Ah, iPhone users, you’re a wild and reckless bunch. New study suggests Android users exhibit stronger security habits.
Posted inCybersecurity News

Ah, iPhone users, you’re a wild and reckless bunch. New study suggests Android users exhibit stronger security habits.

A recent analysis conducted by cybersecurity firm Malwarebytes sheds light on the contrasting online security behaviors of Android and iPhone users. The report highlights notable differences in information-sharing tendencies, adoption of security tools, password management practices, and susceptibility to scams between the two user groups.
The Active Soco404 campaign targets cloud environments to deploy cryptomining software.
Posted inCybersecurity News

The Active Soco404 campaign targets cloud environments to deploy cryptomining software.

Researchers from Wiz have uncovered a sophisticated cryptomining campaign, dubbed Soco404, that targets cloud environments by exploiting various vulnerabilities and misconfigurations. The attackers employ a unique method of embedding malicious payloads within fake 404 error pages hosted on Google Sites, demonstrating alarming ingenuity in cloud threat tactics.
The new China-based Storm-2603 group is deploying Warlock ransomware on Microsoft SharePoint servers.
Posted inCybersecurity News

The new China-based Storm-2603 group is deploying Warlock ransomware on Microsoft SharePoint servers.

A sophisticated cyber threat actor known as Storm-2603 has been identified exploiting critical vulnerabilities in Microsoft SharePoint to deploy Warlock ransomware on unpatched enterprise systems. According to Microsoft’s recent security advisory, this group, believed to be China-based, is leveraging unpatched flaws in on-premises SharePoint servers to gain unauthorized access, establish persistence, and spread ransomware across targeted networks.
FBI warns “The Com” cyber criminal group is recruiting American teens for malicious, and sometimes violent, cybercrime sprees.
Posted inCybersecurity News

FBI warns “The Com” cyber criminal group is recruiting American teens for malicious, and sometimes violent, cybercrime sprees.

The Federal Bureau of Investigation (FBI) has released an alarming report highlighting the growing danger posed by an online cybercriminal ecosystem known as The Com (short for “The Community”). This decentralized and increasingly sophisticated network presents a significant cybersecurity risk, particularly to young users who are being actively recruited, targeted, and exploited by its members.
Trump’s AI Action Plan outlines strategic priorities designed to strengthen national security while allowing the AI field to grow virtually unchecked.
Posted inCybersecurity News

Trump’s AI Action Plan outlines strategic priorities designed to strengthen national security while allowing the AI field to grow virtually unchecked.

The Trump administration has unveiled a sweeping new artificial intelligence (AI) policy aimed at enhancing the cybersecurity of the nation’s critical infrastructure. The initiative places AI at the heart of America's cyber defense efforts, while reaffirming the importance of “secure by design” principles in the development and deployment of AI technologies.
New cyber campaign is targeting Magento CMS and Docker containers to deploy cryptocurrency mining software.
Posted inCybersecurity News

New cyber campaign is targeting Magento CMS and Docker containers to deploy cryptocurrency mining software.

A newly observed cyber campaign attributed to a threat actor known as Mimo (also referred to as "Hezb") is targeting unpatched Magento content management systems (CMS) and misconfigured Docker environments to deploy cryptocurrency mining software and proxyware. This dual-purpose monetization strategy represents a significant escalation in Mimo’s capabilities and tactics, according to research published by security experts at Cado Labs.