100% breach prevention is no longer a realistic expectation. This challenge is driving a trend towards blending traditional cyber security strategies with cyber resilience to ensure that, when a breach occurs, the organization has the tactical tools in place for fast and effective incident response. […]

The cybersecurity researchers at ZeroFox Intelligence have recently discovered a new Golang-based botnet which is dubbed Kraken. This new botnet is under active development and exploited by the threat actors to deploy backdoors to steal sensitive data from the Windows hosts. Initially, this botnet, Kraken […]

As part of our continuing mission to reduce cybersecurity risk across U.S. critical infrastructure partners and state, local, tribal, and territorial governments, CISA has compiled a list of free cybersecurity tools and services to help organizations further advance their security capabilities. This living repository includes […]

A politically motivated hacker group tied to a series of espionage and sabotage attacks on Israeli entities in 2021 incorporated a previously undocumented remote access trojan (RAT) that masquerades as the Windows Calculator app as part of a conscious effort to stay under the radar. […]

The threat actor behind the supply chain compromise of SolarWinds has continued to expand its malware arsenal with new tools and techniques that were deployed in attacks as early as 2019, once indicative of the elusive nature of the campaigns and the adversary’s ability to […]

Microsoft Azure cloud computing customer in Asia was a victim of a massive 3.47 Tbps DDoS attack (distributed denial of service attack) in November 2021, the software and technology giant Microsoft revealed on January 25, 2022. The DDoS attack lasted approximately 15 minutes and included […]

The notorious Lazarus Group actor has been observed mounting a new campaign that makes use of the Windows Update service to execute its malicious payload, expanding the arsenal of living-off-the-land (LotL) techniques leveraged by the APT group to further its objectives. The Lazarus Group, also […]

The Nigerian Communications Commission (NCC), has alerted Nigerians of a new high-risk, critical and Short Messaging Service-based malware, TangleBot, infecting Android mobile devices. TangleBot employs more or less similar tactics as the recently-announced notorious FlutBot SMS Android malware that targets mobile devices. TangleBot equally gains […]

The Nigerian Communications Commission wishes to alert members of the public that a cybercrime group has perfected a new year scheme to deliver ransomware to targeted organizational networks. The new ransomware uncovered by security experts has been categorised, by the Nigerian Computer Emergency Response Team’s […]

Ukrainian police authorities have nabbed five members of a gang that’s believed to have helped orchestrate attacks against more than 50 companies across Europe and the U.S and caused losses to the tune of more than $1 million. The special operation, which was carried out […]