Skip to content Skip to sidebar Skip to footer

British Court Rejects U.S. Request to Extradite WikiLeaks’ Julian Assange

A British court has rejected the U.S. government's request to extradite Wikileaks founder Julian Assange to the United States. Assange is accused of illegally obtaining and sharing classified material related to national security. The case centers on WikiLeaks' publication of hundreds of thousands of leaked documents about the Afghanistan and Iraq wars, as well as…

Read more

Chinese Hackers Targeted India’s Power Grid Amid Geopolitical Tensions

Cybersecurity researchers reveal concerted campaign against India's critical infrastructure from Chinese state-sponsored groups. Attacks targeted a total of 12 organizations, 10 of which are in the power generation and transmission sector. The attacks coincided with the standoff between the two nations in May 2020. Border conflicts have flared up since last year after deadly clashes…

Read more

Crafting a Custom Dictionary for Your Password Policy

A custom dictionary that filters out certain words that are not allowed as passwords in the environment can significantly improve cybersecurity posture and filter out obvious passwords that provide poor security for user accounts. The custom dictionary works in favor of securing the passwords in your environment. There are out-of-the-box password dictionaries and password files…

Read more

Critical RCE Flaw in ForgeRock Access Manager Under Active Attack

The vulnerability affects ForgeRock's OpenAM access management tool. It could be leveraged to execute arbitrary code on an affected system remotely. The issue is a pre-authentication remote code execution (RCE) vulnerability in ForgeRock Access Manager. It stems from an unsafe Java deserialization in the Jato framework used by the software. ForgeRock customers are advised to…

Read more

Data Wiper Malware Disguised As Ransomware Targets Israeli Entities

Cybersecurity firm SentinelOne attributed the attacks to a nation-state actor affiliated with Iran it tracks under the moniker "Agrius" The group's modus operandi involves deploying a custom.NET malware called Apostle that has evolved to become a fully functional ransomware, supplanting its prior wiper capabilities. Some of the attacks have been carried out using a second…

Read more

Experts Warns of Notable Increase in QuickBooks Data Files Theft Attacks

New research has uncovered a significant increase in QuickBooks file data theft using social engineering tricks to deliver malware and exploit the accounting software. The spear-phishing attacks take the form of a PowerShell command that's capable of running inside of the email, the researchers said. A second attack vector involves decoy documents sent via email…

Read more