Cyber Defense Advisors

Cyber Threat Trends

An Untrustworthy TLS Certificate in Browsers

The major browsers natively trust a whole bunch of certificate authorities, and some of them are really sketchy: Google’s Chrome, Apple’s Safari, nonprofit Firefox and others allow the company, TrustCor Systems, to act as what’s known as a root certificate authority, a powerful spot in the internet’s infrastructure that guarantees websites are not fake, guiding […]

Cyber News, Cyber Threat Trends
  • by
  • November 10, 2022

Hacker Rewarded $70,000 for Finding Way to Bypass Google Pixel Phones’ Lock Screens

Google has resolved a high-severity security issue affecting all Pixel smartphones that could be trivially exploited to unlock the devices. The vulnerability, tracked as CVE-2022-20465 and reported by security researcher David Schütz in June 2022, was remediated as part of the search giant’s monthly Android update for November 2022. “The issue allowed an attacker with physical access to bypass

Cyber News, Cyber Threat Trends

Qualys Security Conference 2022: Corralling horses in an expanding edge rodeo

It wasn’t a “Day of Anger” as Qualys used the final leg of its multi-city conference series to discuss the control of edge assets. The post Qualys Security Conference 2022: Corralling horses in an expanding edge rodeo appeared first on TechRepublic.

Cyber News, Cyber Threat Trends

Majority of Security Managers Lack Threat Intelligence Skills

The report suggests threat intelligence is a crucial source for vulnerability detection

Cyber News, Cyber Threat Trends
  • by
  • November 10, 2022

Warning: New Massive Malicious Campaigns Targeting Top Indian Banks’ Customers

Cybersecurity researchers are warning of “massive phishing campaigns” that distribute five different malware targeting banking users in India. “The bank customers targeted include account subscribers of seven banks, including some of the most well-known banks located in the country and potentially affecting millions of customers,” Trend Micro said in a report published this week. Some of the

Cyber News, Cyber Threat Trends

The ‘Great Resignation’ Caused Insider Threats to Peak in Q3 2022, Kroll Finds

Kroll’s Q3 2022 Threat Landscape report showed an unprecedented increase in insider threats

Cyber News, Cyber Threat Trends

#IRISSCON: Cyber Professionals Now Tasked with Securing Society, Says Mikko Hyppönen

Mikko Hyppönen discusses how cyber-threats will become even more dangerous as reliance on connectivity grows

Cyber News, Cyber Threat Trends
  • by
  • November 10, 2022

Researchers Uncover PyPI Package Hiding Malicious Code Behind Image File

A malicious package discovered on the Python Package Index (PyPI) has been found employing a steganographic trick to conceal malicious code within image files. The package in question, named “apicolor,” was uploaded to the Python third-party repository on October 31, 2022, and described as a “Core lib for REST API,” according to Israeli cybersecurity firm Check […]

Cyber News, Cyber Threat Trends
  • by
  • November 10, 2022

Is Cybersecurity Awareness Month Anything More Than PR?

Cybersecurity Awareness Month has been going on since 2004. This year, Cybersecurity Awareness Month urged the public, professionals, and industry partners to “see themselves in cyber” in the following ways:  The public, by taking action to stay safe online. Professionals, by joining the cyber workforce. Cyber industry partners, as part of the cybersecurity solution. CISA outlined four […]

Cyber News, Cyber Threat Trends