Cyber Defense Advisors

Cyber News

  • by
  • November 10, 2022

Warning: New Massive Malicious Campaigns Targeting Top Indian Banks’ Customers

Cybersecurity researchers are warning of “massive phishing campaigns” that distribute five different malware targeting banking users in India. “The bank customers targeted include account subscribers of seven banks, including some of the most well-known banks located in the country and potentially affecting millions of customers,” Trend Micro said in a report published this week. Some of the

Cyber News, Cyber Threat Trends

The ‘Great Resignation’ Caused Insider Threats to Peak in Q3 2022, Kroll Finds

Kroll’s Q3 2022 Threat Landscape report showed an unprecedented increase in insider threats

Cyber News, Cyber Threat Trends

#IRISSCON: Cyber Professionals Now Tasked with Securing Society, Says Mikko Hyppönen

Mikko Hyppönen discusses how cyber-threats will become even more dangerous as reliance on connectivity grows

Cyber News, Cyber Threat Trends
  • by
  • November 10, 2022

Researchers Uncover PyPI Package Hiding Malicious Code Behind Image File

A malicious package discovered on the Python Package Index (PyPI) has been found employing a steganographic trick to conceal malicious code within image files. The package in question, named “apicolor,” was uploaded to the Python third-party repository on October 31, 2022, and described as a “Core lib for REST API,” according to Israeli cybersecurity firm Check […]

Cyber News, Cyber Threat Trends
  • by
  • November 10, 2022

Is Cybersecurity Awareness Month Anything More Than PR?

Cybersecurity Awareness Month has been going on since 2004. This year, Cybersecurity Awareness Month urged the public, professionals, and industry partners to “see themselves in cyber” in the following ways:  The public, by taking action to stay safe online. Professionals, by joining the cyber workforce. Cyber industry partners, as part of the cybersecurity solution. CISA outlined four […]

Cyber News, Cyber Threat Trends
  • by
  • November 10, 2022

Creating a Role for an EC2 Instance with CloudFormation

ACM.107 Using an IAM Role Profile with an EC2 Instance for short-term rotating credentials This is a continuation of my series on Automating Cybersecurity Metrics. In the last post we created a VPC endpoint for CloudFormation so we can access the AWS service from a private network. The post also showed you when you might […]

Cyber News, Cyber Threat Trends
  • by
  • November 10, 2022

PCI DSS 4.0 is coming: how to prepare for the looming changes to credit card payment rules

For enterprises that handle credit card data, which means just about every consumer-facing company, payment processing is a mission-critical system that requires the highest levels of security. The volume of transactions conducted with general purpose credit cards (American Express, Discover, Mastercard, Visa, UnionPay in China, and JCB in Japan) totaled $581 billion in 2021, up […]

Cyber News, Cyber Threat Trends
  • by
  • November 10, 2022

REPEAT AND REFINE: HOW DO YOU GET TO CARNEGIE HALL? (Pt. 6 of “Why Don’t You Go Dox Yourself?”)

Welcome back! In our last article, you cleared out your extraneous digital footprints by removing unnecessary accounts and opting-out of data broker services, and have finished a dedicated review of your online history. In this final section, we will answer the natural question encountered at the end of any journey: What’s next?  Before becoming the […]

Cyber News, Cyber Threat Trends
  • by
  • November 10, 2022

Citrix Issues Patches for Critical Flaw Affecting ADC and Gateway Products

Citrix has released security updates to address a critical authentication bypass flaw in the application delivery controller (ADC) and Gateway that could be exploited to take control of affected systems. Successful exploitation of the issues could enable an adversary to gain authorized access, perform remote desktop takeover, and even circumvent defenses against login brute-force attempts under

Cyber News, Cyber Threat Trends