cybercory.com

23/08/2024

YouTube Unveils AI-Powered Tool to Recover Hacked Accounts.

In a significant step towards enhancing user security, YouTube has launched a new AI-powered tool designed to help users recover their hacked accounts.

The tool, which utilizes advanced machine learning algorithms, is designed to identify suspicious activity and assist users in regaining control of their accounts.

This innovative approach aims to streamline the account recovery process and provide users with a more secure online experience.

21/08/2024

Critical GiveWP Vulnerability Exposes Thousands of WordPress Sites to Remote Code Ex*****on.

A severe security flaw has been discovered in the GiveWP WordPress plugin, potentially affecting over 100,000 websites.

The vulnerability, tracked as CVE-2024-5932, allows unauthenticated attackers to execute arbitrary code remotely, granting them complete control over compromised systems.

20/08/2024

Microsoft Apps on macOS Under Siege: Library Injection Threat Looms Large.

A recent discovery by Cisco Talos has unveiled a critical vulnerability affecting multiple Microsoft applications on macOS, potentially exposing users to a dangerous library injection attack.

This alarming revelation underscores the persistent threat landscape and highlights the importance of robust security measures.

16/08/2024

Unpatched Microsoft Entra ID Authentication Bypass Endangers Hybrid Identity Systems.

A critical vulnerability has been identified in Microsoft Entra ID, allowing attackers to bypass authentication mechanisms in hybrid identity infrastructures.

This flaw, if exploited, could grant malicious actors unrestricted access to sensitive corporate data and systems, posing a severe threat to organizations worldwide.

13/08/2024

Dark Skippy Attack: A New Threat to Cryptocurrency Security

A recently discovered attack, dubbed “Dark Skippy,” poses a significant threat to the security of cryptocurrency wallets and signing devices.

The attack, detailed in a report by security researchers Lloyd Fournier, Nick Farrow, and Robin Linus, exploits a vulnerability in the Schnorr signature technology used by many cryptocurrency wallets.

12/08/2024

: We are excited to share our latest interview on Cybercory with Daniel Ehrenreich, a global leader in the ICS-OT industry. In this insightful discussion titled **"Understanding ICS-OT Cyber Security Incidents is Mandatory for Selecting the Correct Cyber Defense,"** Daniel shares his expertise on the critical risks faced by the industry and offers solutions for enhancing cybersecurity.

Don't miss out on this essential read for anyone involved in - or cybersecurity. Available now on https://www.cybercory.com

🔗 Read the full: https://cybercory.com/2024/08/12/understanding-ics-ot-cyber-security-incidents-is-mandatory-for-selecting-the-correct-cyber-defense/

05/08/2024

🚨 Upcoming Interview Alert! 🚨
We are excited to announce our 2nd upcoming interview at Cybercory.com, featuring the esteemed expert Ritesh Bhatia. Join us on August 7, 2024, as we delve into the critical topic of "AI-Based Cybercrime" on cybercory.com,.
Meet the Expert: Ritesh Bhatia
🔒 Cybercrime Investigator
🌐 Cybersecurity and Data Privacy Consultant
🎤 TEDx Speaker
With over 20 years of experience, Ritesh is a prominent figure in the cyberspace domain. His accolades include:
Board committee member in multiple organizations
Certified Fraud Examiner (ACFE, USA)
Renowned for solving complex cybercrime cases for large organizations, law enforcement, and individuals
Featured expert on MTV's award-winning show, MTV Troll Police
Regular commentator on national and international media with over 500 appearances
Don't miss this insightful interview where Ritesh shares his extensive knowledge and experience on the threats posed by AI in cybercrime.
Stay tuned for more updates and mark your calendars!

02/08/2024

🌐 **Annonce du Lancement de notre Série d'Interviews d'Experts en Cybersécurité !** 🌐

🚀 Nous sommes ravis de lancer notre mission de promotion des acteurs mondiaux de la cybersécurité avec une interview incontournable de Dr. Sunil Kr. Pandey ! Le 4 août 2024, sur le thème : 'IA_Pour_Renforcer_la_Cybersécurité_dans_les_Organisations par Ouaissou DEMBELE, rédacteur en chef de cybercory.com - Leaders Cybersecurity Magazine.

🔒 **Pourquoi suivre cette interview sur cybercory.com?**
Avec plus de 26 ans d'expertise en Cloud, Blockchain, Technologies de Bases de Données et Soft Computing, le Dr. Pandey est une voix de premier plan dans l'industrie. Conférencier TEDx avec 9 brevets, plus de 65 publications de recherche et 4 livres influents, ses perspectives sont inestimables pour quiconque est passionné par la cybersécurité et la technologie de pointe.

