4 steps teams can take to mitigate Iranian cyberattacks on critical infrastructure
Too many teams have not looked for Iranian pre-positioning into OT networks – here are some practical steps to take as the war escalates.
SC Media
20 articles
Apple expands updates to iOS 18 devices affected by DarkSword exploit
Experts say Apple’s move shows it understood that older iOS and iPadOS devices were vulnerable and being exploited by DarkSword.
NoVoice Android malware steals WhatsApp data via Google Play apps
The NoVoice operation, identified by McAfee, concealed malicious components within the com.facebook.
Thousands of API credentials exposed on public websites
The study, detailed in a preprint paper by Standford University, University of California, Davis, and TU Delft researchers, utilized a tool called TruffleHog...
Exabeam expands platform to monitor AI agent activity
The expanded platform transforms AI agent services into sources of behavior telemetry, feeding directly into Exabeam's threat detection workflows.
CrystalRAT malware-as-a-service offers remote access and prankware features
CrystalRAT, which first appeared in January, operates on a tiered subscription model and shares significant similarities with the WebRAT (Salat Stealer) malw...
Gartner report offers framework for evaluating AI SOC agents
A recent Gartner report, "Validate the Promises of AI SOC Agents With These Key Questions," provides a structured evaluation framework.
Phishing campaign delivers Casbaneiro and Horabot banking trojans
The threat actor, identified as Brazilian cybercrime group Augmented Marauder and Water Saci, employs a unique delivery mechanism involving WhatsApp, ClickFi...
Ransomware attackers increasingly exploit legitimate IT tools, bypassing antivirus
Attackers are leveraging tools like Process Hacker and IOBit Unlocker, which possess deep operating system access.
Claude Code vulnerable to prompt injection due to subcommand limit
The vulnerability was discovered by Adversa, a security firm, after the leak of Claude Code's source code.
WhatsApp warns of spyware in fake iPhone app
WhatsApp accused Italian spyware firm SIO of creating the fake app.
Hasbro confirms cyberattack, expects weeks-long resolution
The specific type of cyberattack, such as ransomware, has not been disclosed by Hasbro.
Rethinking identity security for a borderless attack surface
Identity is the heart of modern security. Here's how to reshape your identity environment accordingly.
Campaign combines WhatsApp with legit cloud platforms to deliver malicious VBS files
Attackers continue to evade defenders by using legitimate platforms like AWS and Microsoft utilities.
Report: Americans concerned about government management of personal data
StateScoop reports that the majority of Americans seek more control over data sharing across the U.S.
AI implementation influenced by cybersecurity risks, survey shows
A KPMG poll found that cybersecurity is one of the main risks impacting corporate executives' decisions about adopting AI, according to Cybersecurity Dive.
Cyberattacks powered by stolen credentials on the rise
Cybersecurity incidents are increasingly centered on identity abuse, where stolen login credentials serve as the primary entry point for attackers, and the g...
Claude Code source code inadvertently leaked
Anthropic, the firm behind Claude Code, has accidentally included an unobfuscated TypeScript source in the AI coding tool's npm package, exposing over 500,00...
Monetization of ransomware-stolen data touted by new cybercrime service
Affiliates and customers are being sought by the new Leak Bazaar cybercrime service, which was reported by Flare researchers to be promoted across the dark w...
Bogus LinkedIn message alerts enable credential siphoning
Malicious actors have been distributing fraudulent LinkedIn alert messages for potential job opportunities to facilitate credential exfiltration in a new phi...