“TommyLeaks” and “SchoolBoys” ransomware gangs are the same, researchers say
Security experts said two new extortion gangs called “TommyLeaks” and “SchoolBoys” are the same ransomware gang. TommyLeaks ransomware gang was uncovered by security researcher MalwareHunterTeam in September, while SchoolBoys ransomware gang was uncovered in October by the same researcher. On why the two ransomware gangs are believed to be the same, the two groups used […]
Researchers discover over 47,300 GitHub repositories offering fake PoC exploits
Researchers from the Leiden Institute of Advanced Computer Science have discovered thousands of repositories on GitHub that offer fake proof-of-concept (PoC) exploits for vulnerabilities and malware. Various malicious programs and malicious scripts from remote trojans to Cobalt Strike have been discovered by the researchers. More than 47,300 repositories advertising an exploit for a vulnerability discovered […]
Facebook could halt sharing news content in Canada
Due to concerns about the Online News Act, introduced in April to ensure that platforms such as Facebook and Google reach an agreement that compensates news publishers for their content, Facebook says it could restrict the sharing of news content on its platform in Canada. A parliamentary committee is considering legislation to ensure news agencies […]
Australian government issues tougher sanctions to prevent cyberattack
After two high-profile data breaches, the Australian government intends to introduce in Parliament the Privacy Legislation Amendment (Enforcement and Other Measures) Bill 2022. Attorney-General Mark Dreyfus says the law aims to increase the financial penalties companies face for repeated or serious breaches of privacy. Under the proposed bill, the penalty for will be increased to […]
Snap stock plummets as revenue suffers from shrinking advertising budgets
Snap shares fell more than 30% on Friday, reaching their lowest level since the pandemic, after the company forecast zero revenue growth, implying that the social media sector, which relies heavily on digital advertising, will face greater difficulties in the future. This comes as the company faces shrinking advertising budgets in an uncertain economy. Snapchat’s […]
Hackers try to exploit new ‘Text4Shell’ vulnerability
Wordfence, a WordPress security company, has discovered exploitation attempts by hackers targeting the new Text4Shell vulnerability. Tracked as CVE-2022-42889, the vulnerability was discovered on October 18, 2022, in the Apache Commons text. The vulnerability has a severity of 9.8 out of a possible 10.0 and affects versions 1.5 to 1.9 of the library. Once the […]
Cyber Security Today, Oct. 24, 2022 – A new ransomware data removal tool is found, a warning that exploit proofs-of-concepts in Github may not be safe, and more
This episode reports on a new ransomware data exfiltration, a Microsoft Azure vulnerability, a start by Google to bring order to software bills of material effort
Elon Musk’s Twitter acquisition forced to hold on because of debts backing the deal
Banks such as Morgan Stanley, Bank of America and Barclays, which agreed to finance Elon Musk’s takeover of Twitter, plan to keep the entire $13 billion in debt for the deal rather than sell it. Sources say the banks have decided to keep the debt on their balance sheets rather than sell it at a […]
Cybersecurity to continue big spending trend in 2023 and beyond
Gartner predicts that zero-trust network access, also known as cybersecurity, will continue its big spending trend in 2023, spending a total of $188.3 billion on information security and risk management products and services. Despite the high expenditures recorded in recent years and projected for the coming years, the market will still grow rapidly in the […]
Infosys to allow employees take up side gigs
Salil Parekh, CEO of Infosys, has stated that employees will be allowed to take up non-company employment opportunities with the prior consent of their managers and HR. This is a 180-degree shift from the company’s position a month ago when it informed employees that dual employment could lead to disciplinary action. In an email, Infosys […]
