サイバーヴィッシュ テクノロジーなどに関する最新の洞察とトレンド ニュース
サイバーセキュリティ テクノロジー

Chinese Hackers Exploited Recent Fortinet Flaw

Suspected China-nexus threat actor exploited a recently patched vulnerability in Fortinet FortiOS SSL-VPN as a zero-day in attacks which are targeting a European government entity and a managed service provider (MSP)that is located in Africa. Telemetry evidence gathered by Google-owned Mandiant indicates that the exploitation is occurred as early as October 2022which is at least nearly two months before fixes were released.Suspected China-nexus threat actor exploited a recently patched vulnerability in Fortinet FortiOS SSL-VPN as a zero-day in attacks This incident continues in China’s pattern of exploiting internet facing devices which specifically those used for managed security purposes (e.g., firewalls, IPS\IDS appliances etc.). The attacks entailed the use of a […]

続きを読む
記事 ファッション

Different 90 Types of Indian Sarees in London Fashion Show

Indian sarees are alluring in the European fashion industry. Keeping in view the rising fashion of sarees, models in fashion show wear Indian sarees going for ramp walk in sarees . The Offbeat Saree being held in the UK capital London on May 19. This show led world to exposed to the new fashion of indian sarees which is in trend.The show is organized by the Design Museum. It will be Britain’s biggest fashion show of its own kind. The show will showcase approx 90 types of sarees from India. It has all types from well-known fashion studios to new designers which will participate in it. It also includes the […]

続きを読む
記事 サイバーセキュリティ テクノロジー

Warning for Android Users,New Hook Malware with RAT Capabilities Emerges

The threat actor behind the BlackRock and ERMAC Android banking trojans has uncovered yet another malware for rent called Hook which introduces new capabilities to access files that are stored in the devices and create a remote interactive session. Hook as a novel ERMAC fork which is advertised for sale for $7,000 per month while featuring all the capabilities of its predecessor. Remote Access Tooling (RAT) capabilities which joins ranks of families such as Octo and Hydra are capable of performing a full Device Take Over (DTO) and also complete a full fraud chain from PII exfiltration to transaction with help of all the intermediate steps that too without the […]

続きを読む
記事 サイバーセキュリティ テクノロジー

WhatsApp Fined €5.5 Million for Violating Data Protection Laws

The Irish Data Protection Commission imposed fresh fines of €5.5 million against Meta’s WhatsApp for violating data protection laws which was processing users’ personal information. Main point of focus of the ruling is an update to the messaging platform like whatsapp Terms of Service which was imposed in the days which leads enforcement of the General Data Protection Regulation in May 2018 which require users agree to the revised terms in order to continue using the service or risk losing access. This complaint is filed by privacy non-profit NOYB which alleged that WhatsApp breached the regulation by compelling its users to agree to the processing of their personal data for […]

続きを読む
記事 サイバーセキュリティ テクノロジー

Raccoon and Vidar Stealers Spreading through Massive Network of Fake Cracked Software

A resilient infrastructure comprising over 250 domains used to distribute information-stealing malware such as Raccoon and Vidar since early 2020. The infection chain uses about a hundred of fake cracked software catalogue websites which are redirect to several links before downloading the payload hosted on file share platforms such as GitHub.It led to distribution of information stealing software like raccoon and vidar The French cybersecurity company access the domains which are operated by a threat actor running a traffic direction system (TDS) that allows other cybercriminals to rent the service to distribute their malware.The attacks target users are searching for cracked versions of software and games on search engines like […]

続きを読む
記事 サイバーセキュリティ テクノロジー

Malware Attack on CircleCI Engineer’s Laptop

DevOps platform CircleCI disclosed that unidentified threat actors compromised an employee’s laptop and leveraged malware to steal their two-factor authentication-backed credentials to breach the company’s systems and data last month. The sophisticated attack took place in mid December 2022 and that the malware went undetected by its antivirus software led to malware attack on laptop of engineer of CircleCI. The malware was able to execute session cookie theft which enable them to impersonate the targeted employee in a remote location and then escalate access to a subset of our production systems. Analysis of the security lapse revealed that the unauthorized third-party pilfered data from a subset of its databases and […]

続きを読む
記事 ファッション トレンド

The New York Fashion Week Schedule Is Out

The Council of Fashion Designers of America released the official schedule for the New York Fashion Week fall 2023 shows which is going to take place in February. In a fashion week, Rodarte’s Kate and Laura Mulleavy will start the season on February 10, returning to New york to show in person after staying in Los Angeles last year. They show their spring 2022 collection at the Westbeth Artists Housing Complex in the West Village . Thom Browne is also returning to New York City and going to hold a show on Valentine’s Day. The newly-named chairman of the CFDA is amainstay of the Paris collections for almost a decade. […]

続きを読む
サイバーセキュリティ テクノロジー

Cisco warned for unpatched vulnurabilities in EoL Buisness routers

Cisco warned of two security vulnerabilities which affects end-of-life Small Business RV016, RV042, RV042G, and RV082 routers which will not be fixedaccording to them as it acknowledged the public availability of proof-of-concept exploit. The issues of cisco are present in the routers web-based management interface which enables a remote adversary to sidestep authentication which malicious commands on the underlying operating system. Severe of the two is CVE-2023-20025 (CVSS score: 9.0)is the result of improper validation of user input within incoming HTTP packetsA threat actor could misusing it by sending a specially crafted HTTP request to vulnerable routers’ web-based management interface to bypass authentication and obtain elevated permissions. The lack of […]

続きを読む
記事 サイバーセキュリティ テクノロジー 動画

クッキー法違反でTIKTOKに罰金

Popular short video making app TikTok has been fined about €5.4 million by the French data protection supervised agency for breaking cookie consent . Tiktok become the latest platform to face such penalties after Amazon, Google, Meta, and Microsoft since 2020.Users of tiktok have not refused cookies as easily as accepting them and they were not informed in a sufficiently more accurate way of the objectives of the different cookie.The regulator said that it has conducted several audits between May 2020 and June 2022. This company did not offer a straightforward option to refuse all cookies as opposed to just one click for accepting them. The option to “refuse all” […]

続きを読む
記事 ファッション

MAJOR FASHION COMPANIES EXPLOITS BANGLADESH GARMENT INDUSTRY

Major fashion companies and brands like zara,H&M,and GAP found to exploi Bangladesh garment industry workers, with unfair practices and pay the suppliers less cost of production, according to a study published few days back This study that surveyed many Bangladeshi factories and companies which make garments for global brands and retailers during the COVID pandemic found they got same price inspite of the global pandemic and increased prices. More than half of garment factories experienced order cancellations, refusal to pay,,price reductions or delayed payment of goods and many such things which led them to loss in trade.These things led to reduction in wage of employees,loss of their jobs and many […]

続きを読む