In Malaysia, the cybersecurity situation is changing as organizations deal with an increase in cyber threats. A recent survey by IDC shows that phishing is the main concern, with 54% of organizations ranking it as the biggest threat. The top five risks in Malaysia are ransomware, unpatched vulnerabilities, identity theft, …
Read More »New survey by IDC
Draft emergency plan
China to enforce 10 min response time for data breaches
China proposed a four-tier classification to respond to data security incidents, showing its concern about data leaks and hacking in the country. The plan is due to increased tensions with the United States and its allies. It follows an incident where a hacker claimed to have gotten a large amount …
Read More »
CERT-In
Warning! Govt alerts Samsung users; here’s why
The Indian government urgently asked Samsung smartphone users to update their devices due to security vulnerabilities. CERT-In issued a warning about a threat to certain Samsung devices running on Android versions 11, 12, 13, and 14. These vulnerabilities could be exploited to gain unauthorized access to sensitive data on these …
Read More »
MITRE Reveals EMB3D
MITRE reveals Critical Infrastructure Threat Model Framework
Red Balloon Security, Narf Industries, and MITRE worked together to develop the EMB3D Threat Model. This model helps us understand the risks that embedded devices face and the security measures they require. The EMB3D model is a framework that focuses on embedded devices. “It considers the specific risks presented by …
Read More »MICROSOFT PATCH TUESDAY FIXED 4 CRITICAL FLAWS
In December 2023, Microsoft released security updates for multiple products, addressing 33 vulnerabilities. The company’s vulnerabilities affect several Microsoft products, including Windows, Office, Azure, Microsoft Edge, Windows Defender, Windows DNS and DHCP server, and Microsoft Dynamic. The IT giant also addressed several Chromium issues. ALSO READ: Bypassing major EDRS using …
Read More »Sophos updated RCE fix after attacks on unsupported firewalls
Sophos had to update old firewall firmware versions due to a security vulnerability (CVE-2022-3236) after attacked by hackers. There is a code injection flaw in the User Portal and Webadmin of Sophos Firewall. This flaw allows for remote code execution. ALSO READ: Bypassing major EDRS using “POOL PARTY”, Hackers revealed …
Read More »
process injection techniques
Bypassing major EDRS using “POOL PARTY”, Hackers revealed
Researchers at cybersecurity firm SafeBreach created a new method called Pool Party. This method allows attackers to bypass EDR solutions. The researchers presented Pool Party at Black Hat Europe 2023. The experts discovered an new way to inject processes by using Windows thread pools. Researchers found eight new process injection …
Read More »APACHE FIXED CRITICAL RCE FLAW CVE-2023-50164 at STRUTS 2
The Apache Software Foundation fixed a critical file upload vulnerability in the Struts 2 open-source framework. This flaw, tracked as CVE-2023-50164, could allow remote code execution. An attacker can manipulate file upload parameters to upload a malicious file and execute code on the server. “An attacker can manipulate file upload …
Read More »
Canada Ransomware Whitepaper-2023
Mid-sized Canadian firms pay an average $1.13 million to ransomware gangs
A recent survey found that mid-sized Canadian companies paid an average of just over $1 million in ransomware payments this year. On Thursday, the results of a survey conducted by Palo Alto Networks were released. The survey involved IT professionals from 1,000 organizations with employee numbers ranging from 100 to …
Read More »Singapore’s AI strategy 2.0 to include localized LLM
Singapore launched its first AI strategy in 2019, aiming to deepen the use of AI in transforming the economy. Singapore’s early investment in AI led to the creation of approximately 150 research teams and 900 startups focusing on AI development. Consequently, Singapore has experienced notable advancements in AI, leading to …
Read More »