FISA

  A threat actor announced on a cybercrime forum that they sold the source code and a cracked version of the Zeppelin ransomware builder for just $500. The post was spotted by threat intelligence company  KELA  and while the legitimacy of the offer has not been validated, the screenshots from the seller indicate that the package is real. The seller of the Zeppelin source code and builder uses the handle 'RET' and clarified that they did not author the malware but simply managed to crack a builder version for it. RET added that they had acquired the package without a license. "Where I got the builder without a license is my business. [...] I just cracked the builder," the seller wrote in a reply to other members of the hacker forum. The cybercriminal noted that they intended to sell the product to a single buyer and would freeze the sale until completing the transaction. Screenshots of the builder   (KELA)​ In November 2022, following the discontinuation of ...

  The Government of Serbia said that from January next year, it will allow the movement of cars with RKS license plates of the Republic of Kosovo through its territory. Currently, citizens of Kosovo who move through the territory of Serbia with Kosovo license plates, cover the part where RKS is written with adhesive paper. The decision was announced by the head of the office for Kosovo in the government of Serbia, Petar Petkovic, in a press conference in Belgrade, during which he said that with this Serbia is respecting the agreement reached in 2011 in Brussels on free movement and facilitation of movement. of cars for Kosovo Serbs. "The decision was actually our obligation from the agreement on freedom of movement from 2011, signed by Borko Stefanovic, which refers to RKS license plates and Kosovo identity cards, the acceptance of Kosovo drivers' licenses and is the result of the agreements at that time and the attitude of that government towards the Serbs and the dialogue...

  A new analysis of the sophisticated commercial spyware called Predator has revealed that its ability to persist between reboots is offered as an "add-on feature" and that it depends on the licensing options opted by a customer. "In 2021, Predator spyware couldn't survive a reboot on the infected Android system (it had it on iOS)," Cisco Talos researchers Mike Gentile, Asheer Malhotra, and Vitor Ventura  said  in a report shared with The Hacker News. "However, by April 2022, that capability was being offered to their customers." Predator is the product of a consortium called the Intellexa Alliance, which includes Cytrox (subsequently acquired by WiSpear), Nexa Technologies, and Senpai Technologies. Both Cytrox and Intellexa were  added  to the Entity List by the U.S. in July 2023 for "trafficking in cyber exploits used to gain access to information systems." The latest findings come more than six months after the cybersecurity vendor detaile...

  Organizations prefer a combination of AI and human analysts to monitor their digital supply chain The number of cyber breaches targeting organizations’  supply chains  continues to rise, with an average 4.16 breaches reported to be negatively impacting operations this year — a 26% increase from the mean number of 3.29 breaches in 2022, according to BlueVoyant. “Attacks targeting external vendors and partners are a constant threat,” said  Joel Molinoff , BlueVoyant’s global head of Supply Chain Defense. “Our data suggests that the scope of the problem is increasing, with more enterprise vendors and suppliers falling prey to cyber attacks. Enterprises recognize the issue but the standard approach to third-party risk management is proving inadequate. Companies now need to focus energies on methods that proactively illuminate and reduce supply chain risk.” AI’s impact on cyber defense strategies Every industry sector, except financial services, showed an increase in th...

  EU countries are implementing the updated Network and Information Security Directive (NIS2), in force since January, with varying degrees of progress. To provide an overview of the state of play, Euractiv interviewed Nicolas Sonder and Mailin von Knobelsdorff, PwC experts on cybersecurity. Since state-sponsored cyber warfare has become increasingly prevalent and cyberattacks lead to financial losses, data breaches, reputational damage, and industrial espionage, more cyber resilience is needed. The NIS2 directive introduces additional security requirements for ICT products used by organisations that are considered essential or important to the functioning of society. Member states have until October 2024 to modernise the existing cybersecurity frameworks. To determine which products and services fall within the directive’s scope, companies must, among other things, check which laws apply in the EU member states and register with the local authorities. Best performers According to ...

  The European Union Agency for Cybersecurity (ENISA) has signed a Working Arrangement with the Cybersecurity and Infrastructure Security Agency (CISA) of the US, in the areas of capacity-building, best practices exchange and boosting situational awareness. Geopolitics have shaped the cyber threat landscape, bringing like-minded partners closer together in the wake of common cyber challenges and advances in digital technologies. Today at the EU-US Cyber Dialogue, ENISA and CISA announced the signing of their Working Arrangement as an important milestone in the overall cooperation between the United States and the European Union in the field of cybersecurity, also following the Joint Statement of European Commissioner Thierry Breton and U.S. Secretary for Homeland Security Alejandro Mayorkas of January 2023. ENISA’s International Strategy directs the Agency to be selective in engaging with international partners and to limit its overall approach in international cooperation to those...

  No, your eyes are not deceiving you. The  Tesla Cybertruck  is finally here. The production-spec  electric pickup  was revealed at an event at Tesla's Gigafactory in Austin, Texas, that was livestreamed on X, formerly known as Twitter. CEO Elon Musk started off the event by proclaiming, "You have a car here that experts said would never be made . . . I think it's our best product. Finally, the future will look like the future." He also referred to it as "a better truck than a truck, and a better sports car than a sports car in the same package." VIEW PHOTOS TESLA The Cybertruck has retained its stainless steel body for production, and Musk claims that this "exoskeleton" gives the Cybertruck more torsional stiffness than a McLaren P1. Musk also touted the "shatter-resistant glass" that had failed spectacularly at the original launch event in 2019 when Tesla designer Franz von Holzhausen threw a metal ball at the windows. This time around...