Stay informed with Security World Trend Now! Discover the latest security trends, technologies, and strategies to protect your data, networks, and digital identity. Get expert insights and practical advice for ensuring your online safety. Explore now!
Passkeys Gain Momentum as Major Tech Companies Extend Support Several major tech companies, including Apple and Google, are extending their support for passkeys, a type of digital credential that enables passwordless authentication through private cryptographic keys. This week, Apple announced an API that will allow passkeys to work with third-party software, and it is expanding…
MOVEit Mitigations: New Patches Published for Further Protection Last month, a zero-day vulnerability was found in the web front-end of the MOVEit file sharing software, allowing cybercriminals to steal and threaten victims’ data using the Clop ransomware. Even companies that were not MOVEit customers were affected due to outsourced payroll providers that were MOVEit customers….
Researchers Link Financially Motivated Attacks and Espionage Activities to Asylum Ambuscade Cybercrime Group Security researchers have discovered a cybercrime group that has been active since at least 2020, which has been linked to a series of financially motivated attacks and a set of advanced persistent threat- (APT) like espionage activities. According to an ESET analysis,…
Denial-of-Service Attacks Dominate the 2023 Threat Landscape The “2023 Data Breach Investigations Report” by Verizon revealed that denial-of-service attacks remained the most common type of security incident experienced in 2022, accounting for 38% of more than 16,300 incidents. System intrusions, basic web application attacks, and social engineering caused 32% of confirmed data breaches. Erick Galinkin,…
Progress Software issues second patch for MOVEit Transfer App vulnerabilities Progress Software has released a second patch to address additional SQL Injection vulnerabilities in its MOVEit Transfer app. This follows the fix for a widely exploited zero-day vulnerability in the app released just days before. The new vulnerabilities, found during a code review by Huntress,…
Unlocking Funding for IT Security Projects: A Lesson in Effective Communication As the role of technology in our daily lives becomes increasingly prominent, it has become more important than ever to ensure that our digital assets are protected from potential cyber threats. Securing funding for IT security projects, however, can be challenging. In this report,…
Ukrainian Hackers Target Russian Telecom Firm Connected to Central Bank On Thursday, the Cyber Anarchy Squad, a Ukrainian hacking group, claimed responsibility for a cyberattack on Infotel JSC, a major Russian telecom firm that provides critical infrastructure to the Russian banking system. Though the extent of the attack’s impact on the banking system is still…
The DOJ Charges Two Russian Nationals with Historic Mt. Gox Hack The United States Department of Justice has charged two Russian nationals, Alexey Bilyuchenko and Aleksandr Verner, with conspiring to launder around 647,000 bitcoins stolen more than a decade ago in a hack of the now-defunct cryptocurrency exchange Mt. Gox. At the time, Mt. Gox was…
Thoughts on Scheduled Password Changes As we continue to use passwords as the primary means of authentication for many online accounts, the question of whether scheduled password changes are necessary remains a topic of discussion. The Dangers of Rotating Passwords The idea that changing passwords regularly makes them safer is flawed. In fact, it can…
Save Time on Network Security With This Guide: Perimeter 81’s Network Security Platform As cyber attacks become more commonplace, individuals, businesses, and financial institutions must invest in a secure network infrastructure. But with the ever-increasing cyber threats and evolving tactics, IT managers are faced with the daunting task of keeping their systems secure while minimizing…