Hacktivism is evolving – and that could be bad news for organizations everywhere
Hacktivism is nothing new, but the increasingly fuzzy lines between traditional hacktivism and state-backed operations make it a more potent threat
Month: June 2024
CIISec Urges Employers to Target Young Talent in Gaming Centers
The Chartered Institute of Information Security has issued a new guide to help firms recruit more talent
Behind the Great Wall: Void Arachne Targets Chinese-Speaking Users With the Winos 4.0 C&C Framework
We recently discovered a new threat actor group that we dubbed Void Arachne. This group targets Chinese-speaking users with malicious Windows Installer (MSI) files in a recent campaign. These MSI files contain legitimate software installer files for AI…
U.S. halts avocado inspections in Mexican state after USDA workers attacked
The workers with the USDA’s Animal and Plant Health Inspection Service were attacked while carrying out their work inspecting avocados, the U.S. ambassador said.
Coffee with the Council Podcast: Meet the Council’s New Head of Engagement
Welcome to our podcast series, Coffee with the Council. I’m Alicia Malone, Senior Manager of Public Relations for the PCI Security Standards Council. Today we’ll meet one of the Council’s newest team members, our Head of Engagement, Di…
Community-driven PTaaS vs. Traditional Pentesting
What’s the difference between traditional pentesting and community-driven pentest as a service (PTaaS)?
Community-driven PTaaS vs. Traditional Pentesting
What’s the difference between traditional pentesting and community-driven pentest as a service (PTaaS)?
92% of Organizations Hit by Credential Compromise from Social Engineering Attacks
A Barracuda report found that 92% of organizations experienced an average of six credential compromises caused by email-based social engineering attacks in 2023
Fake Meeting Software Spreads macOS Infostealer
Recorded Future has found that Vortax, a purported virtual meeting software, is actually malicious software spreading three information stealers
VMware Discloses Critical Vulnerabilities, Urges Immediate Remediation
VMware has disclosed critical vulnerabilities impacting its VMware vSphere and VMware Cloud Foundation products, with patches available for customers