June 22, 2021

D3FEND is a new project promoted by MITRE Corporation to add defensive cybersecurity techniques to the ATT&CK Framework. D3FEND is a new project promoted by MITRE Corporation aimed to add a knowledge graph of cybersecurity countermeasures to the ATT&CK Framework. The project was announced this week by the U.S. National Security Agency (NSA), it proposes […]

The post MITRE adds D3FEND defensive cybersecurity techniques to ATT&CK Framework appeared first on Security Affairs.

Read More MITRE adds D3FEND defensive cybersecurity techniques to ATT&CK Framework

DarkRadiation is a new strain of ransomware implemented in Bash that targets Linux and Docker cloud containers and leverages Telegram for C2. Trend Micro researchers spotted a new strain of ransomware, dubbed DarkRadiation, which is writted in Bash script and target Linux distributions (Red Hat/CentOS and Debian) and Docker cloud containers. The ransomware uses OpenSSL’s […]

The post Wormable bash DarkRadiation Ransomware targets Linux distros and docker containers appeared first on Security Affairs.

Read More Wormable bash DarkRadiation Ransomware targets Linux distros and docker containers

Researchers from Adversa devised an attack technique, dubbed ADVERSARIAL OCTOPUS, against Facial Recognition systems.  THE INTENTION BEHIND THIS PROJECT Driven by our mission to increase trust in AI, Adversa’s AI Red Team is constantly exploring new methods of assessing and protecting mission-critical AI applications. Recently, we’ve discovered a new way of attacking Facial Recognition systems […]

The post ADVERSARIAL OCTOPUS – ATTACK DEMO FOR AI-DRIVEN FACIAL RECOGNITION ENGINE appeared first on Security Affairs.

Read More ADVERSARIAL OCTOPUS – ATTACK DEMO FOR AI-DRIVEN FACIAL RECOGNITION ENGINE

Belgium city of Liege has suffered today a ransomware attack that has disrupted the IT network of the municipality and its online services. Liege, one of the biggest cities in Belgium, was hit by a ransomware attack that has disrupted the IT network of the municipality and its online services. “The City of Liège is […]

The post A ransomware attack disrupted the IT network of the City of Liege appeared first on Security Affairs.

Read More A ransomware attack disrupted the IT network of the City of Liege

Red Canary Director of Intelligence Katie Nickels shares her thoughts on strategies, tools, and frameworks to build an effective threat intelligence team.

The post Strategies, tools, and frameworks for building an effective threat intelligence team appeared first on Microsoft Security Blog.

Read More Strategies, tools, and frameworks for building an effective threat intelligence team

Red Canary Director of Intelligence Katie Nickels shares her thoughts on strategies, tools, and frameworks to build an effective threat intelligence team.

The post Strategies, tools, and frameworks for building an effective threat intelligence team appeared first on Microsoft Security Blog.

Read More Strategies, tools, and frameworks for building an effective threat intelligence team

DirtyMoe is a Windows botnet that is rapidly growing, it passed from 10,000 infected systems in 2020 to more than 100,000 in the first half of 2021. Researchers from Avast are warning of the rapid growth of the DirtyMoe botnet (PurpleFox, Perkiler, and NuggetPhantom), which passed from 10,000 infected systems in 2020 to more than 100,000 in […]

The post DirtyMoe botnet infected 100,000+ Windows systems in H1 2021 appeared first on Security Affairs.

Read More DirtyMoe botnet infected 100,000+ Windows systems in H1 2021

Coffee Briefings are timely deliveries of the latest ITWC headlines, interviews, and podcasts. These briefings drop on Tuesday mornings. Today’s Coffee Briefing is delivered by IT World Canada reporter Pragya Sehgal, with files from editorial director Alex Coop. Missed last week’s Coffee Briefing? We got you covered. ITWC Podcasts Listen to the latest episode of […]

The post Coffee Briefing, June 22, 2021 – IBM merges Toronto offices; edtech booms; Cisco’s new 5G industrial edge routing portfolio; and more first appeared on IT World Canada.

Read More Coffee Briefing, June 22, 2021 – IBM merges Toronto offices; edtech booms; Cisco’s new 5G industrial edge routing portfolio; and more

The Tor Project released Tor Browser 10.0.18 that addresses a flaw that allows sites to track users by fingerprinting the installed apps. The Tor Project has released Tor Browser 10.0.18, the new version of the popular browser addresses multiple flaws, including a vulnerability that could be exploited to track users by fingerprinting the applications installed […]

The post Tor Browser 10.0.18 fixes a bug that allows to track users by fingerprinting installed apps appeared first on Security Affairs.

Read More Tor Browser 10.0.18 fixes a bug that allows to track users by fingerprinting installed apps

At this year’s Apple Worldwide Developer Conference, Apple announced something called “iCloud Private Relay.” That’s basically its private version of onion routing, which is what Tor does.

Privacy Relay is built into both the forthcoming iOS and MacOS versions, but it will only work if you’re an iCloud Plus subscriber and you have it enabled from within your iCloud settings.

Once it’s enabled and you open Safari to browse, Private Relay splits up two pieces of information that — when delivered to websites together as normal — could quickly identify you. Those are your IP address (who and exactly where you are) and your DNS request (the address of the website you want, in numeric form)…

Read More Apple Will Offer Onion Routing for iCloud/Safari Users

At this year’s Apple Worldwide Developer Conference, Apple announced something called “iCloud Private Relay.” That’s basically its private version of onion routing, which is what Tor does.

Privacy Relay is built into both the forthcoming iOS and MacOS versions, but it will only work if you’re an iCloud Plus subscriber and you have it enabled from within your iCloud settings.

Once it’s enabled and you open Safari to browse, Private Relay splits up two pieces of information that — when delivered to websites together as normal — could quickly identify you. Those are your IP address (who and exactly where you are) and your DNS request (the address of the website you want, in numeric form)…

Read More Apple Will Offer Onion Routing for iCloud/Safari Users