Cloud Security Alliance News Clipping Site

Tag: tactics

  • Schneier on Security: Criminals Exploiting FBI Emergency Data Requests

    by

    system automation
    in

    Source URL: https://www.schneier.com/blog/archives/2024/11/criminals-exploiting-fbi-emergency-data-requests.html Source: Schneier on Security Title: Criminals Exploiting FBI Emergency Data Requests Feedly Summary: I’ve been writing about the problem with lawful-access backdoors in encryption for decades now: that as soon as you create a mechanism for law enforcement to bypass encryption, the bad guys will use it too. Turns out the same…

  • The Register: FBI issues warning as crooks ramp up emergency data request scams

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/11/fraudulent_edr_emails/ Source: The Register Title: FBI issues warning as crooks ramp up emergency data request scams Feedly Summary: Just because it’s .gov doesn’t mean that email is trustworthy Cybercrooks abusing emergency data requests in the US isn’t new, but the FBI says it’s becoming a more pronounced issue as the year draws to…

  • The Register: Alleged Snowflake attacker gets busted by Canadians – politely, we assume

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/11/infosec_in_brief/ Source: The Register Title: Alleged Snowflake attacker gets busted by Canadians – politely, we assume Feedly Summary: Also: Crypto hacks will continue; CoD hacker gets thousands banned, and more in brief One of the suspected masterminds behind the widespread Snowflake breach has been arrested in Canada – but the saga isn’t over,…

  • Krebs on Security: FBI: Spike in Hacked Police Emails, Fake Subpoenas

    by

    system automation
    in

    Source URL: https://krebsonsecurity.com/2024/11/fbi-spike-in-hacked-police-emails-fake-subpoenas/ Source: Krebs on Security Title: FBI: Spike in Hacked Police Emails, Fake Subpoenas Feedly Summary: The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized…

  • Hacker News: Defending the Tor network: Mitigating IP spoofing against Tor

    by

    system automation
    in

    Source URL: https://blog.torproject.org/defending-tor-mitigating-IP-spoofing/ Source: Hacker News Title: Defending the Tor network: Mitigating IP spoofing against Tor Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text outlines a recent coordinated IP spoofing attack targeting the Tor network. It describes how relay operators faced abuse complaints due to spoofed connections that mimicked unauthorized port scanning,…

  • The Register: Scattered Spider, BlackCat claw their way back from criminal underground

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/08/scattered_spider_blackcat_return/ Source: The Register Title: Scattered Spider, BlackCat claw their way back from criminal underground Feedly Summary: We all know by now that monsters never die, right? Two high-profile criminal gangs, Scattered Spider and BlackCat/ALPHV, seemed to disappear into the darkness like their namesakes following a series of splashy digital heists last year,…

  • Hacker News: The ‘Invisibility Cloak’ – Slash-Proc Magic

    by

    system automation
    in

    Source URL: https://dfir.ch/posts/slash-proc/ Source: Hacker News Title: The ‘Invisibility Cloak’ – Slash-Proc Magic Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text provides a technical exploration of a process-hiding technique using bind mounts in Linux, highlighting its implications for forensic investigations. It elucidates how malicious actors can utilize this approach to manipulate process…

  • CSA: Threat Report: BEC and VEC Attacks Surge

    by

    system automation
    in

    Source URL: https://abnormalsecurity.com/blog/bec-vec-attacks-continue Source: CSA Title: Threat Report: BEC and VEC Attacks Surge Feedly Summary: AI Summary and Description: Yes Summary: The text reveals the alarming rise of Business Email Compromise (BEC) and Vendor Email Compromise (VEC) attacks, emphasizing their sophistication and effectiveness against traditional security measures. It highlights the need for organizations to adopt…

  • The Register: Winos4.0 abuses gaming apps to infect, control Windows machines

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/08/winos40_targets_windows/ Source: The Register Title: Winos4.0 abuses gaming apps to infect, control Windows machines Feedly Summary: ‘Multiple’ malware samples likely targeting education orgs Criminals are using game-related applications to infect Windows systems with a malicious software framework called Winos4.0 that gives the attackers full control over compromised machines.… AI Summary and Description: Yes…

  • Schneier on Security: Prompt Injection Defenses Against LLM Cyberattacks

    by

    system automation
    in

    Source URL: https://www.schneier.com/blog/archives/2024/11/prompt-injection-defenses-against-llm-cyberattacks.html Source: Schneier on Security Title: Prompt Injection Defenses Against LLM Cyberattacks Feedly Summary: Interesting research: “Hacking Back the AI-Hacker: Prompt Injection as a Defense Against LLM-driven Cyberattacks“: Large language models (LLMs) are increasingly being harnessed to automate cyberattacks, making sophisticated exploits more accessible and scalable. In response, we propose a new defense…