Cyber Defense Advisors

Year: 2024

  • by
  • January 9, 2024

Why Public Links Expose Your SaaS Attack Surface

Collaboration is a powerful selling point for SaaS applications. Microsoft, Github, Miro, and others promote the collaborative nature of their software applications that allows users to do more. Links to files, repositories, and boards can be shared with anyone, anywhere. This encourages teamwork that helps create stronger campaigns and projects by encouraging collaboration among employees […]

Cyber News
  • by
  • January 9, 2024

Alert: New Vulnerabilities Discovered in QNAP and Kyocera Device Manager

A security flaw has been disclosed in Kyocera’s Device Manager product that could be exploited by bad actors to carry out malicious activities on affected systems. “This vulnerability allows attackers to coerce authentication attempts to their own resources, such as a malicious SMB share, to capture or relay Active Directory hashed credentials if the ‘Restrict […]

Cyber News
  • by
  • January 9, 2024

Beware! YouTube Videos Promoting Cracked Software Distribute Lumma Stealer

Threat actors are resorting to YouTube videos featuring content related to cracked software in order to entice users into downloading an information stealer malware called Lumma. “These YouTube videos typically feature content related to cracked applications, presenting users with similar installation guides and incorporating malicious URLs often shortened using services like TinyURL and Cuttly,” Fortinet […]

Cyber News

FedRAMP: The Gateway to Secure Cloud Computing in the U.S. Government

FedRAMP: The Gateway to Secure Cloud Computing in the U.S. Government In an age where digital transformation is not just a trend but a necessity, cloud computing has become the cornerstone for driving innovation and efficiency. However, with great power comes great responsibility, especially in terms of data security and compliance. This is where the […]

FedRAMP Compliance
  • by
  • January 8, 2024

Sexual assault in the metaverse investigated by British police

British police say that they are investigating reports that a girl under the age of 16 was sexually assaulted… in an online virtual reality game. 

Cyber News
  • by
  • January 8, 2024

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

In 2020, the United States brought charges against four men accused of building a bulletproof hosting empire that once dominated the Russian cybercrime industry and supported multiple organized cybercrime groups. All four pleaded guilty to conspiracy and racketeering charges. But there is a fascinating and untold backstory behind the two Russian men involved, who co-ran […]

Cyber News
  • by
  • January 8, 2024

Hackers hijack Beirut airport departure and arrival boards

On Sunday evening electronic departure boards at Beirut’s airport were hijacked by hackers who used them to display anti-Iranian and anti-Hezbollah messages. A group calling itself “Lord and the People” took credit for the attack, which displayed messages which translated as: This is Rafik Hariri Airport, not Hezbollah and Iran Airport. To Hassan Nasrallah, you […]

Cyber News
  • by
  • January 8, 2024

Stuxnet: The malware that cost a billion dollars to develop?

A report from the Netherlands claims that a Dutch man played a key role in the notorious Stuxnet worm attack against an Iranian nuclear facility, which then accidentally escaped into the wider world. It’s not news that the US and Israel are widely believed to be the creators of the sophisticated Stunxnet malware, which exploited […]

Cyber News
  • by
  • January 8, 2024

Syrian Hackers Distributing Stealthy C#-Based Silver RAT to Cybercriminals

Threat actors operating under the name Anonymous Arabic have released a remote access trojan (RAT) called Silver RAT that’s equipped to bypass security software and stealthily launch hidden applications. “The developers operate on multiple hacker forums and social media platforms, showcasing an active and sophisticated presence,” cybersecurity firm Cyfirma said in a report published last […]

Cyber News