RAMP increases influence

Indications that the Russian-language ransomware forum is warming to English and Mandarin-speaking threat actors.  There has been an increase in recent weeks of Mandarin and Chinese-speaking threat actors on RAMP as well as other illicit communities across the deep and dark web. There are indications that the Russian-language ransomware forum…

Read More

APT cyber actors exploiting Microsoft Exchange and Fortinet vulnerabilities

Advisory issued by FBI, CISA, ACSC and NCSC. A joint cybersecurity advisory is the result of an analytic effort among the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Australian Cyber Security Centre (ACSC), and the United Kingdom’s National Cyber Security Centre (NCSC) to highlight…

Read More

Three steps for security and risk leaders to lead from an offensive position

How Security Leaders Can Increase Their Executive Impact. To respond to an ever-changing threat landscape and increase impact among executive leadership, security and risk leaders should take a three-step approach to shift from a defensive to an offensive leadership position, according to Gartner, Inc. “This is a time of extraordinarily…

Read More

Banking malware threats surging as mobile banking increases

Banking malware has been targeted mainly at Android phones. The Nokia 2021 Threat Intelligence Report shows that banking malware threats are sharply increasing as cyber criminals target the rising popularity of mobile banking on smartphones, with plots aimed at stealing personal banking credentials and credit card information. The report, based on data aggregated from network traffic monitored on more than 200 million devices globally where…

Read More

PDPC fines Singapore hotel bookings platform for data breach

Database containing 5M customer records had been accessed and exfiltrated. The Personal Data Protection Commission (“the Commission”) received a data breach notification from Commeasure Pte Ltd (“the Organisation”) that its database containing 5,892,843 customer records had been accessed and exfiltrated (“the Incident”). The Organisation first found out about the data…

Read More

Targeting businesses with bait attacks

35 per cent of businesses targeted by bait attacks. Bait attacks launched via Gmail and other free email services could be making businesses in Asia-Pacific vulnerable to targeted phishing attacks and other threats, according to Barracuda, a trusted partner and leading provider of cloud-enabled security solutions. Taking in more than…

Read More

US Security agencies release guidance for 5G

Key cybersecurity guidance to configure 5G cloud infrastructure. The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) have published cybersecurity guidance to securely build and configure cloud infrastructures in support of 5G. Security Guidance for 5G Cloud Infrastructures: Prevent and Detect Lateral Movement is the first of a…

Read More

New cyber guard for Australian Government data

Taking steps to protect valuable data and thwart cybercriminals and other malicious actors. Through the Australian Cyber Security Centre (ACSC) the Government is enhancing the protection of government networks by blocking connections to malicious websites that contain threats, including ransomware, malware and other cyber dangers. The Australian Protective Domain Name…

Read More