City of Wichita disclosed a data breach after the recent ransomware attack: The City of Wichita disclosed a data breach after the ransomware attack that hit the Kansas’s city earlier this month. On May 5th, 2024, the City of Wichita, Kansas, was the… securityaffairs.com/163300/cyber-c…

New Android Banking Trojan Mimics Google Play Update App: A new banking Trojan targeting Android devices shows multifaceted capabilities infosecurity-magazine.com/news/android-b…

How a new wave of deepfake-driven cybercrime targets businesses: As deepfake attacks on businesses dominate news headlines, detection experts are gathering valuable insights into how these attacks came into being and the vulnerabilities they exploit.… securityintelligence.com/posts/new-wave…

New XM Cyber Research: 80% of Exposures from Misconfigurations, Less Than 1% from CVEs: A new report from XM Cyber has found – among other insights - a dramatic gap between where most organizations focus their security efforts, and where the most serious… thehackernews.com/2024/05/new-xm…

China-Linked Hackers Adopt Two-Stage Infection Tactic to Deploy Deuterbear RAT: Cybersecurity researchers have shed more light on a remote access trojan (RAT) known as Deuterbear used by the China-linked BlackTech hacking group as part of a cyber… thehackernews.com/2024/05/china-…

Accessing Secure Client Cloud Management after the SecureX EoL: Secure Client Management capabilities aren’t going away with the SecureX EOL, the functionality is simply migrating to the Cisco Security Cloud Control service. feedpress.me/link/23535/166…

New ‘Antidot’ Android Trojan Allows Cybercriminals to Hack Devices, Steal Data: The Antidot Android banking trojan snoops on users and steals their credentials, contacts, and SMS messages.

The post New ‘Antidot’ Android Trojan Allows Cybercriminals to… securityweek.com/new-antidot-an…

Microsoft Quick Assist Tool Abused for Ransomware Delivery: The Black Basta group abuses remote connection tool Quick Assist in vishing attacks leading to ransomware deployment.

The post Microsoft Quick Assist Tool Abused for Ransomware Delivery… securityweek.com/microsoft-quic…

US exposes scheme enabling North Korean IT workers to bypass sanctions: The US Justice Department had unsealed charges against a US woman and an Ukranian man who, along with three unidentified foreign nationals, have allegedly helped North Korean IT… helpnetsecurity.com/2024/05/17/nor…

FBI Seizes BreachForums Website: The FBI has seized the BreachForums website, used by ransomware criminals to leak stolen corporate data.

If law enforcement has gained access to the hacking forum’s backend data, as they claim, they would have email… schneier.com/blog/archives/…

CISA adds D-Link DIR router flaws to its Known Exploited Vulnerabilities catalog: CISA adds two D-Link DIR-600 and DIR-605 router vulnerabilities to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency… securityaffairs.com/163289/securit…

Norway Recommends Replacing SSLVPN/WebVPN to Stop Cyber Attacks: A very important message from the Norwegian National Cyber Security Centre (NCSC) says that Secure Socket Layer/Transport Layer Security (SSL/TLS) based VPN solutions, like SSLVPN and… gbhackers.com/norway-sslvpn-…

Patient Data at Risk in MediSecure Ransomware Attack: Electronic prescriptions provider MediSecure said the attack originated from a third-party vendor, and has impacted individuals’ personal and health information infosecurity-magazine.com/news/patient-d…

New Linux Backdoor Attacking Linux Users Via Installation Packages: Linux is widely used in numerous servers, cloud infrastructure, and Internet of Things devices, which makes it an attractive target for gaining unauthorized access or spreading malware. … gbhackers.com/linux-backdoor…

ViperSoftX Malware Uses Deep Learning Model To Execute Commands: ViperSoftX malware, known for stealing cryptocurrency information, now leverages Tesseract, an open-source OCR engine, to target infected systems, which extracts text from images, and the… gbhackers.com/vipersoftx-dee…

Woman Accused of Helping North Korean IT Workers Infiltrate Hundreds of US Firms: The US government has announced charges, seizures, arrests and rewards as part of an effort to disrupt a scheme that generates revenue for North Korea.

The post Woman… securityweek.com/woman-accused-…

C/side Emerges From Stealth Mode With $1.7 Million Investment: C/side has emerged from stealth mode with $1.7 million in pre-seed funding from Scribble Ventures and angel investors

The post C/side Emerges From Stealth Mode With $1.7 Million Investment… securityweek.com/c-side-emerges…

The importance of access controls in incident response: The worst time to find out your company doesn’t have adequate access controls is when everything is on fire. The worst thing that can happen during an incident is that your development and… helpnetsecurity.com/2024/05/17/inc…

Kimsuky APT Deploying Linux Backdoor Gomir in South Korean Cyber Attacks: The Kimsuky (aka Springtail) advanced persistent threat (APT) group, which is linked to North Korea's Reconnaissance General Bureau (RGB), has been observed deploying a Linux… thehackernews.com/2024/05/kimsuk…

CISA adds Google Chrome zero-days to its Known Exploited Vulnerabilities catalog: CISA adds two Chrome zero-day vulnerabilities to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added [1,2]… securityaffairs.com/163285/cyber-c…