#intel

Businesses need to re-evaluate their cyber-insurance policies as firms like Lloyd's of London continue to add restrictions, including excluding losses related to state-backed cyberattackers.

Anti-Putin media network February Morning has become a central player in the underground fight against the Kremlin.

By Waqas MBDA is the world's 2nd largest manufacturer of missiles and currently, hackers are selling 70 GB worth of its alleged data for 1 BTC on a Russian forum. This is a post from HackRead.com Read the original post: NATO Probes Hackers Selling Data from Top Missile Firm MBDA

Linksys E1200 v1.0.04 is vulnerable to Buffer Overflow via ej_get_web_page_name.

Plus: An Iranian hacking tool steals inboxes, LastPass gets hacked, and a deepfake scammer targets the crypto world.

Iranian state-sponsored actors are leaving no stone unturned to exploit unpatched systems running Log4j to target Israeli entities, indicating the vulnerability’s long tail for remediation. Microsoft attributed the latest set of activities to the umbrella threat group tracked as MuddyWater (aka Cobalt Ulster, Mercury, Seedworm, or Static Kitten), which is linked to the Iranian intelligence

By Deeba Ahmed According to Patrick Hillmann, chief communications officer of Binance, his Deepfake AI hologram is being used by scammers to trick users into online meetings and target Binance clients' crypto projects. This is a post from HackRead.com Read the original post: Scammers Made Deepfake AI Hologram of Binance Executive

The phishing attack on the SMS giant exposes the dangers of B2B companies to the entire tech ecosystem.

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Aug. 19 and Aug. 26. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics, indicators of compromise, and discussing how our customers are automatically protected from these threats. As a reminder, the information provided for the following threats in this post is non-exhaustive and current as of the date of publication. Additionally, please keep in mind that IOC searching is only one part of threat hunting. Spotting a single IOC does not necessarily indicate maliciousness. Detection and coverage for the following threats is subject to updates, pending additional threat or vulnerability analysis. For the most current information, please refer to your Firepower Management Center, Snort.org, or ClamAV.net. For each threat described below, this blog post only lists 2...

Researchers warned that cyberattackers will be probing the code for weaknesses to exploit later.