Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Investors pour $65 million into an early-stage Israeli startup building technology to help businesses manage secrets like credentials, certificates and keys. [Read More]
Bishop Fox has raised more than $154 million in lifetime funding to build and market technology for continuous attack surface management. [Read More]
China-linked cybercrime group Fangxiao set up over 40,000 malicious websites spoofing more than 400 popular brands. [Read More]
Microsoft has attributed the recent Prestige ransomware attacks in Ukraine to Russian state-sponsored threat actor Iridium. [Read More]
VMware slapped a critical-severity rating on the bulletin and warned that three of the patched flaws are marked with a CVSS severity score of 9.8/10. [Read More]
The InterPlanetary File System (IPFS), considered one of the building blocks of web3, is increasingly being used to provide hidden bulletproof hosting for malware. [Read More]
For the second consecutive month, Microsoft rushed out patches to cover vulnerabilities that were already exploited as zero-day in the wild, including a pair of belated fixes for exploited Microsoft Exchange Server flaws. [Read More]
Redmond warns that China-based nation state threat actors are taking advantage of a one-year-old law to “stockpile” zero-days for use in sustained malware attacks. [Read More]
SentinelOne has found evidence suggesting that the Black Basta ransomware is linked to the FIN7 cybercrime group. [Read More]
Hundreds of regional and national news websites in the United States are delivering SocGholish malware due to a supply chain compromise. [Read More]
FEATURES, INSIGHTS // Malware
Each side of the public-private collaboration has resources and capabilities that shore up the other and increase effectiveness in combatting cybercrime.
The ransomware threat could still become more pervasive over the next two to three years, not because ransomware is effective in and of itself but because of other players in the game continue to fan the flames.
2020 has taught us to revisit the practice of inspecting encrypted traffic. These are all standard security protocols to step up in light of what cybercriminals are doing now.
Playing whack-a-mole with malicious code infections, phishing sites, and compromised credentials won’t help an enterprise reduce losses due to fraud.
Ransomware is just one of many tactics, techniques, and procedures (TTPs) that threat actors are using to attack organizations by compromising remote user devices.
Intent-based segmentation, deception technology, and an integrated security fabric are essential tools in beating malware designed to avoid detection and analysis.
The origin story of Mimikatz — a post-exploitation module that has enabled criminals to steal millions of passwords around the world — reads like an over-the-top spy thriller.
The truth is that quite a lot of malware is developed by an organization—an actual office of people that show up and spend their working day writing malware for a paycheck.
When ransomware strikes, there aren’t many options for response and recovery. Essentially, you can choose your own adventure and hope for the best.
History shows that, in security, the next big thing isn’t always an entirely new thing. We have precedents—macro malware existed for decades before it really became a “thing.”
Get the Daily Briefing
- FBI Director Raises National Security Concerns About TikTok
- Hypr Raises $25 Million for Passwordless Authentication Platform
- Three Innocuous Linux Vulnerabilities Chained to Obtain Full Root Privileges
- Report: California Gun Data Breach Was Unintentional
- IBM Cloud Vulnerability Exposed Users to Supply Chain Attacks
- Over 100 Organizations Hit by Cuba Ransomware: CISA, FBI
- Mitsubishi Electric PLCs Exposed to Attacks by Engineering Software Flaws
- Google Migrating Android to Memory-Safe Programming Languages
- Wipers Are Widening: Here's Why That Matters
- 'Schoolyard Bully' Android Trojan Targeted Facebook Credentials of 300,000 Users
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy