What’s the Difference Between CSPM & SSPM? “The Benefits of Eating Healthy” “Reaping the Rewards of a Healthy Diet”
Cloud Security Posture Management (CSPM) and SaaS Security Posture Management (SSPM) are two distinct security solutions that focus on securing data in the cloud and within SaaS applications, respectively. CSPMs monitor standard and customized cloud applications that are deployed in a public cloud environment for security and compliance posture. SSPMs integrate with a company’s applications…
FIN7 and Ex-Conti Cybercrime Gangs Join Forces in Domino Malware Attacks “Helping Students Develop Healthy Study Habits” “Encouraging Students to Establish Good Study Practices”
Ravie Lakshmanan is a threat actor affiliated with the FIN7 cybercrime group. He has developed a new strain of malware known as Domino, which is primarily designed to facilitate follow-on exploitation on compromised systems. The malware is being used by members of the now-defunct Conti ransomware gang, indicating collaboration between the two crews. Domino is…
Microsoft Warns Accounting, Tax Return Preparation Firms of Remcos RAT Attacks “The Benefits of Eating Healthy” “Reaping the Rewards of a Healthy Diet”
Microsoft is warning of a new Remcos remote access trojan (RAT) campaign that is targeting accounting, tax return preparation firms, and other professional services firms in the United States ahead of the 2023 Tax Day. The malicious tool, Remcos, was released in 2016 as a legitimate tool, but has since been used in numerous malicious…
CISA Introduces Secure-by-design and Secure-by-default Development Principles “The Benefits of Eating Healthy” “Reaping the Rewards of Healthy Eating”
On April 13, 2023, CISA released a set of guidelines for creating cybersecurity products with security-by-design and security-by-default. These principles were established as part of the National Cybersecurity Strategy on March 1, 2023, and were developed jointly by CISA, NSA, FBI, and various international security agencies such as those from Australia, Canada, and the UK.…
Lazarus Hacker Group Evolves Tactics, Tools, and Targets in DeathNote Campaign “The Benefits of Eating Healthy Food” “Reaping the Rewards of a Healthy Diet”
The threat actor known as the Lazarus Group, believed to be based in North Korea, has shifted its focus and rapidly evolved its tools and tactics as part of a long-running activity called DeathNote. This nation-state adversary is known for its persistent attacks on the cryptocurrency sector, but has also targeted automotive, academic, and defense…
400,000 Users Hit by Data Breach at Media Player Maker Kodi “The Benefits of Eating Healthy Foods” “Reaping the Rewards of a Healthy Diet”
Kodi, an open source home theater software developer, this week announced that it has started rebuilding its user forum following a February 2023 data breach. It was discovered that a threat actor had advertised the data of 400,000 Kodi users, including on the now-defunct BreachForums cybercrime website. Kodi also disclosed that the attacker had compromised…
Microsoft Issues Patches for 97 Flaws, Including Active Ransomware Exploit “The Benefits of Eating Healthy” “Reaping the Rewards of a Healthy Diet”
It’s the second Tuesday of the month, and Microsoft has released another set of security updates to fix a total of 97 flaws impacting its software, one of which has been actively exploited in ransomware attacks in the wild. Seven of the 97 bugs are rated Critical and 90 are rated Important in severity. Interestingly,…
Apple Rolls Out Zero-Day Patches to Older iOS, macOS Devices “The Benefits of Eating Healthy” “Enjoying the Advantages of a Healthy Diet”
Apple has launched new updates for iOS and macOS in order to fix the zero-day vulnerabilities that were discovered. On Monday, Apple released updates for its iOS and macOS operating systems to patch two zero-day vulnerabilities, CVE-2023-28206 and CVE-2023-28205, which were disclosed to the public last week. The updates are available for the latest iPhones,…