The SEC has established the Interagency Securities Council (ISC) to foster collaboration between federal, state and local agencies. Agencies involved in the ISC will meet quarterly to review threat trends and mitigation strategies. The expressed objectives of the council are the following: Solidify cohesion between federal, state and local agencies Improve collaborative efforts on cases […]
The Identity Theft Resource Center (ITRC) has released a report analyzing H1 data breach incidents for 2024. According to the report, there was a 490% rise in data breach victims in H1 of 2024 compared to H1 of 2023. Yet, Q2 had 732 publicly reported data breaches, which represents a 12% decrease from Q1. Security […]
Sumsub introduces the ‘2024 Fraudlympics,’ an awareness campaign displaying fraud data across a range of countries, industries, and categories. The data reveals which nations are leading in categories such as: Fraud by type (deep fakes, identity theft, etc.) Fraud by document (driving license, passport, etc.) Fraud by industry (crypto, iGaming, etc.) In the awareness campaign, […]
Trend Micro has observed an advanced persistent threat (APT) group exploiting vulnerabilities in Internet Explorer. The group, known as Void Banshee, is leveraging a recently patched vulnerability to infect victim machines with the Atlantida info-stealer. This is part of a multi-stage attack involving uniquely crafted URL files and impacting the Windows MSHTML Platform. The vulnerability […]
A judge has dismissed a majority of the SEC lawsuit against SolarWinds, except for securities fraud claims related to a statement on SolarWinds’s website about the company’s security controls. The judge noted that SolarWinds had previously stated it was not obligated to disclose individual cyber incidents or ensure complete prevention of all cyber incidents. Additionally, […]
Researchers at SlashNext have uncovered a new phishing kit lurking on the dark web. Known as the FishXProxy Phishing Kit, this tool utilizes uniquely generated links to slip past initial suspicion. Cybercriminals in underground forums are touting it as “The Ultimate Powerful Phishing Toolkit” due to its array of sophisticated features. Some of the capabilities […]
On Thursday, July 18, users worldwide experienced a technology outage that affected flights, banks, hospitals, and more. Microsoft 365 released a brief statement on X stating that they are actively working on resolving the issue and advised users to check their page for real-time updates. On Friday, July 19, Microsoft announced that the outages were […]
AT&T made an announcement on July 12, 2024, stating that the records of calls and text messages of almost all AT&T cellular customers were compromised through a third-party cloud platform. The compromised data does not include the content of the calls and text messages or personally identifiable information such as Social Security numbers, dates of […]
Supply chain cybersecurity was examined in a recent report by OX Security. The report discovered that numerous applications had various vulnerabilities throughout the kill-chain stages, making them more susceptible to successful attacks. The newly identified CVE-2024-3094 exploit, targeting XZ Utils in major Linux distributions, demonstrates that attackers still effectively utilize this tactic. The prevalent existence […]
The Federal Trade Commission (FTC) and the Los Angeles District Attorney’s Office are taking action against NGL Labs, LLC and two of its co-founders, Raj Vir and Joao Figueiredo, for a host of law violations related to their anonymous messaging app, including unfairly marketing the service to children and teens. The defendants will pay $5 […]
We hate spam, we obviously will not spam you!
Copyright © TSP 2024. All rights reserved. Designed by Enovate LLC