Welcome to this week’s Cybersecurity Newsletter, where we explore the most recent developments and essential updates in the world of cybersecurity. Your role in this rapidly evolving digital landscape is
Monthly Archives: December 2024
DaMAgeCard: A New Attack Exploits SD Cards to Compromise System Memory
A new type of attack, dubbed “DaMAgeCard,” exploits the SD Express standard to gain direct access to a device’s memory through its SD card reader. This method bypasses traditional security
Deloitte Data Breach: Company Denies The Breach Says, “Only Single Client System Affected”
Deloitte UK has strongly refuted claims of a major cybersecurity breach made by the ransomware group Brain Cipher. While the group alleges it has stolen over 1 terabyte of sensitive
New state-of-the-art Prompt Injection Attacks Via Email To User – LLMail-Inject
Microsoft has announced LLMail-Inject, a cutting-edge challenge designed to test and improve defenses against prompt injection attacks in LLM-integrated email systems. This innovative competition, set to begin on December 9,
Microsoft Expands Access to Windows Recall AI Feature
The activity-recording capability has drawn concerns from the security community and privacy experts, but the tech giant is being measured in its gradual rollout, which is still in preview mode.
Why SOC Roles Need to Evolve to Attract a New Generation
The cybersecurity industry faces a growing crisis in attracting and retaining SOC analysts.
Black Basta Ransomware Leverages Microsoft Teams To Attack Windows Users
Black Basta ransomware operators have improved their tactics, leveraging Microsoft Teams to deploy Zbot, DarkGate, and Custom Malware. The ongoing social engineering campaign comprises a threat actor flooding a user’s
Researchers Uncover Malicious Use Of Cobalt Strike Servers In Cyber Attacks
Cybersecurity researchers have identified a cluster of servers exploiting the latest version of Cobalt Strike, a legitimate penetration testing tool, for malicious purposes. The discovery highlights the ongoing misuse of
hrtng: A Powerful IDA Pro Plugin for Malware Reverse Engineering
Researchers from Kaspersky’s Global Research and Analysis Team have released a powerful new IDA Pro plugin called “hrtng,” designed to streamline and simplify the complex process of malware reverse engineering.
One Identity Named Winner of the Coveted Top InfoSec Innovator Awards for 2024
One Identity named Hot Company: Privileged Access Management (PAM) in 12th Cyber Defense Magazine’s Annual InfoSec Awards during CyberDefenseCon 2024. One Identity proudly announces it has been named a winner
