Cybersecurity researchers have disclosed a new attack technique called Silver SAML that can be successful even in cases where mitigations have been applied against Golden SAML attacks. Silver SAML “enables the exploitation… Read More »New Silver SAML Attack Evades Golden SAML Defenses in Identity Systems
As an IT leader, staying on top of the latest cybersecurity developments is essential to keeping your organization safe. But with threats coming from all around — and hackers dreaming… Read More »How to Prioritize Cybersecurity Spending: A Risk-Based Strategy for the Highest ROI
The notorious Lazarus Group actors exploited a recently patched privilege escalation flaw in the Windows Kernel as a zero-day to obtain kernel-level access and disable security software on compromised hosts.… Read More »Lazarus Hackers Exploited Windows Kernel Flaw as Zero-Day in Recent Attacks
Threat hunters have discovered a new Linux malware called GTPDOOR that’s designed to be deployed in telecom networks that are adjacent to GPRS roaming exchanges (GRX) The malware is novel in the fact that… Read More »GTPDOOR Linux Malware Targets Telecoms, Exploiting GPRS Roaming Networks
The notorious North Korean state-backed hacking group Lazarus uploaded four packages to the Python Package Index (PyPI) repository with the goal of infecting developer systems with malware. The packages, now… Read More »Lazarus Exploits Typos to Sneak PyPI Malware into Dev Systems
A previously undocumented threat actor dubbed SPIKEDWINE has been observed targeting officials in European countries with Indian diplomatic missions using a new backdoor called WINELOADER. The adversary, according to a report from Zscaler ThreatLabz,… Read More »New Backdoor Targeting European Officials Linked to Indian Diplomatic Events
U.S. President Joe Biden has issued an Executive Order that prohibits the mass transfer of citizens’ personal data to countries of concern. The Executive Order also “provides safeguards around other activities that… Read More »President Biden Blocks Mass Transfer of Personal Data to High-Risk Nations
At least two different suspected China-linked cyber espionage clusters, tracked as UNC5325 and UNC3886, have been attributed to the exploitation of security flaws in Ivanti Connect Secure VPN appliances. UNC5325 abused CVE-2024-21893 to deliver a… Read More »Chinese Hackers Exploiting Ivanti VPN Flaws to Deploy New Malware
An Iran-nexus threat actor known as UNC1549 has been attributed with medium confidence to a new set of attacks targeting aerospace, aviation, and defense industries in the Middle East, including Israel and… Read More »Iran-Linked UNC1549 Hackers Target Middle East Aerospace & Defense Sectors
Traditional perimeter-based security has become costly and ineffective. As a result, communications security between people, systems, and networks is more important than blocking access with firewalls. On top of that, most… Read More »Superusers Need Super Protection: How to Bridge Privileged Access Management and Identity Management