Month: August 2022
NCSC Shares Guidance to Help Secure Large Construction Projects
The guide includes input from firms with experience in joint ventures, including major infrastructure contracts such as HS2 and Crossrail
Ex-Security Chief Accuses Twitter of Cybersecurity Negligence
Peiter Zatko admitted that he “reasonably feared Twitter could suffer an Equifax-level hack”
CISA Adds Palo Alto Networks’ PAN-OS Vulnerability to Catalog
The flaw would allow a network-based unauthenticated threat actor to perform DoS attacks
Air-Gap Attack Exploits Gyroscope Ultrasonic Covert Channel to Leak Data
Gairoscope is a covert ultrasonic channel that does not require a microphone on the receiving side
Counterfeit Android Devices Revealed to Contain Backdoor Designed to Hack WhatsApp
At least four different smartphones affected: ‘P48pro’, ‘radmi note 8’, ‘Note30u’ and ‘Mate40’
Firewall Bug Under Active Attack Triggers CISA Warning
CISA is warning that Palo Alto Networks’ PAN-OS is under active attack and needs to be patched ASAP.
Media Firms Twice as Vulnerable as Cross-Sector Average
Nearly a third have internet-facing bugs, says BlueVoyant
Configuration Errors to Blame for 80% of Ransomware
Microsoft urges better attack surface management
FBI: Beware Residential IPs Hiding Credential Stuffing
Feds warn of various tactics hackers use to hijack accounts