The Incident Response Plan – Preparing for a Rainy Day The unfortunate truth is that while companies are investing more in cyber defenses and taking cybersecurity...
Experts Uncover Yet Another Chinese Spying Campaign Aimed at Southeast Asia An ongoing cyber-espionage operation with suspected ties to China has been found targeting a Southeast...
Researchers Warn of Critical Bugs Affecting Realtek Wi-Fi Module A new set of critical vulnerabilities has been disclosed in the Realtek RTL8170C Wi-Fi module that an...
Data Breaches Drive Higher Loan Interest Rates Businesses that suffer a security breach may not see their stock price tumble, but they may pay higher rates...
The Perfect Storm for PAM to Grow In With more staff working remotely, privileged access management (or PAM) has never been more important. Market forecasts, drivers,...
June 02, 2021 Ravie Lakshmanan A North Korean threat actor active since 2012 has been behind a new espionage campaign targeting high-profile government officials associated with...
June 05, 2021Ravie Lakshmanan Popular short-form video-sharing service TikTok quietly revised its privacy policy in the U.S., allowing it to automatically collect biometric information such as...
REvil Ransomware Gang Spill Details on US Attacks Author:Tom SpringJune 4, 2021 9:19 am2 minute read Write a comment The REvil ransomware gang is interviewed on the Telegram channel...
Cyberattack Suspected in Cox TV and Radio Outages Author:Becky BrackenJune 4, 2021 4:21 pm2 minute read Write a comment Cox Media Group tv, radio station streams affected by a...
From knock-off designer products to too-good-to-be-true job offers, here are five common schemes fraudsters use to trick teenagers out of their money and sensitive data Amer...
Websites using Fancy Product Designer are susceptible to remote code execution attacks even if the plugin is deactivated Amer Owaida3 Jun 2021 – 05:53PMShare Cybercriminals have...
An ongoing malvertising campaign tracked as “Tag Barnakle” has been behind the breach of more than 120 ad servers over the past year to sneakily inject...
SonicWall has addressed three critical security vulnerabilities in its hosted and on-premises email security (ES) product that are being actively exploited in the wild. Tracked as...
Author:Tara SealsApril 19, 2021 3:23 pm3:30 minute read Write a comment Share this article: The malware seems like a silly coding lark at first, but further exploration shows it...
Other common and easily hackable password choices include the names of relatives and sports teams, a UK study reveals Amer Owaida15 Apr 2021 – 05:45PMShare As...
US Formally Attributes SolarWinds Attack to Russian Intelligence Agency Treasury Department slaps sanctions on IT security firms that it says supported Russia’s Foreign Intelligence Service carry...
As demand for travel, lodging, and concerts plummeted in 2020, bot traffic moved to more popular activities, such as e-commerce, healthcare, and government sites. Shifts in...
April 15, 2021Ravie Lakshmanan Multiple one-click vulnerabilities have been discovered across a variety of popular software applications, allowing an attacker to potentially execute arbitrary code on...
Security 101: In the wake of an incident, it’s important to cover all your bases — and treat your IR plan as a constantly evolving work...
Author:Elizabeth MontalbanoApril 15, 2021 8:19 am3 minute read Write a comment Threat actors targeted compromised Exchange servers to host malicious Monero cryptominer in an “unusual attack,” Sophos researchers discovered....
Author:Tara SealsApril 15, 2021 12:35 pm2:30 minute read Write a comment The IoT-targeted malware has also added new exploits for initial compromise, for Huawei, Realtek and Dasan GPON devices....
15 APR 2021 0Podcast, Privacy, Vulnerability Get the latest security news in your inbox. Don’t show me this again Previous: FBI hacks into hundreds of infected US servers (and disinfects them)by Paul...
April 15, 2021Posted by Brooke Davis and Eugene Liderman, Android Security and Privacy Team With all of the challenges from this past year, users have become...
April 15, 2021Ravie Lakshmanan The U.S. and U.K. on Thursday formally attributed the supply chain attack of IT infrastructure management company SolarWinds with “high confidence” to...
Officials say Davis Lu placed malicious code on servers in a denial-of-service attack on his employer. A software developer has been arrested and faces charges for...
Author:Becky BrackenApril 15, 2021 4:09 pm3 minute read Write a comment A 100-day race to boost cybersecurity will rely on incentives rather than regulation, the White House said. President...
Ciberseguridad: El Factor Humano. Published on April 5, 2021 “No es el conocimiento, sino el acto de aprendizaje, y no la posesión, sino el acto de...
April 15, 2021Ravie Lakshmanan Cybercriminals are resorting to search engine poisoning techniques to lure business professionals into seemingly legitimate Google sites that install a Remote Access...
A new campaign abuses legitimate website contact forms to send URLs that ultimately deliver the IcedID banking Trojan. Microsoft has warned organizations of a new attack...
Author:Tom SpringApril 14, 2021 8:46 am3 minute read Write a comment Share this article: Microsoft fixes 110 vulnerabilities, with 19 classified as critical and another flaw under active attack....
