Cussins Enterprises LLC

Technology is a paint brush on the canvas of life. 
What can we paint for you?

Cybersecurity News

Awareness of what is happening is the 1st to a secure system.

Threat Post

Firewall Bug Under Active Attack Triggers CISA Warning

On August 23, 2022Source: Web Security – ThreatpostBy Threatpost
Categories: Vulnerabilities, Web Security

CISA is warning that Palo Alto Networks’ PAN-OS is under active attack and needs to be patched ASAP.Read more

Fake Reservation Links Prey on Weary Travelers

On August 22, 2022Source: Web Security – ThreatpostBy Nate Nelson
Categories: Malware, Web Security

Fake travel reservations are exacting more pain from the travel weary, already dealing with the miseRead more

Google Patches Chrome’s Fifth Zero-Day of the Year

On August 18, 2022Source: Web Security – ThreatpostBy Elizabeth Montalbano
Categories: Vulnerabilities, Web Security, Google Chrome, zero-day vulnerabilities

An insufficient validation input flaw, one of 11 patched in an update this week, could allow for arbRead more

Phishers Swim Around 2FA in Coinbase Account Heists

On August 8, 2022Source: Web Security – ThreatpostBy Elizabeth Montalbano
Categories: Hacks, Web Security

Attackers are spoofing the widely used cryptocurrency exchange to trick users into logging in so theRead more

Open Redirect Flaw Snags Amex, Snapchat User Data

On August 5, 2022Source: Web Security – ThreatpostBy Elizabeth Montalbano
Categories: Hacks, Vulnerabilities, Web Security

Separate phishing campaigns targeting thousands of victims impersonate FedEx and Microsoft, among otRead more

Universities Put Email Users at Cyber Risk

On August 2, 2022Source: Web Security – ThreatpostBy Elizabeth Montalbano
Categories: Vulnerabilities, Web Security

DMARC analysis by Proofpoint shows that institutions in the U.S. have among some of the poorest protRead more

Threat Actors Pivot Around Microsoft’s Macro-Blocking in Office

On July 28, 2022Source: Web Security – ThreatpostBy Elizabeth Montalbano
Categories: Hacks, Malware, Web Security

Cybercriminals turn to container files and other tactics to get around the company’s attempt to thwaRead more

IoT Botnets Fuel DDoS Attacks – Are You Prepared?

On July 26, 2022Source: Web Security – ThreatpostBy Sponsored Content
Categories: Sponsored, Vulnerabilities, Web Security, indusface

The increased proliferation of IoT devices paved the way for the rise of IoT botnets that amplifiesRead more

Magecart Serves Up Card Skimmers on Restaurant-Ordering Systems

On July 20, 2022Source: Web Security – ThreatpostBy Elizabeth Montalbano
Categories: Hacks, Malware, Web Security

300 restaurants and at least 50,000 payment cards compromised by two separate campaigns against MenuRead more

Authentication Risks Discovered in Okta Platform

On July 19, 2022Source: Web Security – ThreatpostBy Nate Nelson
Categories: Privacy, Web Security

Four newly discovered attack paths could lead to PII exposure, account takeover, even organizationalRead more

Beeping Computer

https://www.bleepingcomputer.com/feed/ is invalid XML, likely due to invalid characters. XML error: Mismatched tag at line 12, column 8

Motherboard

Delivery Drivers Share What It’s Like Delivering in Hazardous Wildfire Smoke

On June 7, 2023Source: VICE US - MotherboardBy Jules Roscoe
Categories: wildfire smoke, NYC, air quality, pollution, delivery driver, ups, Delivery, package

Drivers are delivering through Canadian wildfire smoke with coughing fits, low visibility, and no prRead more

The Defense Department Now Has GPT-4 Thanks to Microsoft

On June 7, 2023Source: VICE US - MotherboardBy Chloe Xiang
Categories: Tech, government, microsoft, OpenAI, gpt

The Department of Defense, the Department of Energy, and NASA are among some of Azure Government’s cRead more

Tenants Formed a Union to Fight the 'Google of Student Housing' Trying to Evict Them

On June 7, 2023Source: VICE US - MotherboardBy Roshan Abraham
Categories: Tech news, Landlord, HOUSING CRISIS, eviction, tenant union

Members of the Core Spaces Tenant Union aren't going to let their landlord evict nearly 1,000 peopleRead more

People Are Pirating GPT-4 By Scraping Exposed API Keys

On June 7, 2023Source: VICE US - MotherboardBy Joseph Cox
Categories: CYBER, OpenAI, ChatGPT, scraping, Hacking, AI, gpt-4, Github, replit

