Hackers Exploit Autodesk Flaw in Recent Cyberespionage Attack
The popular Autodesk software was exploited in a recent cyberespionage campaign against an international architectural company.
Disinformation Spurs a Thriving Industry as U.S. Election Looms
Threat actors are becoming increasingly sophisticated in launching disinformation campaigns – and staying under the radar to avoid detection from Facebook, Twitter and other platforms.
Medical Data Leaked on GitHub Due to Developer Errors
Up to 200,000 patient records from Office 365 and Google G Suite exposed by hardcoded credentials and other improper access controls.
How to Write a Cybersecurity Playbook During a Pandemic
IT teams have had to learn to be dynamic as workforces continue to shift strategies while COVID-19 drags on.
Transparent Tribe: Evolution analysis,part 2
Background + Key findings Transparent Tribe, also known as PROJECTM or MYTHIC LEOPARD, is a highly prolific group whose activities can be traced as far back as 2013. In the last four years, this APT group has never taken time off. They continue to hit their targets, which typically are Indian military and government personnel.…
Four More Bugs Patched in Microsoft’s Azure Sphere IoT Platform
Researchers have unearthed more vulnerabilities in Microsoft’s IoT security solution.
Safari Bug Revealed After Apple Takes Nearly a Year to Patch
Polish security researcher unveiled the flaw in a cross-browser sharing API that could allow attackers to steal user files.
Lazarus Group Targets Cryptocurrency Firms Via LinkedIn Messages
The North Korean-linked APT’s latest campaign shows that it is shifting focus to target the cryptocurrency and financial verticals.
Shoring Up the 2020 Election: Secure Vote Tallies Aren’t the Problem
With many in the public sphere warning about a potential compromise of the integrity of the Presidential Election, security researchers instead flag online resources and influence campaigns as the biggest problem areas.
Google Fixes High-Severity Chrome Browser Code Execution Bug
The high-severity flaw, which was patched in the latest version of Google’s Chrome browser, could allow code execution.