Cyber Defense Advisors

News

  • by
  • November 24, 2022

Millions of Android Devices Still Don’t Have Patches for Mali GPU Flaws

A set of five medium-severity security flaws in Arm’s Mali GPU driver has continued to remain unpatched on Android devices for months, despite fixes released by the chipmaker. Google Project Zero, which discovered and reported the bugs, said Arm addressed the shortcomings in July and August 2022. “These fixes have not yet made it downstream […]

Cyber News, Cyber Threat Trends
  • by
  • November 24, 2022

EPSS explained: How does it compare to CVSS?

The Common Vulnerability Scanning System (CVSS) is the most frequently cited rating system to assess the severity of security vulnerabilities. It has been criticized, however, as not being appropriate to assess and prioritize risk from those vulnerabilities. For this reason, some have called for using the Exploit Prediction Scoring System (EPSS) or combining CVSS and […]

Cyber News, Cyber Threat Trends
  • by
  • November 24, 2022

DUCKTAIL malware campaign targeting Facebook business and ads accounts is back

A group of attackers, likely based in Vietnam, that specializes in targeting employees with potential access to Facebook business and ads management accounts, has re-emerged with changes to its infrastructure, malware, and modus operandi after being initially outed a few months ago. Dubbed DUCKTAIL by researchers from WithSecure, the group uses spear phishing to target […]

Cyber News, Cyber Threat Trends

14 PCI compliance security best practices for your business

Looking for more information on PCI Compliance security? Read 14 security best practices for PCI (Payment Card Industry) Compliance with our guide. The post 14 PCI compliance security best practices for your business appeared first on TechRepublic.

Cyber News, Cyber Threat Trends

Cyber Essentials Scheme Set for April 2023 Update

UK best practice security framework to offer new guidance

Cyber News, Cyber Threat Trends

Russian DDoS Briefly Downs European Parliament Site

Parliament had declared Russia a state-sponsor of terrorism

Cyber News, Cyber Threat Trends
  • by
  • November 24, 2022

Black Basta Ransomware Gang Actively Infiltrating U.S. Companies with Qakbot Malware

Companies based in the U.S. have been at the receiving end of an “aggressive” Qakbot malware campaign that leads to Black Basta ransomware infections on compromised networks. “In this latest campaign, the Black Basta ransomware gang is using QakBot malware to create an initial point of entry and move laterally within an organization’s network,” Cybereason […]

Cyber News, Cyber Threat Trends
  • by
  • November 24, 2022

This Android File Manager App Infected Thousands of Devices with Sharkbot Malware

The Android banking fraud malware known as SharkBot has reared its head once again on the official Google Play Store, posing as file managers to bypass the app marketplace’s restrictions. A majority of the users who downloaded the rogue apps are located in the U.K. and Italy, Romanian cybersecurity company Bitdefender said in an analysis published this […]

Cyber News, Cyber Threat Trends