Cyber Defense Advisors

News

Hackers Using PowerPoint Mouseover Trick to Infect System with Malware

The Russian state-sponsored threat actor known as APT28 has been found leveraging a new code execution method that makes use of mouse movement in decoy Microsoft PowerPoint documents to deploy malware. The technique “is designed to be triggered when the user starts the presentation mode and moves the mouse,” cybersecurity firm Cluster25 said in a technical report. “The code […]

Cyber News

How cybercriminals use public online and offline data to target employees

We post our daily lives to social media and think nothing of making key details about our lives public. We need to reconsider what we share online and how attackers can use this information to target businesses. Your firm’s security may be one text message away from a breach. How and why attackers target new […]

Cyber News

ICO Reprimands UK Organizations for GDPR Failings

Subject Access Requests experiencing significant delays

Cyber News

Stories from the SOC – C2 over port 22

Stories from the SOC is a blog series that describes recent real-world security incident investigations conducted and reported by the AT&T SOC analyst team for AT&T Managed Extended Detection and Response customers. Executive summary The Mirai botnet is infamous for the impact and the everlasting effect it has had on the world. Since the inception […]

Cyber News

Most Attackers Need Less Than 10 Hours to Find Weaknesses

Vulnerable configurations, software flaws, and exposed Web services allow hackers to find exploitable weaknesses in companies’ perimeters in just hours, not days.

Cyber News

Meta Takes Down Russian “Smash-and-Grab” Disinformation Campaign

Chinese network targeting US mid-terms also closed down

Cyber News

Cyber-Threats Top Business Leaders’ Biggest Concerns

Many are operating under a false sense of security

Cyber News

Alleged Optus Hacker Apologizes, Deletes Customers’ Exposed Data

They claimed responsibility for the attack and said they had deleted the stolen data

Cyber News

Critical WhatsApp Bugs Could Have Let Attackers Hack Devices Remotely

WhatsApp has released security updates to address two flaws in its messaging app for Android and iOS that could lead to remote code execution on vulnerable devices. One of them concerns CVE-2022-36934 (CVSS score: 9.8), a critical integer overflow vulnerability in WhatsApp that results in the execution of arbitrary code simply by establishing a video call. The issue impacts […]

Cyber News