Chinese smartphone brands Huawei, Honor, and Vivo falsely reported Google as malware, due to the Huawei Optimizer app, causing uncertainty among users. Meanwhile, the Lazarus hacking group revealed persistent attempts to breach software vendor defenses using the SIGNBT malware. Furthermore, critical software flaws identified in BIG-IP, NGINX Kubernetes Ingress controller and Microsoft’s MSIX app packages were patched. AWS was targeted by the EleKtra-Leak campaign while Apple hardware was exposed by the iLeakage exploit. Lastly, HTTP/2 flaw skyrocketed DDoS attacks, while threat actors Tortoiseshell and Octo Tempest escalate cyber threats.
AusCERT launches new Tabletop Exercise Service for cyber incident readiness – CRN Australia
AusCERT has introduced a Tabletop Exercise Service to help organizations prepare for cyber incidents. The service helps identify gaps in incident response plans and improve