Why pay for $150,000 worth of OpenAI access when you could just steal it?Read more

Scientists Discover Ancient 'Lost World' That Rewrites History of Life on Earth

On June 7, 2023Source: VICE US - MotherboardBy Becky Ferreira
Categories: tech-science, History, Ancient, Life, Science, Abstract

The remains of a "lost world" of ancient organisms that are likely ancestors to all plants and animaRead more

Data Breeches

https://www.databreaches.net/feed/ is invalid XML, likely due to invalid characters. XML error: Mismatched tag at line 12, column 8

Cyberscoop

US cyber officials offer technical details associated with CL0P ransomware attacks

On June 7, 2023Source: CyberScoopBy AJ Vicens
Categories: Threats, Uncategorized, Clop, extortion, MOVEit Transfer, ransomware

CISA and the FBI offered details to help organizations protect themselves against the group that hasRead more

Security professional’s tweet forces big change to Google email authentication

On June 7, 2023Source: CyberScoopBy AJ Vicens
Categories: Research, email security, Microsoft, Google

Gmail is tightening its implementation of an email security protocol after a researcher discovered aRead more

White House needs to urgently fix nation’s approach to protecting critical infrastructure, group says

On June 7, 2023Source: CyberScoopBy Christian Vasquez
Categories: Government, Policy, critical infrastructure, Department of Energy (DOE), Department of Homeland Security (DHS), Cybersecurity and Infrastructure Security Agency (CISA), Cyberspace Solarium Commission, Environmental Protection Agency (EPA)

Attacks against critical infrastructure are reaching new heights, but strategy documents outlining fRead more

First in space: SpaceX and NASA launch satellite that hackers will attempt to infiltrate during DEF CON

On June 5, 2023Source: CyberScoopBy Christian Vasquez
Categories: Research, NASA, aerospace, space technology, space, SpaceX

For the first time ever, researchers will be able to test the security of a satellite on-orbit at thRead more

The White House says Section 702 is critical for cybersecurity, yet public evidence is sparse

On June 2, 2023Source: CyberScoopBy Tonya Riley
Categories: Privacy, Government, nsa, FBI, ransomware, Section 702, Russia, China

An FBI official told CyberScoop that a "plurality" of Section 702 searches pertain to investigationsRead more

How university cybersecurity clinics can help cities fight ransomware

On June 2, 2023Source: CyberScoopBy eliasgroll
Categories: Commentary, universities, ransomware, hacking, cybercrime

Cybersecurity faculty and students can be a valuable resource to help local governments and businessRead more

The 2024 race promises to be ‘very, very active’ in terms of foreign and domestic meddling, says former CISA chief

On June 1, 2023Source: CyberScoopBy eliasgroll
Categories: Threats, Donald Trump, Russia, China, Trump administration, elections, election security, Department of Homeland Security (DHS)

Chris Krebs said he expects to see Russia, China and Iran — and even domestic groups — attempt to inRead more

Growing hacking threat to satellite systems compels global push to secure outer space

On June 1, 2023Source: CyberScoopBy Christian Vasquez
Categories: Research, space, IEEE, space technology

An international group of experts are working to build the next generation of secure-by-design spaceRead more

Russian government accuses Apple of colluding with NSA in iPhone spy operation

On June 1, 2023Source: CyberScoopBy AJ Vicens
Categories: Geopolitics, Russia, Apple, National Security Agency (NSA), iPhone

A Russian intelligence agency said thousands of iPhones were infected in an operation that shows "coRead more

Iranian dissidents’ claim of presidential hack likely legitimate, experts say

On May 31, 2023Source: CyberScoopBy AJ Vicens
Categories: Geopolitics

The hack and leak operation revealed Monday includes a trove of files related to Iranian President ERead more

Krebs On Security

The Hacker News

Urgent Security Updates: Cisco and VMware Address Critical Vulnerabilities

On June 8, 2023Source: The Hacker NewsBy

VMware has released security updates to fix a trio of flaws in Aria Operations for Networks that couRead more

VMware has released security updates to fix a trio of flaws in Aria Operations for Networks that could result in information disclosure and remote code execution. The most critical of the three vulnerabilities is a command injection vulnerability tracked as CVE-2023-20887 (CVSS score: 9.8) that could allow a malicious actor with network access to achieve remote code execution. Also patched by

Kimsuky Targets Think Tanks and News Media with Social Engineering Attacks

On June 8, 2023Source: The Hacker NewsBy

The North Korean nation-state threat actor known as Kimsuky has been linked to a social engineeringRead more

