Browsing: Threats and Vulnerabilities

Fortra Reports Alarming Increase in Abuse of Cloudflare Services

Josh Breaker RolfeNovember 18, 20243 Mins Read

Cloudflare’s Pages and Workers platforms have experienced a surge of malicious activity in the past year, research from Fortra’s Suspicious…

Google Debuts Online Fraud and Scams Advisory

Kirsten DoyleNovember 15, 20243 Mins Read

Google has launched a regular fraud and scams advisory to combat the growing volume and sophistication of online scams. Multinational…

Machine Identities Outnumber Human Ones: 69% of Companies Face Rising Security Risks”

ISB Staff ReporterNovember 14, 20243 Mins Read

Sixty-nine percent of organizations now manage more machine identities than human ones, with nearly half handling ten times as many.…

New Wave of Phishing Attacks Exploits Microsoft Visio Files for Two-Step Credential Theft

ISB Staff ReporterNovember 12, 20243 Mins Read

Researchers at cybersecurity firm Perception Point have identified a new type of two-step phishing attack that exploits Microsoft Visio files…

JFrog Uncovers Critical Vulnerabilities in Machine Learning Platforms

Josh Breaker RolfeNovember 7, 20242 Mins Read

Software supply chain company JFrog revealed on Monday that it had discovered 22 software vulnerabilities across 15 machine learning-related open-source…

Google’s Big Sleep AI Tool Finds Zero-Day Vulnerability

Kirsten DoyleNovember 6, 20245 Mins Read

In a major breakthrough, Google’s AI-powered research tool, Big Sleep, discovered a vulnerability in SQLite, one of the most widely…

Advanced Variant of FakeCall Malware Targets Mobile Users with Sophisticated Vishing Attacks

Kirsten DoyleNovember 4, 20243 Mins Read

Mobile security company Zimperium’s zLabs team has uncovered an advanced variant of the FakeCall malware that employs “Vishing” (voice phishing)…

Microsoft Warns of Major Credential Theft by Chinese Hackers Via Covert Network Attacks

Kirsten DoyleNovember 4, 20244 Mins Read

Since August last year, Microsoft has identified a surge in intrusion activity with attackers using sophisticated password spray techniques to…

Redline Stealer Dominates: VIPRE’s Q3 Report Highlights Sophisticated BEC Tactics and Evolving Malware Trends

Dilki RathnayakeNovember 1, 20243 Mins Read

VIPRE Security Group’s Q3 2024 Email Threat Trends Report reveals the increasing sophistication of email-based threats, particularly business email compromise…

Malicious npm Packages Found to Distribute BeaverTail Malware

ISB Staff ReporterOctober 29, 20243 Mins Read

Three malicious packages uploaded to the npm registry were discovered to harbor BeaverTail, a JavaScript downloader and information stealer associated…

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics