US readies for cyberattacks after striking Iranian nuclear sites.
Posted inCybersecurity News

US readies for cyberattacks after striking Iranian nuclear sites.

The United States is on high alert for potential cyberattacks following its recent airstrikes on Iranian nuclear sites, which have significantly escalated tensions between the two nations. The Department of Homeland Security (DHS) and the National Terrorism Advisory System have issued bulletins warning of a “heightened threat environment” in the U.S., particularly concerning cyber threats from Iran and its allies.
Threat actor reportedly selling FortiGate exploit tool on darkweb that targets FortiOS.
Posted inCybersecurity News

Threat actor reportedly selling FortiGate exploit tool on darkweb that targets FortiOS.

Cybersecurity circles have been focused on a new threat actor claim regarding a zero-day exploit targeting Fortinet FortiGate firewalls. This claim emerged on a prominent dark web forum and has raised significant alarm due to the exploit’s purported capabilities and the critical role FortiGate devices play in enterprise network security.
Authorities battle Violence-as-a-Service (Vaas), a disturbing model in which organize crime groups recruit teenagers as hitmen.
Posted inCybersecurity News

Authorities battle Violence-as-a-Service (Vaas), a disturbing model in which organize crime groups recruit teenagers as hitmen.

European police, led by Denmark and Sweden, are intensifying efforts to dismantle a disturbing new criminal model known as “violence-as-a-service” (VaaS), in which organized crime groups recruit teenagers online to carry out contract killings. This crackdown is a response to a surge in cross-border violence facilitated by encrypted apps and social media platforms, which allow gangs to outsource violent crimes—including shootings and assassinations—to young people, some as young as 14.
New report addresses growing threat of DDoS attacks against the financial sector.
Posted inCybersecurity News

New report addresses growing threat of DDoS attacks against the financial sector.

A new joint report by FS-ISAC and Akamai, titled From Nuisance to Strategic Threat: DDoS Attacks Against the Financial Sector, highlights a sharp escalation in both the frequency and sophistication of distributed denial-of-service (DDoS) attacks targeting the global financial sector. The findings underscore a strategic shift in cybercriminal tactics, with significant consequences for financial institutions, their customers, and the broader economy.
Oracle databases, TNS, and how to hack it.
Posted inScanning and Analysis

Oracle databases, TNS, and how to hack it.

The Oracle Transparent Network Substrate (TNS) server is a communication protocol that enables communication between Oracle databases and applications across networks. Initially introduced as part of the Oracle Net Services software suite, TNS supports diverse networking protocols, including IPX/SPX and TCP/IP protocol stacks, facilitating communication between Oracle databases and client applications. Its built-in encryption mechanism ensures the security of data transmitted. Over time, TNS has undergone updates to support newer technologies, including IPv6 and SSL/TLS encryption.