Cyber Defense Advisors

Cyber Threat Trends

  • by
  • December 1, 2022

S3 Ep111: The business risk of a sleazy “nudity unfilter” [Audio + Text]

Latest episode – listen now (or read if you prefer)…

Cyber News, Cyber Threat Trends
  • by
  • December 1, 2022

The CHRISTMA EXEC network worm – 35 years and counting!

“Uh-oh, this viruses-and-worms scene could turn out quite troublesome.” If only we’d been wrong…

Cyber News, Cyber Threat Trends
  • by
  • December 1, 2022

Memory Safe Languages in Android 13

Posted by Jeffrey Vander Stoep For more than a decade, memory safety vulnerabilities have consistently represented more than 65% of vulnerabilities across products, and across the industry. On Android, we’re now seeing something different – a significant drop in memory safety vulnerabilities and an associated drop in the severity of our vulnerabilities. Looking at vulnerabilities […]

Cyber News, Cyber Threat Trends

Hackers Target Colombia’s Healthcare System With Ransomware

The attack disrupted IT operations, websites and scheduling of medical appointments

Cyber News, Cyber Threat Trends

Unwrapping Some of the Holiday Season’s Biggest Scams

Even with the holidays in full swing, scammers won’t let up. In fact, it’s high time for some of their nastiest cons as people travel, donate to charities, and simply try to enjoy their time with friends and family.  Unfortunate as it is, scammers see this time of year as a tremendous opportunity to profit. […]

Cyber News, Cyber Threat Trends

Spyware Vendor Variston Exploited N-Days in Chrome, Firefox, Windows

The claims come from Google’s Threat Analysis Group, which published an advisory about the threat

Cyber News, Cyber Threat Trends

WhatsApp Files on Dark Web Show Millions of Records For Sale

The list went on sale for four days and is now being distributed for free among dark web users

Cyber News, Cyber Threat Trends
  • by
  • December 1, 2022

Researchers found security pitfalls in IBM’s cloud infrastructure

Security researchers recently probed IBM Cloud’s database-as-a-service infrastructure and found several security issues that granted them access to the internal server used to build database images for customer deployments. The demonstrated attack highlights some common security oversights that can lead to supply chain compromises in cloud infrastructure. Developed by researchers from security firm Wiz, the […]

Cyber News, Cyber Threat Trends
  • by
  • December 1, 2022

Google Accuses Spanish Spyware Vendor of Exploiting Chrome, Firefox, and Windows Zero-Days

A Barcelona-based surveillanceware vendor named Variston IT is said to have surreptitiously planted spyware on targeted devices by exploiting several zero-day flaws in Google Chrome, Mozilla Firefox, and Windows, some of which date back to December 2018. “Their Heliconia framework exploits n-day vulnerabilities in Chrome, Firefox, and Microsoft Defender, and provides all the tools necessary […]

Cyber News, Cyber Threat Trends