mwCERT was established pursuant to Section 6 of the Electronic Transaction and Cyber Security act, 2016 of the Laws of Malawi to take charge of Critical information infrastructure protection actions and serve as a base for national coordination to respond to cyber security threats
SECURITY FEEDS
- Open Redirect Flaw Snags Amex, Snapchat User Dataon August 5, 2022
Separate phishing campaigns targeting thousands of victims impersonate FedEx and Microsoft, among others, to trick victims.
- VMWare Urges Users to Patch Critical Authentication Bypass Bugon August 3, 2022
Vulnerability—for which a proof-of-concept is forthcoming—is one of a string of flaws the company fixed that could lead to an attack chain.
- Universities Put Email Users at Cyber Riskon August 2, 2022
DMARC analysis by Proofpoint shows that institutions in the U.S. have among some of the poorest protections to prevent domain spoofing and lack protections to block fraudulent emails.
- Securing Your Move to the Hybrid Cloudon August 1, 2022
Infosec expert Rani Osnat lays out security challenges and offers hope for organizations migrating their IT stack to the private and public cloud environments.
- Malicious Npm Packages Tapped Again to Target Discord Userson July 29, 2022
Recent LofyLife campaign steals tokens and infects client files to monitor various user actions, such as log-ins, password changes and payment methods.
- Threat Actors Pivot Around Microsoft’s Macro-Blocking in Officeon July 28, 2022
Cybercriminals turn to container files and other tactics to get around the company’s attempt to thwart a popular way to deliver malicious phishing payloads.
SECURITY HIGHLIGHTS
COMMON VULNERABILITIES and EXPOSURE
.