Phishers Exploit Google Sites and DKIM Replay
Phishers Exploit Google Sites and DKIM Replay Threat actors recently leveraged a less common approach to send bogus emails through Google’s Email Infrastructure, that redirected recipients to malicious websites to harvest their credentials. Because these emails were sent from an official account, and passed the DKIM signature check, they were received as a legitimate message […]
Cyber Scam Centers: A Growing Flashpoint in China-Myanmar Relations
Cyber Scam Centers: A Growing Flashpoint in China-Myanmar Relations Cyber scam centers across Southeast Asia and in Myanmar have become a concern for Chinese officials as these centers use human trafficking along the Thailand-Myanmar and China-Myanmar borders in order to secure forced labor. China has addressed this issue after growing proliferation of these scam centers […]
Trump Administration Under Scrutiny as it Puts Major Round of CISA Cuts on the Table
Trump Administration Under Scrutiny as it Puts Major Round of CISA Cuts on the Table The Trump administration is facing criticism over proposed cuts to the Cybersecurity and Infrastructure Security Agency (CISA), which could result in the loss of up to 1,300 jobs. Experts warn that these reductions could weaken U.S. cybersecurity at a time […]
Cuts to CISA May Impact Election Security Infrastructure
Cuts to CISA May Impact Election Security Infrastructure Amid efforts to trim the size of the government’s workface, the Cybersecurity and Infrastructure Security Agency (CISA) is facing a loss of as many as 1,300 employees. CISA is tasked with protecting the nation’s cyber and physical infrastructure, as well as election security. Read More on CBS […]
Hackers Strike Australia’s Largest Pension Funds in Coordinated Attacks
Hackers Strike Australia’s Largest Pension Funds in Coordinated Attacks In a series of coordinated attacks, hackers targeted Australia’s major pension funds and stole savings from some members, compromising over 20,000 accounts. The country’s largest fund, AustralianSuper, which manages A$365 billion for 3.5 million members, has reported that up to 600 member passwords were stolen in […]
Google Unveils end-to-end Encryption for Business Gmail Users
Google Unveils end-to-end Encryption for Business Gmail Users Google announced on Tuesday end-to-end encrypted messages would soon be coming for business users in Gmail. This encryption utilizes E2EE, essentially meaning that an email stays encrypted when in transit, so that it can only be decrypted by the sender’s and recipient’s browser. Read more on Ars […]
Cybersecurity Professor Fired from Indiana University after FBI Involvement
Cybersecurity Professor Fired from Indiana University after FBI Involvement Computer science professor, XiaoFeng Wang, was fired from Indiana University (IU) on the same day that FBI agents executed search warrants at his house. Indiana University has removed all online profiles of both Wang, who has researched cybersecurity, privacy, and cryptography, and Nianli Ma, an IU […]
Google Fixed Cloud Run Vulnerability Allowing Unauthorized Image Access via IAM Misuse
Google Fixed Cloud Run Vulnerability Allowing Unauthorized Image Access via IAM Misuse Google recently patched a critical vulnerability in its Cloud Run service, called “ImageRunner,” which could have allowed attackers to access private container images and inject malicious code. The flaw, discovered by Tenable, exploited permissions in Cloud Run revisions to bypass security measures, potentially […]
France Fines Apple €150 Million for Privacy Violations in Ad Tracking
The French antitrust regulator has fined Apple €150 million for violating privacy rules related to its App Tracking Transparency (ATT) feature. The regulator found that Apple did not provide sufficient transparency or granular consent options to iPhone users regarding how their data was being used for advertising purposes. Specifically, the regulator determined that Apple’s settings […]
Security Firms Say Evidence Seems to Confirm Oracle Cloud Hack
Security Firms Say Evidence Seems to Confirm Oracle Cloud Hack A hacker named “rose87168” claims to have breached Oracle Cloud systems, exposing sensitive data from over 140,000 tenants, including encrypted passwords and other credentials. While Oracle denies the breach, cybersecurity firms have analyzed sample data provided by the hacker and found evidence suggesting the data […]