🎤 **À Propos de Dr. Sunil Kr. Pandey :**
- Directeur (IT & UG) à I.T.S, Mohan Nagar, Ghaziabad
- Consultant expert pour l'Armée de l'Air Indienne et le Groupe Manipal
- Intervenant à plus de 300 événements nationaux et internationaux
- Organisateur de plus de 25 conférences et sommets
- Lauréat de nombreux prix prestigieux, dont The World CIO 200 Award (2021, 2022)

🌟 **Rejoignez-nous dans cette Aventure Passionnante :**
Ne manquez pas cette opportunité de découvrir les perspectives d'un éminent spécialiste de la cybersécurité. Restez à l'écoute pour nos prochains épisodes avec d'autres experts mondiaux de l'industrie !

🔗 cybercory.com

'Experts

02/08/2024

🌐 **Announcing the Launch of Our Cybersecurity Expert Interview Series!** 🌐

🚀 We are thrilled to kick off our mission of promoting global cybersecurity players with an unmissable interview featuring Dr. Sunil Kr. Pandey! this 4 August 2024 on the topic : by Ouaissou DEMBELE, editor-in-chief at cybercory.com - Leaders Cybersecurity Magazine

🔒 **Why Tune In?**
With over 26 years of expertise in Cloud, Blockchain, Database Technologies, and Soft Computing, Dr. Pandey is a leading voice in the industry. A TEDx speaker with 9 patents, 65+ research publications, and 4 influential books, his insights are invaluable for anyone passionate about cybersecurity and cutting-edge technology.

🎤 **About Dr. Sunil kr Pandey:**
- Director (IT & UG) at I.T.S, Mohan Nagar, Ghaziabad
- Expert consultant for the Indian Air Force and Manipal Group
- Speaker at 300+ national and international events
- Organizer of 25+ conferences and summits
- Recipient of numerous prestigious awards, including The World CIO 200 Award (2021, 2022)

🌟 **Join Us in this Exciting Journey:**
Don't miss this opportunity to gain insights from a cybersecurity luminary. Stay tuned for our upcoming episodes with more global industry experts!

🔗 cybercory.com

31/07/2024

to Fortify with New Data Commission

In a proactive move to bolster the nation’s digital defenses, Malaysia’s Minister, Gobind Singh Deo, has announced plans to establish a dedicated data commission.

Malaysia to Fortify Cybersecurity with New Data Commission. Malaysia to Fortify Cybersecurity with New Data Commission

26/07/2024

CrowdStrike Outage: A Case Study in Security Tool Oversight

The root cause was identified as a faulty security update that misidentified legitimate system files as malicious, triggering a cascading series of system failures.

This incident serves as a stark reminder of the critical role internal security controls play in ensuring the reliability of cybersecurity solutions.

Unintended Consequences: The CrowdStrike Outage Explained

CrowdStrike Outage: A Case Study in Security Tool Oversight. CrowdStrike Outage: A Case Study in Security Tool Oversight

23/07/2024

, a popular cloud-based messaging platform, recently faced a critical security vulnerability dubbed “EvilVideo.” This vulnerability, discovered in June 2024, allowed attackers to distribute malware disguised as video files, posing a significant threat to Android users.

This article delves into the technical aspects of the EvilVideo exploit, explores the potential consequences, and offers best practices to safeguard yourself on Telegram.

Masquerading Menace: "EvilVideo" Exposes Telegram Android Vulnerability. Masquerading Menace: "EvilVideo" Exposes Telegram Android Vulnerability

19/07/2024

The cybersecurity world was sent into a frenzy when the notorious hacking group NullBulk claimed responsibility for breaching an internal Disney laboratory.

The leaked data, amounting to a staggering 1.1 terabytes, has raised serious concerns about the protection of intellectual property, employee privacy, and the potential impact on Disney’s operations.

While Disney has not officially confirmed the breach, the leaked data, if authentic, suggests a significant security lapse.

Disney Internal Lab Breached? NullBulk Leaks 1.1 TB of Data. Disney Internal Lab Breached? NullBulk Leaks 1.1 TB of Data

15/07/2024

The digital landscape is a battlefield, and for businesses, protecting sensitive information and intellectual property is paramount.

Virtual Private Networks (VPNs) have become a critical tool for organizations, encrypting internet traffic and securing remote access for employees.

But with a growing remote workforce, the line between business and personal online activity can blur. This begs the question: are personal VPNs sufficient for business use, or is a dedicated business VPN solution the way to go?

This comprehensive comparison explores the key functionalities and limitations of Personal VPNs and Business VPNs, empowering you to make an informed decision for your organization’s specific security needs.

Virtual Gatekeepers: Business VPN vs. Personal VPN - Securing Your Digital Domain

14/07/2024

Free vs. Paid VPN: Navigating the Maze of

In today’s ever-evolving landscape, protecting your online privacy has become paramount.

