b2b-daily
Tag

Information Security

Wireshark 4.4.4 Update Patches Critical DoS Vulnerability and More
Cyber Security
Wireshark 4.4.4 Update Patches Critical DoS Vulnerability and More

The Wireshark Foundation has released Wireshark version 4.4.4, addressing a significant vulnerability that risked denial-of-service (DoS) attacks through packet injection. This notable update remedies CVE-2025-1492, identified as a high-severity vulnerability within the Bundle Protocol and CBOR dissectors. Previously, these issues caused application crashes, infinite loops, and memory leaks when processing malicious network traffic. The vulnerability affected Wireshark versions 4.4.0 through

Read More
February 24, 2025
Can Remote Hacks Compromise Your UniFi Protect Camera System?
Cyber Security
Can Remote Hacks Compromise Your UniFi Protect Camera System?

Protecting your home and business with surveillance cameras is a common practice, but the vulnerability of these systems to remote hacks raises serious concerns. Recently, Ubiquiti Networks issued an urgent security advisory regarding several critical vulnerabilities in its UniFi Protect camera ecosystem. These issues, including remote code execution (RCE), have exposed significant weaknesses that could allow hackers to gain unauthorized

Read More
February 24, 2025
How Are Cybercriminals Exploiting URL Manipulation in Phishing Attacks?
Cyber Security
How Are Cybercriminals Exploiting URL Manipulation in Phishing Attacks?

In the ever-evolving landscape of cyber threats, phishing campaigns have remained a persistent menace, but recent developments have brought forth a new wave of sophistication that has caught the attention of cybersecurity experts. A recent campaign identified by Check Point researchers has unveiled a method where cybercriminals exploit URL manipulation techniques to disguise malicious links, making it increasingly difficult for

Read More
February 24, 2025
Sora Ventures Introduces MicroStrategy 2.0 to Earn Bitcoin Yield
Fintech Blockchain
Sora Ventures Introduces MicroStrategy 2.0 to Earn Bitcoin Yield

In a groundbreaking move aimed at reshaping the Bitcoin investment landscape, Asia-based venture capital firm Sora Ventures has introduced the “MicroStrategy 2.0 framework”. This innovative initiative is spearheaded by founder Jason Fang, and it aspires to redefine how investors interact with Bitcoin, transforming it from a mere asset to a revenue-generating vehicle. By harnessing structured products, which are typically the

Read More
February 24, 2025
Health Net Federal Services Pays $11.2M Over False Cybersecurity Claims
Cyber Security
Health Net Federal Services Pays $11.2M Over False Cybersecurity Claims

In a recent development, Health Net Federal Services (HNFS), a subsidiary of Centene Corporation, agreed to an $11.2 million settlement to address accusations of falsely certifying their cybersecurity compliance to the Department of Defense (DoD). HNFS was responsible for implementing cybersecurity controls necessary for managing the Defense Health Agency’s (DHA) TRICARE program between 2015 and 2018. During this period, the

Read More
February 24, 2025
What Led to the Disbandment of the BlackBasta Ransomware Gang?
Cyber Security
What Led to the Disbandment of the BlackBasta Ransomware Gang?

The recent leak of internal chat logs from the notorious BlackBasta ransomware gang has brought to light a dramatic and complex tale of internal disputes, operational challenges, and mounting external pressures that ultimately led to the group’s dissolution. BlackBasta, first identified in April 2022 and believed to be a merger of the infamous Conti and REvil ransomware groups, was known

Read More
February 24, 2025
How Are Chinese Hackers Using JumbledPath to Spy on US Telecom Networks?
Cyber Security
How Are Chinese Hackers Using JumbledPath to Spy on US Telecom Networks?

In a sophisticated cyber-espionage campaign, Chinese state-sponsored hackers, known as Salt Typhoon, have been targeting US telecommunication providers. The hackers employed a custom tool named JumbledPath to clandestinely monitor network traffic and potentially exfiltrate sensitive data. This devious tactic has raised concerns about the security of American telecom networks, prompting an urgent need for robust countermeasures. The Role of JumbledPath

Read More
February 24, 2025
Is Mutuum Finance the Next Big Opportunity After Solana’s Decline?
Fintech Blockchain
Is Mutuum Finance the Next Big Opportunity After Solana’s Decline?

In the ever-shifting landscape of cryptocurrency investments, the recent 20% drop in Solana’s (SOL) value from its recent high has left investors searching for more promising opportunities, leading many to turn their gaze towards Mutuum Finance (MUTM). This decline in Solana’s price can be attributed to broader market fluctuations and profit-taking activities, prompting a shift in investment focus. As investors

Read More
February 24, 2025
Salt Typhoon Exploits CVE-2018-0171 to Infiltrate U.S. Telecom Networks
Cyber Security
Salt Typhoon Exploits CVE-2018-0171 to Infiltrate U.S. Telecom Networks

Cisco revealed that a sophisticated Chinese threat actor group known as Salt Typhoon successfully exploited the CVE-2018-0171 vulnerability. Through well-funded and meticulously planned efforts, the adversary infiltrated major U.S. telecommunications networks, maintaining access for over three years. This campaign not only underscores the persistence and capacity of advanced persistent threat (APT) groups but also demonstrates their ability to compromise numerous

Read More
February 24, 2025
ACRStealer Malware Exploits Google Docs for Credential Theft Campaigns
Cyber Security
ACRStealer Malware Exploits Google Docs for Credential Theft Campaigns

The world of cybersecurity has a new threat on its hands, with the emergence of ACRStealer, a sophisticated malware variant that ingeniously exploits Google Docs as a command-and-control (C2) server, thereby stealing sensitive login credentials. This advanced attack method leverages the trusted reputation of Google’s services to avoid detection, representing a significant escalation in credential-theft campaigns. ACRStealer operates by embedding

Read More
February 24, 2025
Salt Typhoon’s Cyberespionage Exposes Telecom Industry Vulnerabilities
Cyber Security
Salt Typhoon’s Cyberespionage Exposes Telecom Industry Vulnerabilities

In late 2024, the U.S. telecommunications infrastructure fell victim to an incredibly sophisticated and persistent cyberespionage campaign engineered by the state-aligned hacking group known as “Salt Typhoon.” Over three years of relentless attacks, Salt Typhoon utilized stolen credentials and a significant Cisco vulnerability (CVE-2018-0171) to infiltrate the network. Despite several layers of protection, they managed to maintain undetected access through

Read More
February 24, 2025
NSA’s Alleged Cyber Espionage Campaign Against Chinese University Unveiled
Cyber Security
NSA’s Alleged Cyber Espionage Campaign Against Chinese University Unveiled

Recent allegations from Chinese cybersecurity authorities have placed the U.S. National Security Agency (NSA) under scrutiny for orchestrating a multi-year cyber espionage campaign against Northwestern Polytechnical University (NPU), a renowned institution specializing in aerospace and defense research. Joint reports by China’s National Computer Virus Emergency Response Center (CVERC) and cybersecurity firm Qihoo 360 have shed light on a highly sophisticated

Read More
February 24, 2025
Load More