Cyber Defense Advisors

News

Australia Increases Fines for Massive Data Breaches

After suffering two large, and embarrassing, data breaches in recent weeks, the Australian government increased the fine for serious data breaches from $2.2 million to a minimum of $50 million. (That’s $50 million AUD, or $32 million USD.) This is a welcome change. The problem is one of incentives, and Australia has now increased the […]

Cyber News, Cyber Threat Trends
  • by
  • October 26, 2022

How to update your Windows driver blocklist to keep malicious drivers away

For many years, attackers have used and abused various ways to get on our systems. From phishing to tricking us to click on websites, if an attacker can get their code on our systems they are no longer our systems. Attackers will even invest the time, energy, and expense to get their malicious drivers approved […]

Cyber News, Cyber Threat Trends

Risks that third-party vendors pose to outsourcing banks

This blog was written by an independent guest blogger. The banking and financial sector is known for its dependence on third-party vendors that help provide customers with quality financial products and services. It is one of the most interconnected sectors, making it one of the most vulnerable to cyberattacks. And because third parties operate through […]

Cyber News, Cyber Threat Trends
  • by
  • October 26, 2022

Hackers Actively Exploiting Cisco AnyConnect and GIGABYTE Drivers Vulnerabilities

Cisco has warned of active exploitation attempts targeting a pair of two-year-old security flaws in the Cisco AnyConnect Secure Mobility Client for Windows. Tracked as CVE-2020-3153 (CVSS score: 6.5) and CVE-2020-3433 (CVSS score: 7.8), the vulnerabilities could enable local authenticated attackers to perform DLL hijacking and copy arbitrary files to system directories with elevated privileges.

Cyber News, Cyber Threat Trends
  • by
  • October 26, 2022

Vice Society Hackers Are Behind Several Ransomware Attacks Against Education Sector

A cybercrime group known as Vice Society has been linked to multiple ransomware strains in its malicious campaigns aimed at the education, government, and retail sectors. The Microsoft Security Threat Intelligence team, which is tracking the threat cluster under the moniker DEV-0832, said the group avoids deploying ransomware in some cases and rather likely carries out extortion […]

Cyber News, Cyber Threat Trends

ICO Warns of “Immature” Biometric Tech

UK privacy regulator says vulnerable people may be at risk

Cyber News, Cyber Threat Trends

See Tickets Discloses Major Card Data Breach

Unspecified number of customers impacted over 2.5 years

Cyber News, Cyber Threat Trends

Ransomware Threat Shifts from US to EMEA and APAC

SonicWall figures show overall attacks trending down

Cyber News, Cyber Threat Trends
  • by
  • October 26, 2022

VMware Releases Patch for Critical RCE Flaw in Cloud Foundation Platform

VMware on Tuesday shipped security updates to address a critical security flaw in its VMware Cloud Foundation product. Tracked as CVE-2021-39144, the issue has been rated 9.8 out of 10 on the CVSS vulnerability scoring system, and relates to a remote code execution vulnerability via XStream open source library. “Due to an unauthenticated endpoint that […]

Cyber News, Cyber Threat Trends