Sign in Subscribe

Edward Crowder

Editor in Chief and founder of CyberRisks.ai, previously a threat intelligence researcher at a top global MDR, specializes in global major incident detection and response.

Marko Polo Cybercrime Group Expands Infostealer Campaigns, Targets Cryptocurrency and Gaming Sectors

Marko Polo Cybercrime Group Expands Infostealer Campaigns, Targets Cryptocurrency and Gaming Sectors

Introduction On September 27, 2024, Insikt Group released a comprehensive report detailing the activities of the Marko Polo cybercriminal group. This group, known for its adaptability and sophisticated scams, has expanded its operations, employing various infostealers to target cryptocurrency users, gamers, and software developers globally. The group's tactics

ServiceNow Knowledge Bases Exposing Sensitive Data Across Enterprise Instances

ServiceNow Knowledge Bases Exposing Sensitive Data Across Enterprise Instances

On September 17, 2024, AppOmni released a report exposing data vulnerabilities in ServiceNow’s Knowledge Bases (KBs). The report highlights significant risks related to misconfigured access controls that continue to jeopardize enterprise data security.

Critical Zero-Click macOS Vulnerability Chain Exposes iCloud Photos

Critical Zero-Click macOS Vulnerability Chain Exposes iCloud Photos

On August 8, 2022, security researcher Mikko Kenttälä uncovered a zero-click vulnerability in macOS Calendar, which allowed attackers to manipulate calendar invites to perform arbitrary file write and delete operations within the system. This vulnerability

NIST Publishes New Guidance on Cybersecurity and Privacy Learning Programs

NIST Publishes New Guidance on Cybersecurity and Privacy Learning Programs

On September 12, 2024, the National Institute of Standards and Technology (NIST) released Special Publication (SP) 800-50r1, "Building a Cybersecurity and Privacy Learning Program."

CISA Adds Three Critical Vulnerabilities to Exploited Vulnerabilities Catalog

CISA Adds Three Critical Vulnerabilities to Exploited Vulnerabilities Catalog

On September 13 and 16, 2024, the Cybersecurity and Infrastructure Security Agency (CISA) added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog.

2024 Week 37: Weekly Intelligence Briefing

2024 Week 37: Weekly Intelligence Briefing

This week's cybersecurity briefing highlights a surge in ransomware, growing vulnerabilities in industrial control systems, and sophisticated nation-state cyber campaigns.

New Ransomware Group Lynx Emerges, Targets Multiple Sectors with Dual Extortion

New Ransomware Group Lynx Emerges, Targets Multiple Sectors with Dual Extortion

On July 24, 2024, Rapid7 Labs released a report highlighting the emergence of the Lynx ransomware group. The group, active since July 2024, has already claimed over 20 victims across various sectors, using single and double extortion techniques.