TECHZONE™
رفتن به کانال در Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
نمایش بیشتر595
مشترکین
اطلاعاتی وجود ندارد24 ساعت
-17 روز
-1030 روز
آرشیو پست ها
595
CISO's Expert Guide To CTEM And Why It Matters
https://thehackernews.com/2025/02/cisos-expert-guide-to-ctem-and-why-it.html
Cyber threats evolve—has your defense strategy kept up? A new free guide available here explains why Continuous Threat Exposure Management (CTEM) is the smart approach for proactive cybersecurity.
This concise report makes a clear business case for why CTEM’s comprehensive approach is the best overall strategy for shoring up a business’s cyber defenses in the face of evolving attacks. It also
595
Richard Marko: Rethinking cybersecurity in the age of global challenges | Starmus highlights
https://www.welivesecurity.com/en/we-live-science/richard-marko-rethinking-cybersecurity-age-global-challenges-starmus-highlights/
ESET's CEO unpacks the complexities of cybersecurity in today’s hyper-connected world and highlights the power of innovation in stopping digital threats in their tracks
595
Month in security with Tony Anscombe – November 2024 edition
https://www.welivesecurity.com/en/videos/month-security-tony-anscombe-november-2024-edition/
Zero days under attack, a new advisory from 'Five Eyes', thousands of ICS units left exposed, and mandatory MFA for all – it's a wrap on another month filled with impactful cybersecurity news
595
Scams to look out for this holiday season
https://www.welivesecurity.com/en/scams/scams-look-out-for-holiday-season/
‘Tis the season to be wary – be on your guard and don’t let fraud ruin your shopping spree
595
Bootkitty marks a new chapter in the evolution of UEFI threats
https://www.welivesecurity.com/en/videos/bootkitty-new-chapter-uefi-threats/
ESET researchers make a discovery that signals a shift on the UEFI threat landscape and underscores the need for vigilance against future threats
595
Bootkitty: Analyzing the first UEFI bootkit for Linux
https://www.welivesecurity.com/en/eset-research/bootkitty-analyzing-first-uefi-bootkit-linux/
ESET researchers analyze the first UEFI bootkit designed for Linux systems
595
Firefox and Windows zero days chained to deliver the RomCom backdoor
https://www.welivesecurity.com/en/videos/zero-click-exploit-abusing-firefox-windows-zero-days/
The backdoor can execute commands and lets attackers download additional modules onto the victim’s machine, ESET research finds
595
RomCom exploits Firefox and Windows zero days in the wild
https://www.welivesecurity.com/en/eset-research/romcom-exploits-firefox-and-windows-zero-days-in-the-wild/
ESET Research details the analysis of a previously unknown vulnerability in Mozilla products exploited in the wild and another previously unknown Microsoft Windows vulnerability, combined in a zero-click exploit
595
Unveiling WolfsBane: Gelsemium’s Linux counterpart to Gelsevirine
https://www.welivesecurity.com/en/eset-research/unveiling-wolfsbane-gelsemiums-linux-counterpart-to-gelsevirine/
ESET researchers analyzed previously unknown Linux backdoors that are connected to known Windows malware used by the China-aligned Gelsemium group, and to Project Wood
595
Kathryn Thornton: Correcting Hubble's vision | Starmus highlights
https://www.welivesecurity.com/en/we-live-science/kathryn-thornton-correcting-hubbles-vision-starmus-highlights/
The veteran of four space missions discusses challenges faced by the Hubble Space Telescope and how human ingenuity and teamwork made Hubble’s success possible
595
My information was stolen. Now what?
https://www.welivesecurity.com/en/cybersecurity/my-information-was-stolen-now-what/
The slow and painful recovery process
595
What is “Scam Likely”? Putting the phone down on unwanted calls
https://www.welivesecurity.com/en/scams/what-is-scam-likely-putting-phone-down-unwanted-calls/
Tired of dodging all those 'Scam Likely' calls? Here's what’s behind the label and how to stay one step ahead of phone scammers.
595
⚡ THN Weekly Recap: Google Secrets Stolen, Windows Hack, New Crypto Scams and More
https://thehackernews.com/2025/02/thn-weekly-recap-google-secrets-stolen.html
Welcome to this week’s Cybersecurity News Recap. Discover how cyber attackers are using clever tricks like fake codes and sneaky emails to gain access to sensitive data. We cover everything from device code phishing to cloud exploits, breaking down the technical details into simple, easy-to-follow insights.
⚡ Threat of the Week
Russian Threat Actors Leverage Device Code Phishing to Hack
595
New Golang-Based Backdoor Uses Telegram Bot API for Evasive C2 Operations
https://thehackernews.com/2025/02/new-golang-based-backdoor-uses-telegram.html
Cybersecurity researchers have shed light on a new Golang-based backdoor that uses Telegram as a mechanism for command-and-control (C2) communications.
Netskope Threat Labs, which detailed the functions of the malware, described it as possibly of Russian origin.
"The malware is compiled in Golang and once executed it acts like a backdoor," security researcher Leandro Fróes said in an analysis
595
Android's New Feature Blocks Fraudsters from Sideloading Apps During Calls
https://thehackernews.com/2025/02/androids-new-feature-blocks-fraudsters.html
Google is working on a new security feature for Android that blocks device owners from changing sensitive settings when a phone call is in progress.
Specifically, the in-call anti-scammer protections include preventing users from turning on settings to install apps from unknown sources and granting accessibility access. The development was first reported by Android Authority.
Users who attempt
595
New “whoAMI” Attack Exploits AWS AMI Name Confusion for Remote Code Execution
https://thehackernews.com/2025/02/new-whoami-attack-exploits-aws-ami-name.html
Cybersecurity researchers have disclosed a new type of name confusion attack called whoAMI that allows anyone who publishes an Amazon Machine Image (AMI) with a specific name to gain code execution within the Amazon Web Services (AWS) account.
"If executed at scale, this attack could be used to gain access to thousands of accounts," Datadog Security Labs researcher Seth Art said in a report
595
Lazarus Group Deploys Marstech1 JavaScript Implant in Targeted Developer Attacks
https://thehackernews.com/2025/02/lazarus-group-deploys-marstech1.html
The North Korean threat actor known as the Lazarus Group has been linked to a previously undocumented JavaScript implant named Marstech1 as part of limited targeted attacks against developers.
The active operation has been dubbed Marstech Mayhem by SecurityScorecard, with the malware delivered by means of an open-source repository hosted on GitHub that's associated with a profile named "
595
This Security Firm's 'Bias' Is Also Its Superpower
https://www.darkreading.com/cyber-risk/diverse-backgrounds-security-superpower
595
Open Source AI Models: Perfect Storm for Malicious Code, Vulnerabilities
https://www.darkreading.com/cyber-risk/open-source-ai-models-pose-risks-of-malicious-code-vulnerabilities
595
How Banks Can Adapt to the Rising Threat of Financial Crime
https://www.darkreading.com/cyber-risk/how-banks-adapt-rising-threat-financial-crime
اکنون در دسترس! پژوهش تلگرام ۲۰۲۵ — مهمترین بینشهای سال 
