Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
In the recent Ukraine attacks, threat actors leveraged stolen credentials and they likely had access to the targeted network for months before causing damage. [Read More]
Cloud security and compliance automation startup Anitian has banked a $55 million Series B round led by Sageview Capital. [Read More]
The IPv6 guidance provides federal agencies with information on IPv6 and its security features, along with security considerations on the network protocol. [Read More]
The use of DNS over HTTPS (DoH) for C&C communications is making it more difficult to track botnets. [Read More]
Active for roughly half a year, the malware has been attributed to Wizard Spider, the threat actor behind Conti and Ryuk. [Read More]
Threat hunters at Kaspersky have spotted a well-known Chinese APT actor using an UEFI implant to maintain stealthy persistence across reboots, disk formatting or disk replacements. [Read More]
Microsoft says the new security mode in Edge browser can keep users safe from zero-day attacks. [Read More]
Google researcher documents a pair of Zoom security defects and chides the company for missing a decades-old anti-exploit mitigation. [Read More]
Thousands of industrial companies have been hit in campaigns that leverage short-lived spyware to harvest corporate credentials. [Read More]
CISA has warned organizations in the United States about potential critical threats following the recent Russia-linked attacks aimed at Ukraine. [Read More]
- 1 of 294
- ››
FEATURES, INSIGHTS // Malware
Botnets are becoming more malicious, sometimes able to create hundreds of thousands of drones that can attack a variety of machines, including Mac systems, Linux, Windows systems, edge devices, IoT devices, and so on.
How can organizations fight ransomware? The best solution is always prevention. Here are three tactics toward that goal.
The fact that so many large and high-profile enterprises fall prey to ransomware attacks that in many cases does not pose any new technical challenge suggests that there are still many gaps that needs to be closed.
Threat hunting must be non-attributable, while maintaining a clear audit trail to satisfy legal and governance requirements.
Each side of the public-private collaboration has resources and capabilities that shore up the other and increase effectiveness in combatting cybercrime.
The ransomware threat could still become more pervasive over the next two to three years, not because ransomware is effective in and of itself but because of other players in the game continue to fan the flames.
2020 has taught us to revisit the practice of inspecting encrypted traffic. These are all standard security protocols to step up in light of what cybercriminals are doing now.
Playing whack-a-mole with malicious code infections, phishing sites, and compromised credentials won’t help an enterprise reduce losses due to fraud.
Ransomware is just one of many tactics, techniques, and procedures (TTPs) that threat actors are using to attack organizations by compromising remote user devices.
Intent-based segmentation, deception technology, and an integrated security fabric are essential tools in beating malware designed to avoid detection and analysis.
- 1 of 14
- ››
Get the Daily Briefing
- Polkit Vulnerability Provides Root Privileges on Linux Systems
- Europe's Hypocrisy Over Personal Data Privacy Exposed
- Two More Poles Identified as Victims of Hacking With Spyware
- SonicWall Customers Warned of Possible Attacks Exploiting Recent Vulnerability
- New macOS Malware 'DazzleSpy' Used in Hong Kong Attacks
- UK's NCSC Pushes NMAP Scanner Scripts to Fill Defender Gap
- PrinterLogic Patches Code Execution Flaws in Printer Management Suite
- Hunters Raises $68 Million for Its SecOps Platform
- Revelstoke Emerges From Stealth With SOAR Platform
- Combating the Surge in Retail Theft and E-Commerce Fraud With Open Source Intelligence
Copyright © 2022 Wired Business Media. All Rights Reserved. Privacy Policy