Threat actors with suspected ties to Russia have been observed taking advantage of a Google account feature called application specific passwords (or app passwords) as part of a novel social engineering tactic designed to gain access to victims’ emails. Details of the highly targeted campaign were disclosed by Google Threat Intelligence Group (GTIG) and the […]
Category Archives: Uncategorized
Meta Platforms on Wednesday announced that it’s adding support for passkeys, the next-generation password standard, on Facebook. “Passkeys are a new way to verify your identity and login to your account that’s easier and more secure than traditional passwords,” the tech giant said in a post. Support for passkeys is expected to be available “soon” […]
As Iran closes its cyberspace to the outside world, hacktivists are picking sides, while attacks against Israel surge and spread across the region. Go to Source Author: Nate Nelson, Contributing Writer
Cybersecurity researchers have uncovered two local privilege escalation (LPE) flaws that could be exploited to gain root privileges on machines running major Linux distributions. The vulnerabilities, discovered by Qualys, are listed below – CVE-2025-6018 – LPE from unprivileged to allow_active in SUSE 15’s Pluggable Authentication Modules (PAM) CVE-2025-6019 – LPE from allow_active to root in […]
OpenAI intends to help streamline the Defense Department’s administrative processes using artificial intelligence. Go to Source Author: Kristina Beek, Associate Editor, Dark Reading
Many cybersecurity professionals still don’t feel comfortable admitting when they need a break. And the impact goes beyond being overworked. Go to Source Author: Arielle Waldman
The Android malware is targeting Turkish financial institutions, completely taking over legitimate banking and crypto apps by creating an isolated virtualized environment on a device. Go to Source Author: Elizabeth Montalbano, Contributing Writer
A new campaign is making use of Cloudflare Tunnel subdomains to host malicious payloads and deliver them via malicious attachments embedded in phishing emails. The ongoing campaign has been codenamed SERPENTINE#CLOUD by Securonix. It leverages “the Cloudflare Tunnel infrastructure and Python-based loaders to deliver memory-injected payloads through a chain of shortcut files and obfuscated Go […]
As the frequency and intensity of natural disasters, cyberattacks, and other disruptions rises, healthcare organizations are under mounting pressure to maintain operational continuity. Given the sector’s reliance on operational technology, how can health systems prepare for and respond to emergencies? Here’s what you need to know to protect both your IT infrastructure and the continuity […]
Healthcare IT faces rising threats, both from human-driven and naturally occurring events, with increasing frequency and severity. These threats can seriously impact the operational technology that healthcare systems depend on for delivering care. This article delves into the importance of understanding the risks to critical infrastructure and offers actionable steps for protecting both operational technology […]