RSK Cyber Security

Think cybercrime won’t affect you? Think again. Cybercrime is projected to cost the world $10.5 trillion annually by 2025. This staggering number is a wake-up call for organizations to prioritise cybersecurity and defend against growing digital threats. #CyberCrime #CyberAware

Cybersecurity 101: 3 Types of Authentication From something you know (passwords) to something you have (tokens) and something you are (biometrics), authentication keeps your data secure. rsk-cyber-security.com/security/what-… #CyberSecurity #DataProtection #Authentication

GitVenom malware steals $456K in Bitcoin, targeting gamers and crypto investors through fake GitHub projects. The campaign, spanning hundreds of repositories, spreads malware via Instagram automation tools, Telegram bots, and Valorant cracks. #Gaming #ThreatIntelligence

Google Cloud introduced quantum-safe digital signatures in its Key Management Service to protect encryption systems from future quantum threats. Currently, this feature aligns with NIST’s post-quantum cryptography standards finalised in Aug'24. #CloudSecurity #Encryption

India's cybersecurity watchdog reported 2 vulnerabilities in the Google Chrome browser. These vulnerabilities can allow attackers to compromise user data and devices, highlighting importance of updating to the latest version of the browser. #Vulnerabilty #DataPrivacy

Belarus-linked Ghostwriter is using obfuscated Excel macros to deploy malware, targeting Belarusian activists and Ukrainian military and government entities. Active since 2016, it aligns with Russian interests and spreads anti-NATO narratives. #Malware #CyberEspionage

Cybersecurity researchers warn of an upgraded LightSpy spyware, now capable of infiltrating Windows, macOS, Linux, and mobile devices. The latest version enhances data collection, targeting social media, Wi-Fi, calls, messages, location. #MobileSecurity #Spyware

North Korea pulled off its largest crypto heist yet, stealing around $1.4 billion in Ethereum (about 400,000 coins) from the ByBit exchange. This massive theft underscores the growing threat of state-sponsored cybercrime in the crypto space. #Cyrpto #CyberCrime

CISA has added 2 actively exploited security flaws in Adobe ColdFusion and Oracle Agile PLM to its KEV catalog. These vulnerabilities pose significant risks, highlighting the need for immediate security patches and mitigation measures. #NetworkSecurity #Vulnerability

Massive Data Leak Alert! Over 1.6M clinical research records containing sensitive personal and medical data were exposed in a 2TB of leaked file, risking patient privacy. With 2TB of leaked files. This highlights the urgent need for better security in healthcare! #DataBreach

Bybit confirmed a $1.5 billion crypto heist after a sophisticated attack compromised one of its Ethereum cold wallets. The attack manipulated a transaction, masking the signing interface to alter the smart contract logic. #FinancialCrime #Cryptocurrency

Apple is removing its Advanced Data Protection (ADP) feature for iCloud in UK after govt demands for backdoor access to encrypted user data. ADP ensures only users' trusted devices can access encryption keys for iCloud-stored data. #DataProtection #Encryption

OpenAI banned accounts misusing ChatGPT to develop an AI-powered surveillance tool, allegedly originating from China. The tool, powered by Meta's Llama model, was used to analyse documents and track anti-China protests in the West for Chinese authorities. #OpenAI #Meta

By March 31, 2025, DMARC implementation will be mandatory for businesses handling cardholder data or processing payments. This move aims to prevent email fraud, domain spoofing, and phishing in the financial sector. #EmailSecurity #FraudPrevention

China-linked attackers exploited a Check Point flaw to deploy PlugX, ShadowPad, and NailaoLocker ransomware, targeting European healthcare. Dubbed Green Nailao, the campaign used a now-patched vulnerability in Check Point products. #Ransomware #Vulnerability

North Korean hackers target developers in Job scam to deploy malware. Attack chains are characterised by use of fake recruiter profiles and share trojanized codebases hosted on GitHub, Bitbucket that deploy backdoors under pretext of a job interview process. #Malware

UAE possesses advanced cybersecurity system capable of predicting and countering most electronic attacks before they occur. The average daily cyberattacks on key sectors exceeds 50,000 all of which are proactively deterred and mitigated. #cybersecurity #NationalSecurity

Did you know? DDoS attacks surged by 56% year-over-year, a 17% increase since H1 2024! Reports show a sharp rise in both volume and intensity from Q3-Q4 2023 to Q3-Q4 2024. It’s time to rethink your security strategy! #CyberSecurity #DDoS #RSKCybersecurity

South Korea suspended new downloads of Chinese AI chatbot DeepSeek over privacy issues. The investigation revealed problems with communication functions and personal data handling by third-party providers. #ArtificialInteligence #DataProtection

Microsoft plans to invest an additional $700 mn to boost Poland's cybersecurity in cooperation with the country's armed forces. The investment would be for a 2nd phase of the already completed $1 bn Polish data centre project announced in 2020. #cybersecurity #Microsoft