Iranian state hackers carry out destructive attacks on Israel
Since the Hamas terrorist attack on Oct. 7, attacks by Iranian state hackers have been taking place aimed at undermining public support in Israel for the war. To this end, they are carrying out destructive attacks on key Israeli organizations.
This is according to research data from Mandiant and... Read more
Sophisticated phishing campaign hijacks Microsoft Azure accounts
An advanced phishing campaign attacked hundreds of companies' Microsoft Azure accounts. Once the hackers got the login information, the accounts were hijacked with various forms of MFA.
According to Proofpoint security researchers, hundreds of Microsoft Azure accounts within companies have recen... Read more
Apple makes sideloading more dangerous than necessary to favour its App Store
Apple tries to keep its own App Store as secure as possible. While reports of Android malware circulate relatively often, dangerous iOS apps appear to rear their ugly head far less often. Apple claims this is due to the full control it has over the App Store. As European legislation forces the comp... Read more
‘Quishing attacks surge and bypass email security’
Email attacks using QR codes increased significantly in the last quarter of 2023. Researchers are concerned because quishing attacks are increasingly able to bypass email security solutions or spam filters.
Researchers at Abnormal Security found in a study that quishing attacks involving malicio... Read more
Check Point introduces Quantum Spark 1900 and 2000 firewalls for SMBs
Check Point's new next-generation firewalls are said to block 99.8 per cent of attacks.
In the Quantum Spark 1900 and 2000, Check Point therefore integrates AI to increase the level of defense against cyber threats. The AI aims to strengthen threat prevention significantly. According to Check Po... Read more
Fortinet wants users of several SSL VPNs to update
Fortinet is again warning of a critical vulnerability, this time in FortiOS SSL VPN. The vulnerability enables a remote execution code attack and is reportedly already being actively exploited.
Fortinet found another vulnerability in one of its products. This time it is in FortiOS SSL VPN. The v... Read more
Microsoft Bitlocker encryption cracked in seconds with Raspberry Pi
Security researcher Stacksmashing managed to crack Microsoft's Bitlocker encryption in 43 seconds. To do so, he used a Raspberry Pi Pico mini-PC, which costs only $4.
Stacksmashing recently embarrassed Microsoft by cracking its Bitlocker encryption within a minute. Bitlocker encryption is suppos... Read more
Spyware industry develops most zero-days and governments promote it
Commercial spyware vendors appear to be the largest developers of zero-day vulnerabilities. Through these vulnerabilities, spyware such as Pegasus and Predator can be installed on devices worldwide. This was stated in a report by Google, in which the tech company is also calling for greater actions... Read more
Ransomware payments reach record high: more than 1 billion euros
Last year, more than $1.1 billion (€1 billion) in ransom payments were made following a cyber attack. This beats the record from 2021.
This is according to figures from Chainalysis. In 2021, ransomware payments amounted to $983 million, but the following year saw a significant drop. The amount... Read more
Bug affects Linux systems: major risk to firmware
The vulnerability allows hackers to execute code early in a device's boot. Virtually all Linux distributions are affected by this bug.
Security developer Matthew Garrett warns of this. The vulnerability is in shim, a component that runs during the boot process. Shim performs tasks even before th... Read more