The North Korean nation-state threat actor known as Kimsuky has been linked to a social engineering campaign targeting experts in North Korean affairs with the goal of stealing Google credentials and delivering reconnaissance malware. "Further, Kimsuky's objective extends to the theft of subscription credentials from NK News," cybersecurity firm SentinelOne said in a report shared with The

Barracuda Urges Immediate Replacement of Hacked ESG Appliances

On June 8, 2023Source: The Hacker NewsBy

Enterprise security company Barracuda is now urging customers who were impacted by a recently discloRead more

Enterprise security company Barracuda is now urging customers who were impacted by a recently disclosed zero-day flaw in its Email Security Gateway (ESG) appliances to immediately replace them. "Impacted ESG appliances must be immediately replaced regardless of patch version level," the company said in an update, adding its "remediation recommendation at this time is full replacement of the

Microsoft to Pay $20 Million Penalty for Illegally Collecting Kids' Data on Xbox

On June 7, 2023Source: The Hacker NewsBy

Microsoft has agreed to pay a penalty of $20 million to settle U.S. Federal Trade Commission (FTC) cRead more

Microsoft has agreed to pay a penalty of $20 million to settle U.S. Federal Trade Commission (FTC) charges that the company illegally collected and retained the data of children who signed up to use its Xbox video game console without their parents' knowledge or consent. "Our proposed order makes it easier for parents to protect their children's privacy on Xbox, and limits what information

Winning the Mind Game: The Role of the Ransomware Negotiator

On June 7, 2023Source: The Hacker NewsBy

Get exclusive insights from a real ransomware negotiator who shares authentic stories from network hRead more

Get exclusive insights from a real ransomware negotiator who shares authentic stories from network hostage situations and how he managed them. The Ransomware Industry Ransomware is an industry. As such, it has its own business logic: organizations pay money, in crypto-currency, in order to regain control over their systems and data. This industry's landscape is made up of approximately 10-20

New PowerDrop Malware Targeting U.S. Aerospace Industry

On June 7, 2023Source: The Hacker NewsBy

An unknown threat actor has been observed targeting the U.S. aerospace industry with a new PowerShelRead more

An unknown threat actor has been observed targeting the U.S. aerospace industry with a new PowerShell-based malware called PowerDrop. "PowerDrop uses advanced techniques to evade detection such as deception, encoding, and encryption," according to Adlumin, which found the malware implanted in an unnamed domestic aerospace defense contractor in May 2023. "The name is derived from the tool,

New Malware Campaign Leveraging Satacom Downloader to Steal Cryptocurrency

On June 6, 2023Source: The Hacker NewsBy

A recent malware campaign has been found to leverage Satacom downloader as a conduit to deploy stealRead more

A recent malware campaign has been found to leverage Satacom downloader as a conduit to deploy stealthy malware capable of siphoning cryptocurrency using a rogue extension for Chromium-based browsers. "The main purpose of the malware that is dropped by the Satacom downloader is to steal BTC from the victim's account by performing web injections into targeted cryptocurrency websites," Kaspersky

Over 60K Adware Apps Posing as Cracked Versions of Popular Apps Target Android Devices

On June 6, 2023Source: The Hacker NewsBy

Thousands of adware apps for Android have been found to masquerade as cracks or modded versions of pRead more

Thousands of adware apps for Android have been found to masquerade as cracks or modded versions of popular applications to serve unwanted ads to users as part of a campaign ongoing since October 2022. "The campaign is designed to aggressively push adware to Android devices with the purpose to drive revenue," Bitdefender said in a technical report shared with The Hacker News. "However, the threat

5 Reasons Why IT Security Tools Don't Work For OT

On June 6, 2023Source: The Hacker NewsBy

Attacks on critical infrastructure and other OT systems are on the rise as digital transformation anRead more

Attacks on critical infrastructure and other OT systems are on the rise as digital transformation and OT/IT convergence continue to accelerate. Water treatment facilities, energy providers, factories, and chemical plants — the infrastructure that undergirds our daily lives could all be at risk. Disrupting or manipulating OT systems stands to pose real physical harm to citizens, environments, and

Zero-Day Alert: Google Issues Patch for New Chrome Vulnerability - Update Now!

On June 6, 2023Source: The Hacker NewsBy

Google on Monday released security updates to patch a high-severity flaw in its Chrome web browser tRead more

Google on Monday released security updates to patch a high-severity flaw in its Chrome web browser that it said is being actively exploited in the wild. Tracked as CVE-2023-3079, the vulnerability has been described as a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google's Threat Analysis Group (TAG) has been credited with reporting the issue on June 1, 2023. "Type

How Can We Help?

1 + 2 =

Share This