Silent Ransom Group is escalating attacks on U.S. law firms by posing as IT staff through phishing emails, phone calls, and in-person visits. The group, also tracked as Luna Moth, Chatty Spider, and UNC3753, is focusing on data theft and extortion rather than traditional ransomware encryption, making its activity more difficult for organizations to detect…
Tag: Staff
Cybersecurity, Global Security News
Infosecurity Europe: Cybersecurity Staff Prefer CISOs With Real Attack Response Experience, Study Reveals
ISC2 survey of cybersecurity professionals suggests that staff want their information security leaders to have experienced reacting to a significant cyber incident
AI, Global Security News
FBI warns law firms of in-person data theft by Silent Ransom Group
SRG actors initiate attacks by posing as IT support staff, contacting victims via phone calls or phishing emails to solicit a remote desktop session.
AI, Global Security News
FBI warns of Kali365 phishing kit that breaks into Microsoft 365 accounts – no password required
So, you’ve enabled multi-factor authentication. You’ve taught your staff never to type their passwords into dodgy-looking login pages. Surely your Microsoft 365 accounts are safe now? Well, think again. Read more in my article on the Hot for Security blog.
AI, Global Security News
Meta Begins Laying Off Thousands of Employees as It Transforms Around AI
The cuts of roughly 8,000 jobs, or 10% of staff, are meant to offset the cost of the company’s AI investments
Global Security News, Risk Management
From Stuxnet to ChatGPT: 20 News Events That Shaped Cyber
As part of Dark Reading’s 20th anniversary celebration, its staff looks back on 20 of the biggest newmaking events from the past two decades that shaped our industry and the risk landscape for today’s security teams.
Global Security News
Oracle Red Bull Racing Team Revs Up Automation to Boost Security
While drivers race to shave off seconds on the track, the team’s IT and engineering staff are speeding up how they deliver security.
AI, Apps, china, Compliance, Global Security News, Government & Policy
Chinese spy posed as researcher in spear-phishing campaign targeting NASA to steal defense software
A Chinese national posed as a U.S. researcher, tricking NASA staff in a phishing campaign to steal sensitive data tied to defense software and exports. A Chinese national ran a spear-phishing campaign by posing as a U.S. researcher and tricked NASA employees into sharing sensitive information. The NASA Office of Inspector General (OIG) and federal…
Data Breaches, Global Security News
Kraken Exchange Faces Extortion After Insider Recorded System Footage
Kraken exchange faces extortion after a staff member misused access to record internal systems, about 2,000 accounts affected, no funds or systems breached.
Global Security News
UNC6783 Hackers Use Fake Okta Pages in Corporate Breach Campaign
UNC6783 hackers and extortionists impersonate support staff, using fake Okta login pages and social engineering to access corporate systems and steal sensitive data.
Global Security News
OpenAI to Cut Back on Side Projects in Push to ‘Nail’ Core Business
A top leader urges staff not to be distracted by “side quests” as the company plans a shift of resources to coding, enterprise businesses.
AI, Apps, Endpoint, Exploits, Global Security News, Government & Policy, malware, Risk Management
Resumés with malicious ISO attachments are circulating, says Aryaka
Threat actors are still having success tricking human resources staff into opening malware-infected phishing emails. The latest example is detailed by researchers at Aryaka, who this week described a campaign by an unnamed threat actor who is distributing resumés containing a malicious ISO file to HR departments. It’s delivered through recruitment channels, and hosted on…
Global Security News, malware
BlackSanta EDR-Killer Targets HR Teams in CV-Themed Campaign
BlackSanta malware targets HR staff with fake resumes, kills EDR and steals system data
AI, Global Security News, Risk Management
How Staying Small Became AI Startups’ Biggest Flex
Startups are using AI tools to keep their staff as small as possible. But some are discovering that becoming too lean carries risks.
AI, Global Security News, Government & Policy
Tracking the Cost of Quantum Factoring
Posted by Craig Gidney, Quantum Research Scientist, and Sophie Schmieg, Senior Staff Cryptography Engineer Google Quantum AI’s mission is to build best in class quantum computing for otherwise unsolvable problems. For decades the quantum and security communities have also known that large-scale quantum computers will at some point in the future likely be able to…