BACKGROUND: New poll results from Deloitte (press rls. & poll results linked at bottom) signal a vast majority (86.7%) ofC-suite and other executives say they expect the number of cyberattacks targeting their organizations to increase over the next 12 months. While 64.8% of polled executives say that ransomware is a cyber threat posing major concern to their organizations over the next 12 months, only 33.3% say that their organizations have simulated ransomware attacks to prepare for such an incident.
ISBuzz Team
BACKGROUND: It has been reported that the cloud security vendor Wiz—which recently made news by discovering a massive vulnerability in Microsoft Azure’s CosmosDB-managed database service—has found another hole in Azure. This vulnerability will impact the Linux virtual machines and in OMI service which is installed as part of the byproduct of enabling any of several logging reporting and/or management options in Azure’s UI.
BACKGROUND: Researchers at SentinelLabs have discovered a high severity flaw in an HP OMEN driver – a popular gaming system – which affects millions of gaming devices and users worldwide. HP Omen Gaming Hub is a software product that comes preinstalled on all HP OMEN desktops and laptops and can be downloaded from the Microsoft Store to any Windows 10 computer that uses peripheral accessories sold under the OMEN brand. This software can be used to control and optimize settings such as device GPU, fan speeds, CPU overclocking, memory, and more. The same software is used to set and adjust lighting…
First seen in August and still in a testing phase, this Android banking trojan offered on the Dark Web is promising a disturbingly ambitious program of features. As reported Friday in a ThreatFabric Analysis, “SOVA is…taking a page out of traditional desktop malware.“ “Including DDoS, a man in the middle, and ransomware to its arsenal could mean incredible damage to end-users, in addition to the already very dangerous threat that overlay and keylogging attacks serve.” Functionalities of the bot, as advertised by its authors, include: Steal Device Data.Send SMS.Overlay and Cookie injection.Overlay and Cookie injection via Push notification.USSD execution.Credit Card overlays…
BACKGROUND: Following the news that Britons are ‘too polite’ to hang up scam phone calls, coupled with today’s research by Which? revealing ‘smishing’ text messages are on the rise, cybersecurity expert breaks down why consumers aren’t to blame, and how banks and organisations must have our backs.
BACKGROUND: It has been reported that Apple has updated its software for iPhones to address a critical vulnerability that independent researchers say has been exploited by notorious surveillance software to spy on a Saudi activist. The urgent update that Apple released yesterday plugs a hole in the iMessage software that allowed hackers to infiltrate a user’s phone without the user clicking on any links, according to Citizen Lab. The Saudi activist chose to remain anonymous, Citizen Lab said.
BACKGROUND: Technology giant Olympus hit by BlackMatter ransomware. Olympus said Saturday that it “is currently investigating a potential cybersecurity incident affecting limited areas of its EMEA (Europe, Middle East, Africa) IT systems. Emsisoft CTO Fabian Wosar said in a tweet that the BlackMatter crypto routines are identical to those used by the DarkSide ransomware group responsible for the recent Colonial Pipeline attack. The Olympus Statement gives September 8th as the date of the incident. A ransom note left on the computer stated “Your network is encrypted, and not currently operational,” … “If you pay, we will provide you the programs…
BACKGROUND: Following today’s new report from Finance UK which has discovered that impersonation fraud has doubled in the first half of this year and, in many cases, politeness is making people more vulnerable, cybersecurity expert reacted below.
BACKGROUND: Researchers at Yandex & Qrator Labs have been tracking what they are calling the “Mēris” botnet (meaning Plague in Latvian) and it may be the largest DDoS attack ever. The ongoing attack was also confirmed by the US company Cloudflare, and was said to have peaked at the rate of 21.8 million requests per second. While the Russian Internet giant Yandex has been the headline for an ongoing record DDoS attack, Qrator says other countries have seen similar attacks from this same source these past few weeks. Although the initial botnet army was thought to be in the 30 –…
Please see security expert comments below on vaccine passport security.