Latest News Articles
--- TLP:WHITE ---
News
− On Fire Drills and Phishing Tests
Current approaches aren't working and demonize security teams. Mark Linton at Google advocates ending reliance on phishing tests, and follow a fire drill approach to improve reaction at IR, and to treat users as the first line of defence.
https://security.googleblog.com/2024/05/on-fire-drills-and-phishing-tests.html− How Apple Wi-Fi Positioning System can be abused to track people around the globe
SpaceX is smart on this, Cupertino and GL.iNet not so much In-depth Academics have shown how Apple's Wi-Fi Positioning System (WPS) can be abused to create a global privacy nightmare.
https://www.theregister.com/2024/05/23/apple_wifi_positioning_system/− ESET Research releases latest APT Activity Report, highlighting cyber warfare of Russia-, China-, and Iran-aligned groups
This ESET APT Activity Report summarizes notable activities of cyberthreat groups that were documented by ESET researchers from October 2023 until the end of March 2024.
https://www.eset.com/int/about/newsroom/press-releases/research/eset-research-releases-latest-apt-activity-report-highlighting-cyber-warfare-of-russia-china-and-iran-aligned-groups/− ESET Research: Russia-aligned Turla group likely uses Lunar arsenal to target & spy on European diplomats
SET Research discovered two previously unknown backdoors — which we named LunarWeb and LunarMail — compromising a European ministry of foreign affairs and its diplomatic missions abroad, primarily in the Middle East. ESET believes that the Lunar toolset has been used since at least 2020 and, given the similarities between the tactics, techniques, and procedures and past activities, ESET researchers attribute these compromises with medium confidence to the infamous Russia-aligned cyberespionage group Turla.
https://www.eset.com/int/about/newsroom/press-releases/research/eset-research-russia-aligned-turla-group-likely-uses-lunar-arsenal-to-target-spy-on-european-diplomats/Vulnerabilities
− Hackers target Check Point VPNs to breach enterprise networks
Threat actors are targeting Check Point Remote Access VPN devices in an ongoing campaign to breach enterprise networks.
https://blog.checkpoint.com/security/enhance-your-vpn-security-posture− JAVS courtroom recording software backdoored in supply chain attack
Attackers have backdoored the installer of widely used Justice AV Solutions (JAVS) courtroom video recording software with malware that lets them take over compromised systems. The company behind this software, also known as JAVS, says the digital recording tool currently has over 10,000 installations in many courtrooms, legal offices, correctional facilities, and government agencies worldwide.
https://www.bleepingcomputer.com/news/security/javs-courtroom-recording-software-backdoored-in-supply-chain-attack/Community News
− NCSC Conference 2024
The National Cyber Security Centre (NCSC) is hosting its first national conference to promote cybersecurity awareness, facilitate stakeholder engagement, and share industry insights. The Conference is the premier cybersecurity event of the Irish public sector. It gathers over 280 cybersecurity leaders and professionals for a day of networking, sharing knowledge, and collaborative efforts on 25th June in Dublin Castle.
https://www.ncsc-conference.ie/conference--- TLP:WHITE ---