Thousands of WordPress sites using a vulnerable version of the Popup Builder plugin have been compromised with a malware called Balada Injector. First documented by Doctor Web in January 2023, the campaign takes place in a series of periodic attack waves, weaponizing security flaws in WordPress plugins to inject backdoor designed to redirect visitors of […]
Cyber News
The environmental services industry witnessed an “unprecedented surge” in HTTP-based distributed denial-of-service (DDoS) attacks, accounting for half of all its HTTP traffic. This marks a 61,839% increase in DDoS attack traffic year-over-year, web infrastructure and security company Cloudflare said in its DDoS threat report for 2023 Q4 published last week. “This surge in cyber attacks […]
Cyber News
This is a current list of where and when I am scheduled to speak: I’m speaking at the International PolCampaigns Expo (IPE24) in Cape Town, South Africa, January 25-26, 2024. The list is maintained on this page. Tags: Schneier news Sidebar photo of Bruce Schneier by Joe MacInnis.
Cyber NewsFINRA Compliance: Managing Digital Assets and Robo-Advisors The financial industry is in the midst of a digital revolution, and with it comes the integration of digital assets and robo-advisors into traditional investment practices. As the landscape evolves, so do the regulatory requirements that govern it. The Financial Industry Regulatory Authority (FINRA) plays a crucial role […]
FINRA ComplianceERP/WMS Redeployment for a Decentralized Supply Chain In an ever-evolving world of commerce and logistics, businesses are constantly seeking ways to optimize their supply chain management. The shift towards a decentralized supply chain has gained momentum, driven by the need for increased flexibility, agility, and resilience. This transformation necessitates a reevaluation of existing Enterprise Resource […]
ERP/WMS RedeploymentDissecting the Complex Landscape of SEC Compliance in Cryptomarkets The world of cryptocurrencies has experienced a meteoric rise in popularity and adoption over the past decade. Bitcoin, the first cryptocurrency, was created in 2009, and since then, thousands of other digital assets have emerged, each with its unique use cases and features. With this rapid […]
SEC Compliance
The cyber attacks targeting the energy sector in Denmark last year may not have had the involvement of the Russia-linked Sandworm hacking group, new findings from Forescout show. The intrusions, which targeted around 22 Danish energy organizations in May 2023, occurred in two distinct waves, one which exploited a security flaw in Zyxel firewall (CVE-2023-28771) […]
Cyber News
Juniper Networks has released updates to fix a critical remote code execution (RCE) vulnerability in its SRX Series firewalls and EX Series switches. The issue, tracked as CVE-2024-21591, is rated 9.8 on the CVSS scoring system. “An out-of-bounds write vulnerability in J-Web of Juniper Networks Junos OS SRX Series and EX Series allows an unauthenticated, […]
Cyber News
A 29-year-old Ukrainian national has been arrested in connection with running a “sophisticated cryptojacking scheme,” netting them over $2 million (€1.8 million) in illicit profits. The person, described as the “mastermind” behind the operation, was apprehended in Mykolaiv, Ukraine, on January 9 by the National Police of Ukraine with support from Europol and an unnamed […]
Cyber News