News

A serious vulnerability has been identified in protobuf.js, a popular JavaScript library used for Google's Protocol Buffers. This flaw allows remote code execution, meaning that attackers can potentially run harmful code on users' systems without permission. A proof-of-concept exploit has already been shared publicly, raising concerns about its impact on software relying on this library. Developers and users are urged to update their implementations to the latest secure versions to safeguard against possible attacks. This situation highlights the importance of regularly updating software to protect against emerging vulnerabilities. Source: [publication name].

Harshil Mathur, CEO of Razorpay, discussed the positive impact of regulations on business growth during his talk at YC Startup School. He pointed out that despite initial hurdles, such as losing bank support, the company has thrived in India's payments sector, which has surpassed $180 billion in transaction volume. Mathur credited the startup's adaptability, particularly its adoption of the Unified Payments Interface (UPI), for its success, especially during the rise of direct-to-consumer businesses amid the pandemic. These insights emphasize the balance between regulatory challenges and the potential for significant growth in a structured market environment. Source: [publication name].

NAKIVO Inc. has launched its Backup & Replication v11.2, which aims to provide fast and reliable data protection solutions. This version introduces improved defenses against ransomware attacks, alongside quicker data replication capabilities. It also supports the latest versions of vSphere 9 and Proxmox VE 9.0, making it compatible with newer virtual environments. These advancements are designed for proactive data management, crucial for businesses concerned about data security. With the increasing threat of cyber attacks, this new release may assist organizations in safeguarding their critical information. Source: [publication name].

In 2024, a significant 68% of cloud breaches were due to compromised service accounts and overlooked API keys, rather than typical threats like phishing or weak passwords. Organizations often have 40 to 50 automated credentials for each employee, including service accounts and API tokens. When projects conclude or employees depart, these unmanaged identities can remain unmonitored, increasing security vulnerabilities. To mitigate these risks, companies should assess and eliminate 'ghost identities' that could potentially expose sensitive enterprise data. Effective management of such credentials is vital for maintaining cloud security. Source: [publication name].

Grinex, a cryptocurrency exchange based in Kyrgyzstan and sanctioned by the U.S. and U.K., has suspended its operations following a significant cyber attack. The exchange reported that hackers stole $13.74 million, attributing the breach to involvement from foreign intelligence agencies. This attack, which was described as extensive, points to potential threats that could affect other platforms in the crypto space. Grinex's shutdown highlights the ongoing risks faced by cryptocurrency exchanges amid increasing scrutiny from regulators and law enforcement. Such incidents serve as a reminder for users to remain cautious and informed about the security of their investments. Source: [publication name].

India's rapid expansion in digital payment adoption is creating new opportunities for fraudsters. As more citizens embrace online transactions through various platforms, reports indicate a corresponding rise in payment-related crimes. Fraudsters are exploiting vulnerabilities in digital payment systems to steal funds and personal information from users. The surge in transactions has outpaced security infrastructure development, leaving many users vulnerable to scams. Cybercriminals are using sophisticated techniques to intercept payments and compromise account credentials. Financial institutions and payment service providers are working to enhance security measures, but awareness among users remains crucial. Experts recommend implementing two-factor authentication and verifying transaction details before confirming payments. Source: India Today.

Cybercriminals are exploiting vulnerabilities in TBK DVRs and outdated TP-Link Wi-Fi routers to deploy a variant of the Mirai botnet. Research from Fortinet FortiGuard Labs and Palo Alto Networks Unit 42 reveals that the attacks leverage CVE-2024-3721, a command injection vulnerability with a medium severity score of 6.3. This vulnerability allows attackers to hijack devices to create a DDoS botnet, increasing the risk for users with unpatched security flaws. Users are advised to secure their devices and ensure they are up to date to prevent such attacks. Source: Fortinet FortiGuard Labs, Palo Alto Networks Unit 42.

C S Venkatakrishnan, the CEO of Barclays, has expressed concerns about the potential impact of Anthropic's AI model, Mythos, on the global banking sector. He highlighted that Mythos poses a significant risk and is just the beginning, as more advanced cyber threats are expected to emerge in the future. This warning emphasizes the increasing role of artificial intelligence in cybercrime, which could pose challenges to financial institutions. As the technology evolves, it might bring about new vulnerabilities that could be exploited by cybercriminals, urging businesses to strengthen their cybersecurity measures. Source: [publication name].

The National Institute of Standards and Technology (NIST) has decided to reduce its support for Common Vulnerabilities and Exposures (CVE) data enrichment. This change could impact cybersecurity teams as they rely on CVE data to manage and respond to vulnerabilities effectively. In response to this gap, various industry groups and coalitions are stepping in to provide additional resources and support. The collaboration among these organizations may help maintain the quality and accessibility of data that cybersecurity professionals need to protect systems and respond to threats. This situation highlights the ongoing need for cooperation in the cybersecurity field to address vulnerabilities and strengthen defenses. Source: [publication name].

The Payouts King ransomware has been found using the QEMU emulator to create hidden virtual machines on infected computers. By establishing a reverse SSH backdoor, the malware can operate undetected, circumventing traditional endpoint security mechanisms. This sophisticated approach poses a significant risk, as organizations may not easily identify the presence of this ransomware, allowing it to execute its malicious activities effectively. Keeping antivirus software updated and enhancing security protocols is crucial for organizations to defend against such advanced threats.

Cybercriminals are increasingly using device code phishing to deceive victims into providing access to their online accounts. This method leverages a legitimate login process that occurs when a service prompts users to verify new device access. By making the scenario appear authentic, attackers manipulate users into sharing sensitive information, leading to unauthorized access. As this tactic gains popularity among phishers, it underscores the importance for individuals to stay vigilant and cautious about sharing verification codes and personal data. It is crucial for users to verify any login prompts directly through the service's official channels. Source: [publication name].

Grinex, a cryptocurrency exchange based in Kyrgyzstan, has suspended its services following a significant hack that resulted in a loss of $13.7 million. The company has suggested that Western intelligence agencies may be responsible for the breach, an assertion which highlights the complexity of security threats faced by cryptocurrency platforms. This incident adds to growing concerns about the security of digital currency exchanges and the risks associated with cryptocurrency trading. Following the breach, Grinex is taking measures to reassess its security frameworks to prevent future incidents. Customers and stakeholders are advised to stay updated and exercise caution in their crypto transactions. Source: [publication name].