Tag: social engineering
-
The Register: How Chinese insiders are stealing data scooped up by President Xi’s national surveillance system
Source URL: https://www.theregister.com/2024/12/08/chinese_insiders_stealing_data/ Source: The Register Title: How Chinese insiders are stealing data scooped up by President Xi’s national surveillance system Feedly Summary: ‘It’s a double-edged sword,’ security researchers tell The Reg Feature Chinese tech company employees and government workers are siphoning off user data and selling it online – and even high-ranking Chinese Communist…
-
Hacker News: ExxonMobil’s Alleged Hack-for-Hire Campaign Targeting Climate Activists
Source URL: https://www.vulnu.com/p/inside-exxonmobils-alleged-hack-for-hire-campaign-targeting-climate-activists Source: Hacker News Title: ExxonMobil’s Alleged Hack-for-Hire Campaign Targeting Climate Activists Feedly Summary: Comments AI Summary and Description: Yes Summary: The text reveals alarming insights into the intersection of corporate interests and cybersecurity, showcasing a significant hack-for-hire operation backed by ExxonMobil. This operation highlights how corporate entities are increasingly leveraging advanced cyber…
-
The Register: Microsoft: Another Chinese cyberspy crew targeting US critical orgs ‘as of yesterday’
Source URL: https://www.theregister.com/2024/12/06/chinese_cyberspy_us_data/ Source: The Register Title: Microsoft: Another Chinese cyberspy crew targeting US critical orgs ‘as of yesterday’ Feedly Summary: Redmond threat intel maven talks explains this persistent pain to The Reg A Chinese government-linked group that Microsoft tracks as Storm-0227 yesterday started targeting critical infrastructures organisations and US government agencies, according to Redmond’s…
-
Cloud Blog: Bridging the Gap: Elevating Red Team Assessments with Application Security Testing
Source URL: https://cloud.google.com/blog/topics/threat-intelligence/red-team-application-security-testing/ Source: Cloud Blog Title: Bridging the Gap: Elevating Red Team Assessments with Application Security Testing Feedly Summary: Written by: Ilyass El Hadi, Louis Dion-Marcil, Charles Prevost Executive Summary Whether through a comprehensive Red Team engagement or a targeted external assessment, incorporating application security (AppSec) expertise enables organizations to better simulate the tactics and…
-
CSA: Why Are Government Email Attacks Increasing?
Source URL: https://abnormalsecurity.com/blog/state-and-local-government-email-attack-trends Source: CSA Title: Why Are Government Email Attacks Increasing? Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the alarming rise in email-related cyber threats, particularly targeting state and local government entities. Notably, it highlights the surge in phishing attacks, business email compromises, and account takeovers, emphasizing the vulnerability of…
-
The Register: Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online
Source URL: https://www.theregister.com/2024/12/03/760k_xerox_nokia_bofa_morgan/ Source: The Register Title: Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online Feedly Summary: Yet another result of the MOVEit mess Hundreds of thousands of employees from major corporations including Xerox, Nokia, Koch, Bank of America, Morgan Stanley and others appear to be the latest victims…
-
Microsoft Security Blog: Microsoft shares latest intelligence on North Korean and Chinese threat actors at CYBERWARCON
Source URL: https://www.microsoft.com/en-us/security/blog/2024/11/22/microsoft-shares-latest-intelligence-on-north-korean-and-chinese-threat-actors-at-cyberwarcon/ Source: Microsoft Security Blog Title: Microsoft shares latest intelligence on North Korean and Chinese threat actors at CYBERWARCON Feedly Summary: At CYBERWARCON 2024, Microsoft Threat Intelligence analysts will share research and insights on North Korean and Chinese threat actors representing years of threat actor tracking, infrastructure monitoring and disruption, and their attack…
-
The Register: The only thing worse than being fired is scammers fooling you into thinking you’re fired
Source URL: https://www.theregister.com/2024/11/28/fired_phishing_campaign_cloudflare/ Source: The Register Title: The only thing worse than being fired is scammers fooling you into thinking you’re fired Feedly Summary: Scumbags play on victims’ worst fears in phishing campaign referencing UK Employment Tribunal A current phishing campaign scares recipients into believing they’ve been sacked, when in reality they’ve been hacked –…
-
Slashdot: Data Broker Leaves 600K+ Sensitive Files Exposed Online
Source URL: https://yro.slashdot.org/story/24/11/27/2253216/data-broker-leaves-600k-sensitive-files-exposed-online Source: Slashdot Title: Data Broker Leaves 600K+ Sensitive Files Exposed Online Feedly Summary: AI Summary and Description: Yes Summary: The text details a significant security breach involving an unprotected Amazon S3 bucket owned by SL Data Services, which exposed over 600,000 sensitive files containing personal information, including criminal histories and background checks.…
-
The Register: Data broker leaves 600K+ sensitive files exposed online
Source URL: https://www.theregister.com/2024/11/27/600k_sensitive_files_exposed/ Source: The Register Title: Data broker leaves 600K+ sensitive files exposed online Feedly Summary: Researcher spotted open database before criminals … we hope Exclusive More than 600,000 sensitive files containing thousands of people’s criminal histories, background checks, vehicle and property records were exposed to the internet in a non-password protected database belonging…