Browsing: Latest News

The Lazarus APT Strikes Again: New Zero-Day Exploit Targets Investors through DeFi Games

Kirsten DoyleOctober 24, 20243 Mins Read

In a new and sophisticated campaign, the infamous North Korean-affiliated Lazarus APT group and its BlueNoroff subgroup have once again…

WhatsApp Debuts New Features for Contact Management with Enhanced Privacy Protections

Kirsten DoyleOctober 24, 20243 Mins Read

WhatsApp is rolling out a series of updates aimed at making it easier for users to manage their contacts privately…

CISA Proposes New Security Measures to Safeguard Sensitive Data from Adversary States

ISB Staff ReporterOctober 23, 20243 Mins Read

The US Cybersecurity and Infrastructure Security Agency (CISA) has announced a set of proposed security requirements aimed at protecting Americans’…

Google Mandiant: Time-to-Exploit Falls, Zero Day Exploits Rise

Josh Breaker RolfeOctober 23, 20243 Mins Read

A staggering 70% of exploited vulnerabilities in 2023 were leveraged as zero days, meaning threat actors exploited the flaws in…

Nearly half (44%) of CISOs Fail to Detect Breaches

Josh Breaker RolfeOctober 21, 20242 Mins Read

A staggering 44% of CISOs were unable to detect a data breach in the last 12 months using existing security…

Fortra Report Reveals Surge in Domain Impersonation, Social Media Attacks, and Dark Web Activity

ISB Staff ReporterOctober 21, 20243 Mins Read

Fortra’s Q2 2024 report has unveiled a series of concerning trends in the digital threat landscape, analyzing hundreds of thousands…

ConfusedPilot Exposes Vulnerability in AI Systems Used by Major Enterprises

Kirsten DoyleOctober 18, 20245 Mins Read

A novel attack, dubbed ConfusedPilot, has been discovered, targeting widely used Retrieval Augmented Generation (RAG)-based AI systems such as Microsoft…

Iranian Cyber Actors Compromise Critical Infrastructure Using Brute Force and Credential Access Tactics

Kirsten DoyleOctober 17, 20243 Mins Read

Iranian cyber actors are targeting organizations across critical infrastructure sectors, using brute force techniques to obtain user credentials and sell…

AI Companies Are Not Meeting EU AI Act Standards

Kirsten DoyleOctober 17, 20244 Mins Read

Leading artificial intelligence (AI) models are failing to meet key European regulatory standards in areas such as cybersecurity resilience and…

New Threat Actor Tool EDRSilencer Repurposed for Malicious Use

ISB Staff ReporterOctober 16, 20243 Mins Read

The Trend Micro Threat Hunting Team has identified an alarming new trend in cyber attacks: malefactors are adopting EDRSilencer, a…

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics