NetSec Google Filters Brave Search Results From Verified Cybersecurity Sites
Cybersecurity firm Forces Unseen has released a new ‘NetSec Google’ on GitHub, which filters Brave Search results to show only content from verified cybersecurity and technology sites. Using NetSec is simple and does not require the use of the Brave browser. Interested users can use it by opening a NetSec Google link on Brave Search […]
Phishing Technique Bypasses MFA With Microsoft Edge WebView2 Applications
Cybersecurity researcher mr.dox has developed a new phishing method that uses Microsoft Edge WebView2 applications to steal a user’s authentication cookies and log into stolen accounts, even if they are secured with MFA. The new phishing technique, known as the WebView2-Cookie-Stealer consist of a WebView2 executable that opens the login of a legitimate website from […]
LockBit Ransomware Affiliates Trick Users With Malware Disguised As Copyright Claims
According to AhnLab researchers, LockBit ransomware affiliates are tricking users into downloading malicious documents via emails disguised as copyright claims. The emails warned victims of copyright infringement, accusing them of using media files without the license of the author. In the email, recipients were asked to remove the infringing content from their websites or face […]
Researchers Uncover Keona Clipper Malware Used For Diverting Crypto Payments
Researchers from Cyble have discovered a new Clipper malware called Keona Clipper. The Clipper malware is able to redirect payments in cryptocurrencies to wallets controlled by attackers. To do this, Keona Clipper constantly monitors the contents of a user’s clipboard and searches for cryptocurrency wallets. Clipper malware is usually distributed in the form of trojanized […]
87% of workers opt for remote work: McKinsey Survey
87% of respondents plan to take the option of working remotely. 58% of respondents in America now have the option of working at least one day a week from home. One in three said that they could work from home five days a week if they wanted to. The findings fed into the latest edition […]
Carnival Fined $5 Million For “Significant” Cybersecurity Violations
New York’s Department of Financial Services has fined cruise line operator Carnival $5 million for “significant cybersecurity violations. According to the regulator, Carnival violated several cybersecurity laws, including the company’s failure to enable multi-factor authentication. The cybersecurity violations were uncovered in the four breaches reported by the company between 2019 and 2021, which exposed significant […]
Cyber Security Today, June 27, 2022 – A warning to firms using VoIP systems, malicious files in an open source Python registry, and more
This episode reports on the danger of unprotected VoIP appliances, vulnerable packages in the PyPi repository and access to compromised Atlassian Confluence systems
U.S. Crypto Firm Harmony Loses $100 Million Worth Of Coins To Hackers
U.S. cryptocurrency firm Harmony has confirmed a major cyberattack in which hackers stole around $100 million worth of digital coins from one of the company’s key products. Harmony explained that the cyber theft hit its Horizon “bridge,” a tool used to transfer crypto between different blockchains. According to Elliptic, a firm that tracks publicly available […]
Apple To Bargain With Its First Unionized Store In US
Apple has accepted the vote made by its Maryland store workers to be the first U.S. employees to form a union and is ready to bargain with them. Two-thirds of the employees at the Apple store in Towson, Maryland, organizing themselves as the Coalition of Organized Retail Employees (CORE), voted to join a union last […]
Multi-Backdoored Python Libraries Found Stealing AWS Secrets and Keys
Researchers have unraveled a series of malicious Python packages in the official third-party software repository that are engineered to draw out AWS credentials and environment variables onto a publicly exposed endpoint. According to Sonatype security researcher Ax Sharma, some of the packages include loglib-modules, pyg-modules, pygrata, pygrata-utils, and hkg-sol-utils. Both the packages and the endpoints […]
