Graham in charge of the good ship “Smashing Security” as it navigates the choppy seas of credential stuffing and avoids the swirling waters of apps being sloppy with sensitive information. Find out more in this latest edition of the “Smashing Security” podcast, hosted by Graham Cluley with special […]

Cyber News, Cyber Threat Trends