Yearly Archives: 2024
China-linked group Salt Typhoon targets ‘handful’ of ISPs in the US
A “handful” of as yet unspecified U.S. internet service providers (ISPs) were reportedly targeted by a new group linked to the Chinese ...
Meta vs Deutsche Telekom: A net neutrality showdown – here’s everything you need to know
News
Meta is ending its peering relationship with Deutsche Telekom, accusing the German incumbent of “putting the open internet at risk...
CISA: Ongoing critical infrastructure OT/ICS device attacks involve unsophisticated techniques
Ongoing targeting of vulnerable OT/ICS devices should prompt critical infrastructure entities to replace default passwords, activate mu...
Global DragonForce attacks involve custom Conti, LockBit ransomware
More than 80 manufacturing, transportation, and real estate organizations around the world, most of which are in the U.S., have been ta...
US ISPs targeted by new Chinese cyberespionage gang
Novel Chinese cyberespionage operation Salt Typhoon was reported by The Wall Street Journal to have compromised several internet servic...
Microsoft 365 credentials targeted by TikTok URL-based phishing
Attacks commence with the distribution of malicious emails purporting to be an Office 365 alert luring recipients to cancel a request f...
Novel Splinter post-exploitation tool examined
Aside from performing Windows command execution and remote process injection-based module implementation, Splinter — which has "excepti...
Dell claimed to be breached anew
Included in the nearly 500 MB data trove leaked by grep were information on Dell's internal ticketing system, including Agile and VPN i...
Prolonged spyware injection possible with ChatGPT macOS flaw
Such an attack technique dubbed "SpAIware" could be leveraged to facilitate continuous exfiltration of all inputs provided by the targe...
Android memory safety bugs steeply decline
Despite prioritization for memory-safe languages, old code had only been subjected to security fixes and was largely unchanged as Googl...