Malvertising group infiltrates ad server infrastructure | Google Project Zero gives more time to patch bugs | Lazarus Group orchestrates new scheme with PNG files
The Tag Barnakle malvertising group has targeted ad-serving systems on a massive scale, exposing at least tens of millions of Android and iPhone users to malicious ads, reports security company Confiant. Tag Barnakle has already infiltrated more than 120 Revive-based servers, avoiding detection via cloaking and client-side fingerprinting.
Protect your Microsoft 365 with AI A heightened reliance on office applications and cloud services has changed the cyber-threat landscape. Self-learning AI defends these environments with real-time threat detection and autonomous response. Discover more.
Developers now have an additional 30 days before Google's Project Zero publicizes software flaw details. This update adds more time for users to apply patches before vulnerabilities are disclosed, writes Tim Willis from Project Zero.
The Lazarus Group's latest malware-delivery technique involves compressing malicious objects into PNG files to avoid detection, Malwarebytes researchers have discovered. On runtime, the PNG is converted into a bitmap, decompressing the hidden malicious object.
Companies who were unprepared for the COVID-19 lockdown last year are starting to increase their employee cybersecurity training efforts while acknowledging many remote workers still do not take security seriously enough, reports Prey, an anti-theft software firm. Prey says its survey finds most businesses were overwhelmed by the pandemic, but 88% have worked to boost their training programs.
CIAT — Get Skilled, Get Certified, Get Hired. Rethink your approach to education. Tackle both your short-term and long-term goals together. Build your technical skills, get certified, and start your new career quickly, all while working towards your cybersecurity Bachelor's degree. Explore program >>
UserZoom, a startup that provides user experience insights and monitoring for apps and websites, raised $100 million in its most recent funding round. "Today's users and customers demand more, and leaders need the data and insights that UserZoom provides to allow them to quickly make confident, customer- and data-driven decisions to stay in front of the competition," noted Alfonso de la Nuez, UserZoom co-founder and co-CEO.
The Society of Women Engineers at the University of Washington is hosting a hackathon exclusively for female-identifying and nonbinary students. The virtual event is designed to close the gender gap in the predominantly male industry.
Jessica Rosenworcel, acting chair of the Federal Communications Commission, said the agency plans to re-establish its cybersecurity advisory council, which will focus on protecting 5G networks, by June 30. She cited a recent spate of attacks on the global supply chain as evidence for the need to arrive at a "strategic approach" regarding security.
Getting an IT certification is an investment in your career. Whether you're just starting out or preparing for your next move, a CompTIA certification can get your foot in the door for an interview and prove to employers that you have the hands-on skills they're looking for. Even better -- you can save money while still investing in your career. The CompTIA Blog shares seven ways to get a voucher discount on your next CompTIA exam.
Students at a southern California school who are pursuing careers in information technology are building their skills across three parallel tracks -- classroom instruction, professional certifications and on-the-job experience. Visit the CompTIA Newsroom to learn more about this innovative program at California Institute of Arts & Technology.
