%term

QuickShell: Sharing Is Caring about an RCE Attack Chain on Quick Share

Aug 10, 2024 By SafeBreach In SafeBreach

Authors: Shmuel Cohen, Sr. Security Researcher | Or Yair, Security Research Team Lead Google’s Quick Share is a peer–to-peer data-transfer utility for Android, Windows, and Chrome operating systems. It uses a variety of communication protocols—including Bluetooth, Wi-Fi, Wi-Fi Direct, Web real-time communication (WebRTC), and near-field communication (NFC)—to send files between compatible devices that are in close proximity to each other.

Read Post

SafeBreach

Read more about QuickShell: Sharing Is Caring about an RCE Attack Chain on Quick Share

Rising Threats: The Rapid Evolution of Cyber Attacks | Razorthorn Security

Aug 9, 2024 By Razorthorn In Razorthorn

Oliver Rocheford discusses the increasing speed and sophistication of cyber attacks. Learn how malicious actors are exploiting vulnerabilities faster than ever, outpacing even rapid patching efforts.

View Video

Razorthorn

Read more about Rising Threats: The Rapid Evolution of Cyber Attacks | Razorthorn Security

What to Do If Your Company Faces a Cyber Attack?

Aug 8, 2024 By SecuritySenses In SecuritySenses

If your company is targeted by a cyber attack, the impact can be devastating. Swift and effective action is crucial in minimizing damage. Understanding the steps to take can significantly improve your company's ability to recover.

Read Post

SecuritySenses

Read more about What to Do If Your Company Faces a Cyber Attack?

CTI Roundup: Cisco Talos Q2 IR Trends Report, New GenAI Scams on the Horizon

Aug 7, 2024 By Tanium In Tanium

Cisco Talos releases its Q2 IR trends report, ransomware groups target ESXi flaw, and scammers exploit GenAI in domain registration and network attacks.

Read Post

Tanium

Read more about CTI Roundup: Cisco Talos Q2 IR Trends Report, New GenAI Scams on the Horizon

SharpRhino RAT: Hunters International's Latest Weapon in Cyber Attacks

Aug 7, 2024 By Foresiet In Foresiet

In a notable development in the cybersecurity landscape, the emerging threat group known as Hunters International has added a novel remote access Trojan (RAT) to its arsenal. This group, which has quickly ascended the ranks of ransomware operators, is using the RAT, dubbed SharpRhino, to target IT professionals. Disguised as a legitimate network administration tool, SharpRhino facilitates initial access and persistence on targeted networks, setting the stage for ransomware attacks.

Read Post

Foresiet

Read more about SharpRhino RAT: Hunters International's Latest Weapon in Cyber Attacks

"Pastejacking" Attacks Are Becoming a Thing (Because Users are Falling for Them)

Aug 7, 2024 By Stu Sjouwerman In KnowBe4

New analysis shows users can be convinced to copy and paste malicious code on behalf of the attacker. I first saw this kind of attack earlier this month – where the user is asked to launch the Run dialog box and paste in a malicious command. I never thought I'd see something similar again, but I was wrong.

Read Post

KnowBe4

Read more about "Pastejacking" Attacks Are Becoming a Thing (Because Users are Falling for Them)

Spoofing vs Phishing: Getting The Difference Straight

Aug 6, 2024 By Kate Cox In Memcyco

Two deceptive tactics—spoofing and phishing—are at the core of many cyberattacks. Understanding these threats is essential for protecting your digital assets.

Read Post

Memcyco

Read more about Spoofing vs Phishing: Getting The Difference Straight

AI Tools Have Increased the Sophistication of Social Engineering Attacks

Aug 6, 2024 By Stu Sjouwerman In KnowBe4

The Cyber Security Agency of Singapore (CSA) has warned that threat actors are increasingly using AI to enhance phishing and other social engineering attacks, Channel News Asia reports. The CSA’s report found that cybercriminals are selling tools that automate these attacks, allowing unskilled threat actors to launch sophisticated attacks.

Read Post

KnowBe4

Read more about AI Tools Have Increased the Sophistication of Social Engineering Attacks

Armouring Against Supply Chain Attacks

Aug 6, 2024 By Arctic Wolf In Arctic Wolf

Mark Thomas, Director of Security Services for ANZ at Arctic Wolf, joins Ticker News to explain why supply chain attacks are increasing in frequency and effectiveness as the threat landscape evolves.

View Video

Arctic Wolf

Read more about Armouring Against Supply Chain Attacks

Top Identity Threats Your Organization Faces

Aug 5, 2024 By Arctic Wolf In Arctic Wolf

Two major organizations breached in 2023 — MGM Resorts and 23andMe — have one part of their hacks in common: identity. Initial access in the 23andMe breach came from credential stuffing, and it was a lack of access control that allowed the threat actors to move deeper into the organization, ultimately exfiltrating data from millions of user accounts.

Read Post