The insidious Brazilian banking malware, “Grandoreiro,” has now transcended borders, with a recent campaign by the threat group TA2725 targeting customers in Spain, Brazil, and Mexico. Dark web activity in Latin America has seen a significant surge over the past two years, with a staggering 360 billion attempted cyberattacks recorded in the region in 2022 alone. In this article, we
The security community is on high alert as a backdoor implant targeting Cisco devices has been discovered. Utilizing zero-day vulnerabilities in IOS XE software, threat actors have recently modified the implant to evade detection, posing a significant risk to thousands of affected devices. Evading detection In an attempt to prolong the lifespan of their malicious activities, the threat actors behind
Lightning Labs, a leading developer of technologies for the Bitcoin network, has announced the launch of the mainnet alpha version of its groundbreaking protocol called Taproot Assets. This release marks a significant milestone in Bitcoin’s evolution, positioning it as a global routing network for the internet of money. With Taproot Assets, stablecoins and other digital tokens can now seamlessly trade
In the ever-evolving landscape of technology, organizations across industries are facing tremendous challenges in securing their devices. The rapid adoption of new technologies has outpaced the establishment of robust cyber defenses, leaving many vulnerable to malicious attacks. Unfortunately, the security of medical devices has taken a back seat as healthcare providers and patients have focused on addressing more immediate concerns.
Dell Technologies, a leading provider of IT solutions, has recently rolled out a significant update to its PowerMax operating system. The PowerMaxOS 10.1 update focuses on improving energy efficiency, cutting operating costs, and reducing the environmental impact of storage infrastructure. Let’s delve into the key enhancements brought by this update and how they can benefit organizations. Improved Energy Efficiency In
In a bid to provide customers with greater application visibility and enhanced control over security policy enforcement, Aruba Networks, the network subsidiary of Hewlett Packard Enterprise, is stepping up its game. By enhancing its cloud-based service, NetConductor, Aruba Networks aims to enable enterprises to centrally manage the security of their distributed networks. This move comes in response to the growing
Salt Security’s recent research has uncovered critical API security vulnerabilities in the OAuth protocol implementations of widely used online platforms such as Grammarly, Vidio, and Bukalapak. These vulnerabilities, although now addressed, had the potential to compromise user credentials and enable full account takeovers, posing risks to billions of users. Background on OAuth Hijacking Series This research paper by Salt Labs
In a significant stride against cybercrime, global law enforcers have made remarkable progress in dismantling the operations of the notorious Ragnar Locker ransomware group. Through a collaborative effort involving authorities from multiple countries including France, Czechia, Germany, Spain, and the US, crucial infrastructure has been seized, and a key member of the group has been apprehended. This article provides a
Versa Networks, a leading provider of secure SD-WAN solutions, has unveiled Versa SD-LAN, a powerful software package designed to streamline network management and enhance security. This innovative solution integrates essential components such as security, switching, routing, network services, and AI management on approved white box Ethernet switches and access points. With Versa SD-LAN, organizations can eliminate fragmented point products, disjointed
The increasing number of ransomware attacks has become a significant concern in the cyber world. This article explores the growing trend of Ransomware-as-a-Service (RaaS) and focuses on GhostLocker, a newly launched RaaS platform by hacktivist groups. We delve into the lucrative nature of ransomware, the features and capabilities of GhostLocker, its accessibility, and the need for robust cybersecurity measures in
Password management software maker 1Password recently announced that one of its systems had been breached by a hacker. However, the company assured its users that no sensitive data, including user information, was stolen in the incident. In this article, we will delve into the breach and the measures taken by 1Password to protect its systems and user data. Confirmation of
In a shocking turn of events, a cyberattack on a shared IT services organization has caused significant disruptions in five member hospitals across Ontario. With patient safety at stake and critical medical services at risk, these hospitals are now forced to cancel or reschedule patient appointments, while non-emergency cases are redirected to other facilities. This unfortunate incident sheds light on
