Researchers from UK universities demonstrate that laptop keystroke sounds can be used to accurately obtain sensitive user data, including passwords, through side-channel attacks. These attacks exploit the acoustic emanations of keyboards. #KeystrokeSounds #SideChannelAttacks

In an interview with Help Net Security, Debbie Gordon, CEO of Cloud Range, explains the concept of a cyber range and its role in preparing for real-world cyber threats. #CyberRangeTraining #RealWorldThreats #MITREATT&CK #IncidentResponse #AIandML #TalentDevelopment #Cybersecurity

According to Bugcrowd, 72% of hackers believe that AI cannot replicate the creativity of human hackers in security research and vulnerability management. While 55% of respondents believe that generative AI can outperform hackers. #hackers #cybersecurity #vulnerabilitymanagement

Microsoft has revealed that a validation error in its source code enabled a malicious actor known as Storm-0558 to forge Azure Active Directory tokens and breach around 24 organizations. Storm-0558 used an inactive Microsoft account consumer signing key. #Microsoft #AzureAD

The rise of generative artificial intelligence (AI) has given cybercriminals a powerful tool for launching sophisticated phishing and business email compromise (BEC) attacks. #AIcybercrime #GenerativeAI #PhishingAttacks #BECAattacks #CybersecurityThreats #Cybercriminals

In mid-June 2023, an undisclosed agency within the Federal Civilian Executive Branch (FCEB) of the United States detected anomalous email activity, leading to the discovery of China-linked espionage campaign targeting multiple organizations. #cybersecurity #espionage #ChinaThreat

Zimbra, the email software provider, has issued a warning regarding a critical zero-day security flaw in Zimbra Collaboration Suite Version 8.8.15, which is actively being exploited in the wild. #Zimbra #securityflaw #XSS #Cisco #vulnerability

Organizations recognize the future potential of password less authentication,but implementing this approach poses significant change management challenges. Migrating to password less requires careful planning and consideration of strategic imperatives related to security #privacy

Security Journey has announced an acceleration of its secure coding training platform enhancements, combining HackEDU and Security Journey training offerings. #securecoding #trainingplatform #softwaresecurity #learningcontent #cybersecurity #tournaments #coding #hashtag

In 2023, chief audit executives (CAEs) have identified advancing data analytics, assuring digital risks, and talent management as their top focus areas, according to Gartner. #CAEs #auditing #dataanalytics #digitalrisks #talentmanagement #cybersecurity #careerdevelopment

The Biden-Harris Administration has released the National Cybersecurity Strategy, highlighting two fundamental shifts in how the United States approaches cybersecurity. #cybersecurity #NCSIP #cyberstrategy #infrastructure #ransomware #standards #internationalpartnerships

Two file management apps available on the Google Play Store have been discovered to be spyware, putting the privacy and security of up to 1.5 million Android users at risk. #GooglePlayStore #spyware #Android #cybersecurity #datasecurity #maliciousapps #appsecurity

Ransomware attacks, such as the BlackByte 2.0 ransomware, continue to escalate in severity and speed, posing a significant challenge for organizations. #ransomware #BlackByte #cybersecurity #Microsoft #patchmanagement #tamperprotection #CobaltStrike #webshells

Cybersecurity agencies have issued warnings about new variants of the TrueBot malware, which are targeting organizations in the U.S. and Canada. #TrueBot #cybersecurity #malware #NetwrixAuditor #vulnerability #FlawedGrace #RAT #CobaltStrike #Silence #FIN11 #RaspberryRobin

A newly discovered security flaw in the Linux kernel, called StackRot (CVE-2023-3269), has been revealed, potentially allowing an attacker to gain elevated privileges on a target host. The vulnerability affects Linux versions 6.1 through 6.4. #Linux #cybersecurity #StackRot

As technology advances, the risks of data breaches and cyber-attacks increase, making it crucial for organizations to protect themselves. Cyber insurance has emerged as a solution, despite rising costs and strict eligibility requirements. #cyberinsurance #dataprivacy #PTaaS

Interpol has announced the arrest of a suspected senior member of OPERA1ER, a French-speaking hacking crew part of the international law enforcement operation Nervone. The group is accused of stealing an estimated $11 million to $30 million in over 30 attacks #OPERA1ER #arrest

Cybersecurity researchers have discovered a new Windows-based information stealer called Meduza Stealer, which is actively being developed by its author to avoid detection by security software. Meduza Stealer's primary objective is comprehensive data theft.

A Mexican e-crime actor known as Neo_Net has been identified as the perpetrator behind a global Android mobile malware campaign primarily targeting Spanish and Chilean banks from June 2021 to April 2023.

Federal Investigation Agency (FIA) has arrested five out of eight Pakistani individuals from Mirpur Khas who were involved in illegally migrating to Israel and working there for several years. #FIAOperation #IllegalMigration #PakistanToIsrael #Arrested #MirpurKhas #TelAvivJobs