Stay informed with Security World Trend Now! Discover the latest security trends, technologies, and strategies to protect your data, networks, and digital identity. Get expert insights and practical advice for ensuring your online safety. Explore now!
Russian-Backed C10p Ransomware Group Evolves Tactics with MOVEit Campaign Mass Extortion Campaign Targets Leading International Brands The recent mass extortion campaign carried out by the Russian-backed C10p ransomware group has managed to breach at least 160 confirmed victims by the end of June. This evolution in tactics is likely to attract the attention of rival…
Funding/M&A Infisical Snags $2.8M Seed Funding for Secrets Sprawl Security Tech Background Infisical, a San Francisco startup focused on open-source technology for managing secrets sprawl, has raised $2.8 million in seed funding. The investment comes as investors increasingly support early-stage companies in the supply chain security space. The funding round was led by Gradient Ventures,…
Chinese Threat Group Adopts HTML Smuggling Technique to Spread RAT A Chinese threat group has been using a sophisticated HTML smuggling technique to target European policy-makers and spread the PlugX remote access Trojan (RAT), according to a report published by Check Point Research (CPR) analysts. This campaign, named SmugX by the researchers, has been ongoing…
The Growing Threat of Cybersecurity in the Technology, Energy, and Telecom Industries Introduction In today’s interconnected world, businesses across various industries heavily rely on technology to carry out their daily operations. As a result, the risk of cyber threats has become a pressing concern, particularly for sectors such as technology, energy, and telecommunications. With the…
Actively Exploited Solar Power Product Vulnerability Could Expose Energy Organizations to Attacks Introduction A vulnerability in Contec’s SolarView solar power monitoring product has been actively exploited, posing a significant threat to energy organizations. The vulnerability, identified as CVE-2022-29303, allows unauthenticated attackers to remotely inject code into SolarView systems. This exploit has been used by a…
Data Protection Sweden Orders Four Companies to Stop Using Google Tool The Background Sweden’s privacy protection agency, the IMY, has ordered four companies to stop using Google Analytics, a tool that measures and analyzes web traffic. The IMY determined that the use of Google Analytics by these companies transfers personal data to the United States,…
Microsoft‘s Proposed Solution to Ransomware The Problem and Proposed Solution Recently, during a private event on security by design, I was surprised to learn that many well-informed individuals were unaware of a potential solution to ransomware. Ransomware, a prevalent form of cyber attack, works by encrypting files and demanding a ransom to restore them. Microsoft…
Ransomware Attack Shuts Down Operations at Japan’s Port of Nagoya The Port of Nagoya, Japan’s largest port in terms of cargo capacity, has temporarily suspended loading and unloading operations due to a ransomware attack. The attack, which occurred on July 4, impacted the Nagoya United Terminal System (NUTS), the computer system used to operate the…
Elevating Data Security with McAfee The Rising Threat of Data Breaches Data breaches have become an increasingly prevalent concern in today’s digitized world. Every year, scores of individuals and organizations fall victim to hackers seeking to exploit sensitive information for personal gain. Storing secrets, whether they are proprietary corporate data, personal financial records, or even…
Vulnerabilities in Firefox 115 Patched Introduction Mozilla has recently released Firefox 115, a stable channel update that includes patches for several vulnerabilities, including two high-severity use-after-free bugs. These vulnerabilities could potentially allow attackers to execute arbitrary code and carry out various attacks, such as spoofing and cross-compartment mismatch. This report examines the details of these…