Vulnerability Management For Cybersecurity Dummies The Emotet malware was considered the most widely spread malware in the past, using spam campaigns and malicious attachments to distribute the malware. Emotet would then use infected devices to perform other spam campaigns and install other payloads, such as the QakBot (Qbot) and Trickbot Read more…
Alibaba ECS Instances Actively Hijacked by Cryptomining Malware Threat actors are hijacking Alibaba Elastic Computing Service (ECS) instances to install cryptominer malware and harness the available server resources for their own profit. Alibaba is a Chinese technology giant with a global market presence, with its cloud services being used primarily Read more…
High Severity BIOS Flaws Effect Numerous Intel Processors Intel has disclosed two high-severity vulnerabilities that affect a wide range of Intel processor families, allowing threat actors and malware to gain higher privilege levels on the device. The flaws were discovered by SentinelOne and are tracked as CVE-2021-0157 and CVE-2021-0158, and Read more…
7 million Robinhood User Email Addresses for Sale on Hacker Forum The data for approximately 7 million Robinhood customers stolen in a recent data breach are being sold on a popular hacking forum and marketplace. Last week, Robinhood disclosed a data breach after one of its employees was hacked, and the threat Read more…
Moses Staff Hackers Wreak Havoc on Israeli Orgs with Ransomless Encryptions A new hacker group named Moses Staff has recently claimed responsibility for numerous attacks against Israeli entities, which appear politically motivated as they do not make any ransom payment demands. The threat actors have repeatedly caused damage to Israeli Read more…
New Microsoft Emergency Updates Fix Windows Server Auth Issues Microsoft has released out-of-band updates to address authentication failures related to Kerberos delegation scenarios impacting Domain Controllers (DC) running supported versions of Windows Server. On impacted systems, end-users cannot sign into services or applications using Single Sign-On (SSO) in Active Directory on-premises or hybrid Azure Read more…
PDPA compliance for MCSTs is a must since they collect and manage data like any other organization. This is to ensure that data breaches and the consequence of paying a hefty fine are avoided. Composition of MCST and its duties and function According to the Advisory Guidelines for Management Corporations by the Read more…
US Education Dept Urged to Boost K-12 Schools’ Ransomware Defenses The US Department of Education and Department of Homeland Security (DHS) were urged this week to more aggressively strengthen cybersecurity protections at K-12 schools across the nation to keep up with a massive wave of attacks. The call for action comes Read more…
FBI System Hacked to Email ‘urgent’ Warning About Fake Cyberattacks The Federal Bureau of Investigation (FBI) email servers were hacked to distribute spam email impersonating FBI warnings that the recipients’ network was breached and data was stolen. The emails pretended to warn about a “sophisticated chain attack” from an advanced Read more…
Fake End-to-end Encrypted Chat App Distributes Android Spyware The GravityRAT remote access trojan is being distributed in the wild again, this time under the guise of an end-to-end encrypted chat application called SoSafe Chat. This particular RAT (remote access trojan) targets predominately Indian users, being distributed by Pakistani actors. The telemetry data Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
Thailand
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
