Data exfiltration stories
The insider threat: Why Australian businesses are most vulnerable from within
Today
#
cybersecurity
#
social engineering
#
malicious insiders
Australian businesses face a growing insider threat, with a 2022 study revealing 67% of companies grappling with frequent internal security incidents.
Vectra AI reveals critical flaw in Google Cloud Document AI
Last week
#
storage
#
soc
#
ai security
Vectra AI reveals a critical Transitive Access Abuse vulnerability in Google Cloud's Document AI, raising data exfiltration risk for users.
ReliaQuest reveals sophisticated Inc Ransom tactics in attack analysis
This month
#
storage
#
encryption
#
cybersecurity
ReliaQuest’s analysis of a ransomware attack by Inc Ransom on a healthcare customer reveals sophisticated tactics using legitimate tools for data theft.
Oracle unveils zero trust packet routing for enhanced security
This month
#
firewalls
#
network security
#
cloud security
Oracle revolutionises cloud security with the launch of OCI Zero Trust Packet Routing, decoupling network security from architecture to prevent unauthorised data access.
Experts warn of security lapses in open-source AI deployments
This month
#
devops
#
advanced persistent threat protection
#
apm
Sensitive data exposed by open-source large language model servers amid rapid AI adoption reveals critical security gaps, researcher Naphtali Deutsch uncovers.
Ransomware attacks surge 58% in July, breaking records
Last month
#
ransomware
#
cybersecurity
#
russia
Ransomware attacks surged by 58% in July, with 60 incidents reported. Blackfog's data shows a record-breaking month, particularly hitting government, education, and healthcare sectors.
AI-driven cyber threats dominate new Palo Alto Networks report
Last month
#
uc
#
firewalls
#
vpns
Palo Alto Networks' '2024 Unit 42 Report' reveals rising cybersecurity threats driven by AI, with sectors like insurance and pharmaceuticals facing heightened vulnerabilities.
Barracuda exposes advanced phishing attacks with new malware
Last month
#
firewalls
#
malware
#
phishing
Barracuda Networks reports a new wave of phishing attacks using advanced “infostealer” malware that exfiltrates extensive sensitive data, urging enhanced cybersecurity measures.
Aqua Security finds critical vulnerabilities in six AWS services
Last month
#
cloud security
#
hyperscale
#
application security
Aqua Security's researchers found critical flaws in six major AWS services, risking RCE, full-service takeovers, data breaches, and more.
Picus report reveals flaws in threat exposure management
Last month
#
advanced persistent threat protection
#
ransomware
#
linux
Almost 40% of systems tested by Picus Security are vulnerable to complete takeover, with macOS being notably weaker in stopping cyber-attacks.
Malicious Python package targets macOS & GCP credentials
Tue, 30th Jul 2024
#
application security
#
supply chain systems
#
social engineering
A malicious Python package, lr-utils-lib, targets macOS developers to steal Google Cloud credentials, Checkmarx's research reveals, adding new threats to both systems and social engineering tactics.
SentinelLabs report exposes ransomware strategy of APT groups
Thu, 27th Jun 2024
#
ransomware
#
cybersecurity
#
disruption
SentinelLabs' latest report exposes how cyberespionage groups, including the Chinese APT group ChamelGang, are strategically using ransomware for disruption and misattribution.
Adlumin enhances ransomware prevention with new exfiltration tool
Wed, 26th Jun 2024
#
encryption
#
advanced persistent threat protection
#
ransomware
Adlumin unveils an enhanced Ransomware Prevention feature to detect and halt both encryption and data exfiltration tactics, combating double-extortion threats.
WatchGuard launches AI-driven ThreatSync+ NDR & compliance tools
Wed, 26th Jun 2024
#
ransomware
#
firewalls
#
breach prevention
WatchGuard Technologies unveils ThreatSync+ NDR and WatchGuard Compliance Reporting, leveraging AI to simplify cybersecurity for smaller IT teams and enhance compliance.
Traceable AI uncovers growing API security issues in finance
Thu, 13th Jun 2024
#
cybersecurity
#
risk & compliance
#
visibility
A report from reveals critical API security flaws plaguing the US financial sector, with 82% of institutions concerned about regulatory compliance.
Chinese espionage campaign targeting Southeast Asia revealed
Fri, 7th Jun 2024
#
malware
#
firewalls
#
network security
Sophos has uncovered a two-year Chinese espionage campaign, 'Crimson Palace', targeting a high-level Southeast Asian government, deploying novel malware like PocoProxy.
Millions of customers urged to take action after Ticketmaster data breach
Thu, 30th May 2024
#
ransomware
#
data protection
#
encryption
Ticketmaster has suffered a major data breach compromising the personal information of more than 500 million users.
Rise in ransomware accelerates cyber insurance adoption
Thu, 23rd May 2024
#
ransomware
#
email security
#
genai
Arctic Wolf’s Cybersecurity Report reveals a rise in ransomware and Business Email Compromise attacks, pushing global firms towards increased cyber insurance.
Kaspersky report reveals ransomware accounts for a third of attacks
Tue, 14th May 2024
#
ransomware
#
advanced persistent threat protection
#
cybersecurity
Kaspersky's 2023 report reveals ransomware now accounts for a third of all cyber incidents, with a 71% rise in known victims and sophisticated attacks on key sectors.
Semperis intensifies efforts with Veritas on ransomware defence
Thu, 9th May 2024
#
dr
#
ransomware
#
encryption
Semperis bolsters partnership with Veritas Technologies, enhancing cyber resilience against ransomware threats by using advanced attack-path analysis methods, streamlining data protection methods.