Daily Cyber Brief
Iranian hackers sat in Albanian network for 14 months, Anonymous claims to have taken down Iranian government sites, and 2K admits that its helpdesk was hijacked...
Cybersecurity
The IDF’s Cyber Defense Directorate has thwarted close to two dozen cyber attacks against the Israeli military in the past year. The IDF’s network, said to be the largest in the Middle East, is constantly being threatened, and the military has identified an increase of 70% in…
More than two years after the Cyberspace Solarium Commission made recommendations on how the US can bolster its cyber defenses, nearly 85 percent have been implemented or are in progress — but others still face a few “significant hurdles,” according to the commission’s new…
Threat analysts at Palo Alto Networks (Unit 42) discovered that the phenomenon of 'domain shadowing' might be more prevalent than previously thought, uncovering 12,197 cases while scanning the web between April and June 2022. Domain shadowing is a subcategory of DNS…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday released an industrial control systems (ICS) advisory warning of seven security flaws in Dataprobe's iBoot-PDU power distribution unit product, mostly used in industrial environments and data…
The Federal Bureau of Investigation (FBI) and CISA said that one of the Iranian threat groups behind the destructive attack on the Albanian government's network in July lurked inside its systems for roughly 14 months. "A FBI investigation indicates Iranian…
Anonymous hackers have claimed to be behind attacks on several websites affiliated with the Iranian government amid protests following the death of 22-year-old Mahsa Amini. Several websites, including for the central bank and the national government portal and state-owned…
The LockBit ransomware operation has suffered a breach, with an allegedly disgruntled developer leaking the builder for the gang's newest encryptor. In June, the LockBit ransomware operation released version 3.0 of their encryptor, codenamed LockBit Black…
A 15-year-old flaw in the Python open source programming language has remained unpatched in many places, making its way into hundreds of thousands of both open source and closed source projects worldwide. This is inadvertently creating a broadly vulnerable software supply…
Phishing actors are abusing LinkedIn’s Smart Link feature to bypass email security products and successfully redirect targeted users to phishing pages that steal payment information. Smart Link is a feature reserved for LinkedIn Sales Navigator and Enterprise users, allowing…
US video game publisher 2K has warned players of its titles not to click on links sent out by its help desk recently, as they are likely to be malicious. The firm, which is a subsidiary of Take-Two Interactive, released a brief statement on Twitter overnight. “Earlier today, we became…