The Internet Archive has been facing cybersecurity troubles, including DDoS attacks, data breach, and defacement. Despite efforts to strengthen their defenses, an email sent via Zendesk revealed that some IT assets remain compromised. The threat actor accessed IA’s source code, user database, and Zendesk system through an exposed GitLab configuration file. However, they did not … Read more
Join Cybersec Asia x Thailand International Week 2025 in Bangkok, Thailand on January 22-23, 2025, where top cybersecurity players gather to explore the CLMVT and APAC markets. With over 5,000 visitors, 140 exhibitors, and 100 speakers, attendees can network, collaborate, and stay ahead in cybersecurity. Learn about the latest trends, government initiatives, and growth prospects … Read more
Southeast Asian nations have established a physical ASEAN Regional CERT site in Singapore to enhance cybersecurity collaboration in the region. The site was launched during the 9th ASEAN Ministerial Conference on Cybersecurity, with the aim of boosting information sharing and addressing cyber threats. Singapore will host and fund the regional CERT for up to 10 … Read more
A 25-year-old man from Alabama, Eric Council Jr., has been arrested for hacking into the Securities and Exchange Commission’s (SEC) Twitter account and making fake posts that inflated the price of Bitcoin by $1,000 per unit. Council used SIM-swapping to steal the identity of someone with access to the SEC’s account and published a fake … Read more
Iranian hackers are breaching critical infrastructure organizations to collect credentials and network data for cyberattacks. Government agencies in the U.S., Canada, and Australia believe they are acting as initial access brokers using brute-force techniques. They aim to gain persistent access and move laterally within networks, using methods like password spraying and MFA fatigue. The hackers … Read more
A critical security flaw has been found in the Kubernetes Image Builder that could allow attackers to gain root access. The vulnerability has been fixed in version 0.1.38. Temporary mitigations include disabling the builder account and rebuilding affected images. Other critical vulnerabilities have also been disclosed, including in Microsoft Dataverse, Imagine Cup, and Power Platform, … Read more
In the age of digital technology, cybersecurity has become a top priority for businesses of all sizes. While companies invest heavily in firewalls, encryption, and other technical safeguards to protect their sensitive data, many overlook one of the biggest threats to their cybersecurity: their own employees. The Insider Threat, or the risk posed by employees … Read more
The shift towards remote work has accelerated in recent years, with the global pandemic being a major driver in this transition. While remote work offers many benefits such as increased flexibility and work-life balance, it also presents new challenges when it comes to cybersecurity. As employees access company networks from their homes or other remote … Read more
In today’s digital age, cybersecurity is more important than ever. With the increasing number of cyber threats and attacks, organizations must prioritize creating a strong cybersecurity policy to protect their sensitive data and information. A cybersecurity policy is a set of guidelines and protocols that outline the steps your organization will take to prevent, detect, … Read more
Artificial Intelligence (AI) has revolutionized many industries, and one area where its impact is particularly evident is in cybersecurity. With the increasing frequency and sophistication of cyber attacks, organizations are turning to AI to help bolster their defenses and stay one step ahead of hackers. AI has the ability to quickly analyze vast amounts of … Read more