Monday , December 23 2024

infosecbulletin

MSI Confirms Breach as Ransomware Gang Claims Responsibility

A new statement(Opens in a new window) from MSI says users should avoid downloading firmware and BIOS updates from third-party sources, and instead only obtain such software from the company’s official website. The statement suggests MSI is worried hackers could circulate malicious versions of the company’s BIOS software when the ransomware gang, …

Read More »

Asia-Pacific NGOs Lack Basic Cyber Controls, Finds Survey

Rising worries about the digital security of nongovernmental organizations in the Asia-Pacific region haven’t translated into robust adoption of basic measures, shows data from a survey of more than 1,500 regional NGOs. Infoxchange, an Australian IT consultant for social issue organizations, said only about 4 in 10 NGOs have enabled multifactor authentication …

Read More »

A third of organizations admit to covering up data breaches

In a world where cybercrime is becoming more difficult to prevent, many security leaders are putting pressure on IT professionals to bury the truth. New research released by cybersecurity vendor Bitdefender today surveyed over 400 IT and security professionals who work in companies with 1,000 or more employees. Bitdefender found that 42% of IT …

Read More »

How ransomware can infect your computer and how to avoid it

More than four in five organisations (82%) were manipulated using ransomware in 2022 according to Proofpoint’s 2023 Phishing report. Cybersecurity expert VPN Overview reveals the ways in which ransomware can infect your computer and how to avoid it. 1. Phishing and email impersonations   Phishing – sending emails with the purpose of obtaining …

Read More »

Gartner unveils top cybersecurity predictions for 2023-2024

Half of CISOs will formally adopt human-centric design practices into their cybersecurity programmes, while adoption of zero trust architecture will rise Fifty per cent of Chief Information Security Officers (CISOs) will adopt human-centric design to reduce cybersecurity operational friction; large organisations will focus on implementing zero-trust programmes; and half of …

Read More »

Vishing, smishing, and quishing are next ways to go phishing

Security experts have reported a surge in new phishing techniques that don’t use email – is your cybersecurity ready for vishing, smishing, and quishing? Organisations in highly regulated industries such as insurance, banking, legal, healthcare and financial services were most targeted by cybercriminals in 2022 using new techniques, including vishing …

Read More »

41.9m records compromised by cyber breaches in March 2023

IT Governance has released its monthly analysis of the latest data breaches and cyberattacks in March 2023. In March 2023, 41.9 million records were compromised by cyberattacks across the world, according to IT Governance, a global provider of cyber risk and privacy management solutions. IT Governance also identified 100 publicly …

Read More »

Twitter ‘Shadow Ban’ Bug Gets Official CVE

A vulnerability in Twitter’s code was recently discovered that allows users to game the algorithm with mass blocking actions from large numbers of accounts, in an effort to suppress specific users showing up in people’s feeds — essentially, it allows bot-created “shadow bans” in the parlance of social media censorship critics. Now, …

Read More »