US Pledges to Help Ukraine Keep the Internet and Lights On
The US State Department today announced a coordinated effort between several government agencies to provide Ukraine with the cybersecurity technical expertise, resources, and threat intelligence necessary to protect the electrical...
Novel Nerbian RAT Lurks Behind Faked COVID Safety Emails
Phishing emails purporting to contain COVID-19 safety information from the World Health Organization (WHO) are instead phishing lures intended to spread a novel remote-access Trojan (RAT) called Nerbian.
A team...
Cyber-Espionage Attack Drops Post-Exploit Malware Framework on Microsoft Exchange Servers
A likely China-based, state-sponsored threat actor has been deploying a sophisticated post-exploitation malware framework on Microsoft Exchange servers at organizations in the technology, academic, and government sectors across multiple...
Microsoft Simplifies Security Patching Process for Exchange Server
In a move to ease the process of applying security updates to Exchange Server and help ensure the servers get patched, Microsoft has kicked off new security update packaging for the software.
Previously,...
5 Years That Altered the Ransomware Landscape
The ransomware landscape has evolved considerably since WannaCry dramatically drove home the potential severity of the threat five years ago on May 12. What has changed somewhat less over...
Transforming SQL Queries Bypasses WAF Security
BLACK HAT ASIA 2022 — A team of university researchers used basic machine learning to identify patterns that common Web application firewalls (WAFs) fail to detect as malicious, but...
Black Hat Asia: Democracy’s Survival Depends on Taming Technology
BLACK HAT ASIA 2022 – Technology is an existential threat to global democracy — requiring a shift to a transnationally regulated, culturally sensitive tech ecosystem that provides space for democracies to flourish.
That's the...
US Agrees to International Electronic Cybercrime Evidence Swap
The US Department of Justice has signed on to the Budapest Convention international treaty, which allows its 66 member countries to expedite the sharing of electronic evidence to more...
How to Turn a Coke Can Into an Eavesdropping Device
BLACK HAT ASIA — A soda can, a smartphone stand, or any shiny, lightweight desk decoration could pose a threat of eavesdropping, even in a soundproof room, if an attacker...
US Cyber Director: Forging a Cybersecurity Social Contract Is Not Optional
BLACK HAT ASIA – The future of cybersecurity public-private partnerships (PPP) will be about sharing efforts and pooling resources to provide a common defense, explained US national cyber director...