Virtual Private Networks (VPNs) have emerged as popular tools for encrypting your internet traffic and masking your IP address, shielding your online activity from prying eyes. However, with a plethora of free and paid VPN options available, choosing the right solution can be a daunting task.

This comprehensive comparison explores the key features and limitations of Free VPNs and Paid VPNs, empowering you to make an informed decision for your specific privacy needs.

Free VPN vs. Paid VPN: Navigating the Maze of Online Privacy. Free VPN vs. Paid VPN: Navigating the Maze of Online Privacy

13/07/2024

Beware the Hidden Threat: Trojanized jQuery Packages Lurk in Popular Repositories

JavaScript (JS) libraries like jQuery are the building blocks of countless websites. They streamline common tasks, saving developers time and effort. However, a recent discovery has sent shivers down the spines of web developers – trojanized versions of jQuery circulating in popular repositories like npm, jsDelivr, and GitHub.

This article explores the details of this malicious campaign, the potential consequences of using these infected packages, and offers actionable advice to help developers safeguard their projects from such threats.

Beware the Hidden Threat: Trojanized jQuery Packages Lurk in Popular Repositories. Beware the Hidden Threat: Trojanized jQuery Packages Lurk

12/07/2024

Ransomware attacks continue to plague individuals and organizations worldwide. These malicious programs encrypt victims’ data, rendering it inaccessible until a ransom is paid.

Recently, however, a glimmer of hope emerged with the news that researchers have cracked the encryption scheme of DoNex ransomware, a variant that plagued victims throughout 2023 and early 2024.

This article delves into the details of the DoNex decryption breakthrough, explores the implications for ransomware victims and the cybersecurity community, and offers valuable advice to help users and organizations protect themselves from similar attacks.

A Ray of Hope: Researchers Decrypt DoNex Ransomware, Exposing Cryptographic Weaknesses. A Ray of Hope: Researchers Decrypt DoNex Ransomware,

11/07/2024

The digital landscape is a battlefield, and educational institutions are not immune from cyberattacks.

Recently, Frankfurt University of Applied Sciences in Germany fell victim to a significant cyberattack that crippled its IT systems, disrupting educational operations and highlighting the growing vulnerability of universities in the digital age.

This article delves into the details of the attack on Frankfurt University, explores the potential consequences for students, faculty, and the education sector as a whole, and offers valuable advice for universities to strengthen their cybersecurity posture.

Educational Disruption: Frankfort University Grapples with Major Cyberattack. Educational Disruption: Frankfort University Grapples with Major

11/07/2024

The healthcare industry is a prime target for cybercriminals due to the sensitive nature of patient data.

Recently, Excelsior Orthopaedics, a leading musculoskeletal healthcare center in New York, fell victim to a cyberattack perpetrated by the notorious MONTI ransomware group.

This article delves into the details of this attack, explores the potential consequences for patients and the healthcare industry as a whole, and offers valuable advice for healthcare organizations to strengthen their cybersecurity posture.

Data Breached, Patients at Risk: MONTI Ransomware Cripples New York Orthopaedic Center. Data Breached, Patients at Risk: MONTI Ransomware

10/07/2024

Removes Apps from Russian App Store Under Government Pressure

Virtual Private Networks (VPNs) offer a valuable tool for internet users seeking online privacy and security.

They encrypt internet traffic and route it through a remote server, masking a user’s location and online activity from prying eyes. However, recent events in Russia raise concerns about internet censorship and the potential limitations users face when VPN access is restricted.

This article explores the recent removal of VPN apps from the Russian App Store at the behest of the government, analyzes the potential consequences, and offers 10 crucial security practices to consider when operating without a VPN.

A Chilled Connection: Apple Removes VPN Apps from Russian App Store Under Government Pressure. A Chilled Connection: Apple Removes VPN Apps

10/07/2024

vs. : Expanding Your Horizon – A Battle for Holistic

In today’s ever-evolving cybersecurity landscape, choosing the right solution can be a daunting task.

Endpoint Detection and Response (EDR) has become a cornerstone of endpoint security, providing real-time threat detection and response capabilities. However, as cyberattacks become more sophisticated, organizations are increasingly looking for a broader view of their security posture.

This is where Extended Detection and Response (XDR) emerges as a challenger. Both EDR and XDR offer protection against cyber threats, but they differ in their scope and capabilities.

This comprehensive comparison delves into the key strengths and weaknesses of each approach, helping you make an informed decision for your organization’s specific needs.

EDR vs. XDR: Expanding Your Cybersecurity Horizon - A Battle for Holistic Defense. EDR vs. XDR: Expanding Your Cybersecurity Horizon - A Batt

07/07/2024

in the Paddock: ’s FIA Hit by Email Compromise

The world of Formula 1, known for its high-octane races and cutting-edge technology, recently faced a cybersecurity challenge.

