Blog – Page 875 – Cyber Mike

Fake Recruiters Distribute Banking Trojan via Malicious Apps in Phishing Scam

Cybersecurity researchers have shed light on a sophisticated mobile phishing (aka mishing) campaign that’s designed to distribute an updated version of the Antidot banking trojan.
“The attackers presented themselves as recruiters, luring unsuspecting victims with job offers,” Zimperium zLabs Vishnu Pratapagiri researcher said in a new report.
“As part of their fraudulent hiring process, the

SAP Patches Critical Vulnerability in NetWeaver

SAP has released patches for 16 vulnerabilities, including a critical-severity SSRF bug in NetWeaver (Adobe Document Services).

The post SAP Patches Critical Vulnerability in NetWeaver appeared first on SecurityWeek.

Microsoft Bets $10,000 on Prompt Injection Protections of LLM Email Client

Microsoft offers $10,000 in rewards to researchers who can manipulate a realistic simulated LLM-integrated email client.

The post Microsoft Bets $10,000 on Prompt Injection Protections of LLM Email Client appeared first on SecurityWeek.

Webinar Today: Inside a Hacker’s Playbook – How Cybercriminals Use Deepfakes

Join the live, eye-opening session that pulls back the curtain on how bad actors exploit social engineering tactics, like deepfake technology and Business Email Compromise (BEC).

The post Webinar Today: Inside a Hacker’s Playbook – How Cybercriminals Use Deepfakes appeared first on SecurityWeek.

Astrix Security Banks $45M Series B to Secure Non-Human Identities

Tel Aviv company building software to secure non-human identities banks a $45 million funding round led by Menlo Ventures.

The post Astrix Security Banks $45M Series B to Secure Non-Human Identities appeared first on SecurityWeek.

Microsoft 365 outage takes down Office web apps, admin center

Microsoft is investigating a widespread and ongoing Microsoft 365 outage impacting Office web apps and the Microsoft 365 admin center. […]

Cisco Says Flaws in Industrial Routers, BGP Tool Remain Unpatched 8 Months After Disclosure

Cisco Talos has disclosed the details of apparently unpatched vulnerabilities in MC Technologies industrial routers and the GoCast BGP tool.

The post Cisco Says Flaws in Industrial Routers, BGP Tool Remain Unpatched 8 Months After Disclosure appeared first on SecurityWeek.

The Future of Network Security: Automated Internal and External Pentesting

In today’s rapidly evolving threat landscape, safeguarding your organization against cyberattacks is more critical than ever. Traditional penetration testing (pentesting), while effective, often falls short due to its high costs, resource requirements, and infrequent implementation. Automated internal and external network pentesting is a game-changing solution, empowering organizations to stay

Microsoft Rolls Out Default NTLM Relay Attack Mitigations

Microsoft has rolled out new default security protections that mitigate NTLM relaying attacks across on-premises Exchange, AD CS, and LDAP services.

The post Microsoft Rolls Out Default NTLM Relay Attack Mitigations appeared first on SecurityWeek.

Phone Phishing Gang Busted: Eight Arrested in Belgium and Netherlands

Belgian and Dutch authorities have arrested eight suspects in connection with a “phone phishing” gang that primarily operated out of the Netherlands with an aim to steal victims’ financial data and funds.
As part of the international operation, law enforcement agencies carried out 17 searches in different locations in Belgium and the Netherlands, Europol said. In addition, large amounts of cash,

Cyber News