Risk
-
China’s Smishing Triad Expands Phishing Tactics, Directly Targeting Banks
The Smishing Triad, a group of cybercriminals based in China, has expanded its phishing operations from impersonating toll road operators to directly targeting international banks and financial institutions, raising significant cybersecurity concerns.
-
Cybersecurity Firm Reports on Exploitation of Serious CrushFTP Vulnerability
Huntress has detailed alarming activities following exploitation of the CrushFTP vulnerability, demonstrating ongoing risks to critical sectors like marketing and retail. CISA has added the flaw to its KEV catalog, prompting renewed urgency for organizations to secure their systems.
-
NIST Places Pre-2018 Vulnerabilities on Deferred Status Amid Resource Reallocation
NIST has announced that all CVEs published before 2018 will be marked as ‘Deferred’ in the National Vulnerability Database, reallocating resources towards emerging threats while placing the responsibility for legacy vulnerabilities on individual organizations.
-
New Cyber Threat Emerges as PoisonSeed Targets CRM Accounts
The PoisonSeed campaign is exploiting compromised credentials from CRM tools and email services to send spam containing cryptocurrency seed phrases, endangering businesses and individuals alike.
-
Surge in Phishing Attacks Imitating E-ZPass and Toll Authorities
A significant increase in phishing scams impersonating toll agencies such as E-ZPass is causing concern among users, with messages aimed at stealing personal information on the rise.
-
NSA Issues Warning on Fast Flux Technique Threatening National Security
The NSA has issued a grave warning about the fast flux technique being exploited by cybercriminals and nation-states, which obscures malicious activities and threatens national security.
-
Australian Retirement Funds Targeted in Cyberattack, Thousands Affected
The Australian retirement fund sector is in turmoil following a series of cyberattacks that have led to unauthorized access of customer accounts. Approximately 8,000 members of Rest super fund have been identified as potentially affected, with broader implications for other funds as investigations continue into the security breaches.
-
Former ASML Employee Faces Court Over Alleged Industrial Espionage Ties to Russia
A former ASML employee, German A., faces allegations of industrial espionage in a Rotterdam court, accused of leaking sensitive chip-making secrets to Russian intelligence. The case raises concerns about security practices in the semiconductor industry amid geopolitical tensions.
-
Data Breach at Europcar Exposes Personal Information of Up to 200,000 Customers
Europcar Mobility Group suffered a data breach resulting in the exposure of personal information belonging to up to 200,000 customers. The breach involved unauthorized access to GitLab repositories, with demands for extortion made by the threat actor.
-
European Insurance Authority Proposes Strict Capital Requirements for Crypto Holdings
The European Union’s insurance authority has proposed a requirement for firms to maintain capital equal to their full crypto holdings to mitigate risks for policyholders, setting a new standard for the insurance industry.
