What exactly is the FBI’s Operation Eagle Sweep? Combating financially devastating cybercrime
The Federal Bureau of Investigation (FBI) has deployed multiple operations against business email compromise (BEC) schemes, employed by threat actors...
Month: March 2022
How Meta and Apple were hacked via social engineering pretexting technique
A hacking group managed to obtain confidential information from some users after contacting the Apple and Meta support areas posing...
CVE-2022-22965: Spring framework 0-day remote code execution vulnerability
Spring officially released a security bulletin, disclosing that there is a remote code execution (RCE) (CVE-2022-22965) in a specific version......
Open Source Device Management—Can It Improve Your Vulnerability Management?
Last Updated on March 31, 2022 Many companies already have proprietary device management solutions to...
Podcast: iPhone 14 rumors and Apple’s hardware subscription service
According to Bloomberg, Apple is working on a hardware subscription service that would allow users to lease its devices like...
Apple Business Essentials exits beta, adds AppleCare
There's big news today for 31 million small and medium-sized businesses (SMBs) in the US who are among the growing...
Apple issues emergency patches to fix actively exploited zero-days
Apple released emergency patches to address two zero-day vulnerabilities actively exploited to compromise iPhones, iPads, and Macs. Apple has released...
Spring4Shell: What you need to know
The recent Spring4Shell vulnerability is serious, but is it the next Log4Shell? This post summarizes what we know so far,...
Attackers compromise 94% of critical assets within four steps of initial breach
New research from XM Cyber analyzing the methods, attack paths, and impacts of cyberattacks has discovered that attackers can compromise...
FBI adds LAPSUS$ data extortion gang to its “Most Wanted” list
The FBI is calling on members of the public to help it uncover members of an increasingly-notorious cybercrime gang.
