Uncategorized

Banks in Singapore are to phase out the use of phishing-prone One-Time Passwords (OTP) in favour of digital tokens for bank account login. OTP was introduced in the 2000s to enhance online security. However, scammers now use advanced tactics like setting up fake bank websites to easily phish for customers’ …

Apple has warned again iPhone users in 98 countries about potential spyware attacks. This is the second time this year that the company has issued such a warning, after a similar one in April in 92 countries. Apple has been sending notifications regularly since 2021. These notifications have reached users …

The New York Times’ internal source code and data were leaked on the 4chan message board. The new work times confirmed to Bleeping Computer that they were stolen from the company’s GitHub repositories in January 2024. An anonymous user leaked internal data on Thursday. They posted a torrent containing a …

On May 30, 2024, CISA published seven advisories about Industrial Control Systems (ICS). These advisories share important information regarding security issues, vulnerabilities, and exploits related to ICS. ICSA-24-151-01 LenelS2 NetBox ICSA-24-151-02 Fuji Electric Monitouch V-SFT ICSA-24-151-03 Inosoft VisiWin ICSA-24-151-04 Westermo EDW-100 ICSA-22-356-03 Mitsubishi Electric MELSEC iQ-R, iQ-L Series and MELIPC …

A federal grand jury indicted Linwei Ding, aka Leon Ding, charging him with four counts of theft of trade secrets in connection with an alleged plan to steal from Google LLC (Google) proprietary information related to artificial intelligence (AI) technology. The announcement was made by Attorney General Merrick B. Garland …

CISA released a Resource Guide for Cybersecurity Clinics today. This guide explains how CISA can collaborate and assist cybersecurity clinics and their clients. University cybersecurity clinics train students to strengthen the digital defenses of under-resourced organizations. They help address the national cyber workforce gap by developing a talent pipeline for …

Apple opposes the UK government’s idea to pre-approve new security features from tech companies. If the UK Home Office rejects an update, it cannot be released in any other country, and the public will not be informed. The government is seeking to update the Investigatory Powers Act (IPA) 2016. The …

Knight CTF official said, Till now more than 300+ teams from home and abroad registered for the “KnightCFT-2024”. Official expectation is more high to reach the registration up-to 500 + teams. 📅 Event Start: January 20, 2024, at 09:00 PM (Bangladesh Standard Time) ⏳ Event End: January 21, 2024, at …

AhnLab’s Security Emergency Response Center (ASEC) studies attacks on poorly secured Linux SSH servers and shares the findings on the ASEC Blog. Attackers need to find out the IP address and SSH account details before installing malware like DDoS bot and CoinMiner. They scan for servers with the SSH service …

Barracuda, fixed a zero-day bug on December 21. The bug was used by hackers known as UNC4841 to exploit Email Security Gateway (ESG) appliances. The company released additional security updates the following day for compromised ESG appliances that were attacked with SeaSpy and Saltwater malware. A security vulnerability was disclosed …