Tag: latest cybersecurity news

GitHub Updates Security Protocol For Operations Over SSH
News

GitHub Updates Security Protocol For Operations Over SSH

After learning the key was briefly exposed in a public repository, the repository hosting provider GitHub announced it is replacing its current RSA SSH host key with a new one as a precaution. In a post earlier today, GitHub stated, "We quickly took action to control the exposure and started investigating to identify the core cause and consequences." The key replacement is now complete, and users will notice the change over the following 30 minutes. The company stated that the modification was made in order to safeguard customers' Git operations over SSH, especially from potential threat actors seeking to pose as GitHub read more GitHub Updates Security Protocol For Operations Over SSH. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our...
CISA Unveils Ransomware Notification Initiative
News

CISA Unveils Ransomware Notification Initiative

A new initiative to help businesses swiftly patch vulnerabilities targeted by ransomware attackers has been revealed by the Joint Cyber Defense Collaboration (JCDC) and the US Cybersecurity and Infrastructure Security Agency (CISA). Businesses might potentially drive out threat actors by receiving early alerts from the Pre-Ransomware Notification Initiative before they can encrypt data and systems and demand a ransom in exchange for access. Since January 2023, CISA has alerted more than 60 institutions about early-stage ransomware incursions using its proactive cyber protection capacity read more CISA Unveils Ransomware Notification Initiative. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threa...
SharePoint Phishing Scam Targets 1600 Across US and Europe
News

SharePoint Phishing Scam Targets 1600 Across US and Europe

At least 1600 people in Europe, the US, and other nations have been the subject of a novel phishing scam that relies on reliable servers from Microsoft's collaborative platform SharePoint. It uses a native notification mechanism. In a new advisory released earlier today, Kaspersky security experts detailed the discoveries and added that cybercriminals have used the scam to obtain the login information for a number of email accounts, including Yahoo!, AOL, Outlook, Office 365, and others. The employee gets the typical message that someone is sharing a file read more SharePoint Phishing Scam Targets 1600 Across US and Europe. Stay up-to-date with the latest cybersecurity news and increase your cybersecurity awareness through ReconBee.com‘s in-depth coverage of the newest threats, b...
Irish Food Giant Dole Admits Employee Data Breach
News

Irish Food Giant Dole Admits Employee Data Breach

A fresh fruit multinational with headquarters in Ireland has admitted that a ransomware attack that targeted the company in February resulted in the compromising of employee data. Dole is a desirable target for online extortionists since it has nearly 38,000 employees working in 30 countries and $9.2 billion in sales last year. On February 22, the company disclosed that a ransomware assault had "recently" occurred and had "minimal" effects on busine...
New Android Banking Trojan Nexus Promoted As MaaS
News

New Android Banking Trojan Nexus Promoted As MaaS

A brand-new Android banking Trojan has been found in a number of worldwide harmful activities.  The programme, dubbed "Nexus" by Cleafy security experts, offers functionality to conduct account takeover (ATO) assaults and is advertised as a component of a Malware-as-a-Service (MaaS) subscription. The organisation stated in a Tuesday advisory that "a new Android banking Malware debuted on several hacking forums under the name of Nexus" in January 2023.  ...
CISA and NSA Enhance Security Framework With New IAM Guide
News

CISA and NSA Enhance Security Framework With New IAM Guide

A new manual has been released by the National Security Agency (NSA) and the US Cybersecurity and Infrastructure Security Agency (CISA) to help system administrators secure identity and access management (IAM) infrastructure. It's a component of the Enduring Security Framework for organizations (ESF). In order to combat IAM threats, it provides suggested best practices for identity governance, environmental hardening, identity federation/single sign-on, multi-factor authentication (MFA), and IAM auditing and monitoring. CISA and NSA describe a few recent attacks that took advantage read more about CISA and NSA Enhance Security Framework With New IAM Guide. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the ...
Ransomware Attacks Double in Europe’s Transport Sector
News

Ransomware Attacks Double in Europe’s Transport Sector

The most significant cyberthreats hitting Europe's transportation industry last year were ransomware and data breaches, with occurrences of the former nearly doubling in volume, according to ENISA. The first danger landscape report for the vertical from the EU security agency covers the months of January 2021 and October 2022. It claimed that while malware reports decreased from 11% to 6% and data breaches and leaks decreased from 21% to 9%, ransomware event reports climbed from 13% of the total in 2021 to 25% in 2022. Attackers target credentials, customer and employee personal information read more Ransomware Attacks Double in Europe's Transport Sector. Stay up-to-date with the latest cybersecurity news and increase your cybersecurity awareness through ReconBee.com‘s in-dept...
BreachForums Shuts Down After Admin’s Arrest
News

BreachForums Shuts Down After Admin’s Arrest

Following the accused founder of the infamous BreachForums website's arrest a few days ago, the forum was shut down, according to an administrator of the site. The BreachForums admin known as "baphomet" stated he will be shutting down the website in a Telegram message within the "Breach Forums" channel on Tuesday. Baphomet stated, "I will be removing the forum, as I believe we can presume that nothing is secure anymore. "I get that everyone wants the forum up, but there is no point in supporting Breached as is for what will presumably be a long-term loss read more BreachForums Shuts Down After Admin's Arrest. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.
Google flags apps made by popular Chinese e-commerce giant as malware
News

Google flags apps made by popular Chinese e-commerce giant as malware

Google revealed on Monday that it has classified a number of apps developed by a major Chinese e-commerce company as potentially harmful, informed users who had them installed, and suspended the firm's main app. Pinduoduo, a burgeoning e-commerce behemoth with around 800 million active users, has been accused by numerous Chinese security researchers of creating Android apps that contain malware intended to monitor users. The off-Play versions of this program that have been discovered to contain malware have been enforced on via Google Play Protect read more Google flags apps made by popular Chinese e-commerce giant as malware. Stay up-to-date with the latest cybersecurity news and increase your cybersecurity awareness through ReconBee.com‘s in-depth coverage of the newest threats...
Scam Robocalls Forecast to Cost $58bn This Year
News

Scam Robocalls Forecast to Cost $58bn This Year

According to a new Juniper Research estimate, the cost of fraudulent robocalls to victims would rise 9% from 2022 to $58 billion globally this year. In a recently released report titled Robocall Mitigation: Strategies, Business Models & Market Estimates 2023–2027, the industry analyst made the announcement. Both genuine marketers and con artists use freely accessible auto-dialing software to transmit pre-recorded messages. Robocalls are frequently considered to be an annoyance, even though t...