Cybersecurity

How Israel plans to tackle cyberattacks with a ‘Cyber-Dome’

At CyberWeek in Tel Aviv, Israel, Gaby Portnoy, the new director general of the country’s Cyber Directorate announced the Cyber-Dome project — a new big data, AI, overall approach to proactive cyberdefense. This project is expected to be a collaborative effort between…

Greater risk of ISIS-inspired attacks in region due to ‘cyber jihad’: Singapore ISD

The region is facing a greater risk of attacks from home-grown extremists who are inspired by “cyber jihad” linked to the Islamic State in Iraq and Syria (ISIS), said Singapore’s Internal Security Department (ISD) on Wednesday (13 July). In its “Singapore Terrorism Threat…

Microsoft releases tweet-size exploit for macOS sandbox escape bug

Microsoft has published the exploit code for a vulnerability in macOS that could help an attacker bypass sandbox restrictions and run code on the system. The company released the technical details for the security issue, which is currently identified as CVE-2022-26706…

Honda redesigning latest vehicles to address key fob vulnerabilities

Honda said it is addressing a spate of recently-discovered vulnerabilities in its newly designed models after researchers found bugs affecting the key fob systems in its vehicles dating back to 2012. Earlier this year, Honda was forced to address CVE-2022-27254 – a replay…

New 'Retbleed' Speculative Execution Attack Affects AMD and Intel CPUs

Security researchers have uncovered yet another vulnerability affecting numerous older AMD and Intel microprocessors that could bypass current defenses and result in Spectre-based speculative-execution attacks. Dubbed Retbleed by ETH Zurich researchers Johannes…

New Android malware on Google Play installed 3 million times

A new Android malware family on the Google Play Store that secretly subscribes users to premium services was downloaded over 3,000,000 times. The malware, named 'Autolycos,' was discovered by Evina's security researcher Maxime Ingrao to be in at least eight Android…

Bandai Namco confirms cyberattack after ransomware group threatens leak

Japanese video game giant Bandai Namco confirmed on Wednesday that it experienced a wide-ranging cyberattack that may have exposed customer information. On Monday, the AlphV ransomware group added Bandai Namco to its list of victims, but the company…

New UEFI Firmware Vulnerabilities Impact Several Lenovo Notebook Models

Consumer electronics maker Lenovo on Tuesday rolled out fixes to contain three security flaws in its UEFI firmware affecting over 70 product models. "The vulnerabilities can be exploited to achieve arbitrary code execution in the early phases of the platform boot…

$8 million stolen in large-scale Uniswap airdrop phishing attack

Uniswap, a popular decentralized cryptocurrency exchange, lost close to $8 million worth of Ethereum in a sophisticated phishing attack yesterday. While the protocol hasn't been compromised by exploiting a vulnerability as initially suspected, the cyberattack has…

Microsoft Warns of Large-Scale AiTM Phishing Attacks Against Over 10,000 Organizations

Microsoft on Tuesday disclosed that a large-scale phishing campaign targeted over 10,000 organizations since September 2021 by hijacking Office 365's authentication process even on accounts secured with multi-factor authentication (MFA). "The attackers then used the…