The Fédération Internationale de l’Automobile (FIA), the governing body of Formula 1 and other motorsports, disclosed a data breach in June 2024 after attackers compromised several email accounts through phishing attacks.

This article delves into the details of the incident, explores the potential implications for the FIA and the motorsport community, and offers valuable advice to organizations of all sizes on how to avoid similar breaches.

Phishing in the Paddock: Formula 1's FIA Hit by Email Compromise. Phishing in the Paddock: Formula 1's FIA Hit by Email Compromise

07/07/2024

Ransomware continues to be a significant threat to businesses and organizations worldwide.

In a recent alarming trend, the average ransom demand has skyrocketed to a staggering $5.2 million per attack, according to a report by Coveware, a cybersecurity incident response firm.

This sharp increase signifies a growing sophistication among ransomware attackers and their willingness to target larger organizations with the potential to pay higher ransoms.

Let’s delve deeper into the reasons behind this surge in extortion demands, explore the evolving tactics of ransomware groups, and discuss strategies to mitigate the risk of falling victim to a ransomware attack.

The Rising Ransom: Why Ransomware Extortion Demands are Skyrocketing. The Rising Ransom: Why Ransomware Extortion Demands are Skyrocketing

06/07/2024

In today’s interconnected world, navigating the vast expanse of the internet raises privacy and security concerns.

Public Wi-Fi networks, while convenient, can expose your online activity to prying eyes. Additionally, geographical restrictions on content and censorship practices can limit your access to information.

Virtual Private Networks (VPNs) emerge as a valuable tool, offering a secure and private browsing experience on the internet.
What is a VPN?

What Is VPN? Tunneling Through the Web: A Comprehensive Guide. What Is VPN? Tunneling Through the Web: A Comprehensive Guide

05/07/2024

In today’s hyper-connected world, concerns about privacy and data security are ever-present.

One of the most common questions iPhone users ask is: “Is my iPhone spying on me?” While Apple prioritizes user privacy...

Is Your iPhone Spying on You? A Guide to Privacy and Security on Your Apple Device. Is Your iPhone Spying on You? A Guide to Privacy and

04/07/2024

Imagine settling into your airplane seat, eager to catch up on emails or browse the internet during your flight. But what if the seemingly convenient in-flight Wi-Fi was a cleverly disguised trap designed to steal your personal information?

This is the unsettling reality exposed by a recent arrest in Australia, where a man was apprehended for allegedly deploying “evil twin” Wi-Fi networks to target airline passengers and pilfer their data.

Airborne Espionage: Hackers Grounded for Stealing Passenger Data with "Evil Twin" Wi-Fi. Airborne Espionage: Hackers Grounded for Stealing

04/07/2024

The digital age has revolutionized how we manage our finances, with online banking offering convenience and accessibility. However, this reliance on digital systems also introduces vulnerabilities that cybercriminals can exploit.

A recent ransomware attack on Patelco Credit Union, a respected Bay Area institution serving over 88,000 members, serves as a stark reminder of the ever-present threat of cyberattacks in the financial services sector.

This article delves into the details of the attack, explores the challenges Patelco faces in recovering, and offers valuable advice for financial institutions and consumers alike on how to fortify their defenses against ransomware attacks.

04/07/2024

Australia’s recent announcement of a $2 billion strategic partnership with Amazon Web Services (AWS) to create a “Top Secret” cloud environment has sparked debate.

While some hail it as a leap forward in securing sensitive government data and boosting national security capabilities, others raise concerns about vendor lock-in and potential dependence on a single cloud provider.

This article dives into the details of the project, explores the security implications, and offers insights to navigate the cloud security landscape.

Cloud Conundrum: Australia's $2 Billion Bet on "Top Secret" AWS – Security Boon or Dependence Bind?. Cloud Conundrum: Australia's $2 Billion

04/07/2024

In a recent security alert, the UAE Cybersecurity Council (UAECC) issued a critical advisory urging Samsung Galaxy smartphone users in the United Arab Emirates (UAE) to update their devices immediately.

The alert warns of critical security vulnerabilities in major flagship models that could potentially allow attackers to gain unauthorized access to sensitive user data.

Let’s delve deeper into the details of this security alert, explore the types of vulnerabilities identified, and discuss essential steps Samsung users can take to protect their devices and data.

A Call to Action: Responding to the UAECC Security Alert

Patch It Up! UAE Urges Samsung Users to Update Devices for Data Theft Protection. Patch It Up! UAE Urges Samsung Users to Update Devices for

27/06/2024

What is ?

From emails and online banking to social media profiles and medical records, vast amounts of data reside on electronic devices and travel across networks.

What Is Encryption? The Guardian of Our Digital Age: A Comprehensive Guide. What Is Encryption? The Guardian of Our Digital Age: