Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
Microsoft has unveiled Project Freta, a free service that allows users to find rootkits and other sophisticated malware in OS volatile memory snapshots. [Read More]
There are more than 3,000 BIG-IP installations vulnerable to attacks exploiting CVE-2020-5902 and hackers have been using the flaw to deliver DDoS malware. [Read More]
G Data security researchers have identified a new ransomware family that attempts to spread using infected USB drives. [Read More]
ICS-targeting Snake/EKANS ransomware manipulates the firewall to isolate infected systems before initiating the file encryption process. [Read More]
The Valak information stealer is being distributed in ongoing campaigns aimed at enterprises in North America, South America, Europe and likely other regions. [Read More]
The threat actor behind the Sodinokibi (REvil) ransomware is demanding a $14 million ransom from Brazilian-based electrical energy company Light S.A. [Read More]
Within days after a report detailing the GoldenSpy malware operation targeting organizations doing business in China, an uninstaller was pushed to affected systems to completely remove the infection. [Read More]
Recent attacks associated with the StrongPity threat actor appear to focus on the Kurdish community in Turkey and Syria. [Read More]
India has banned 59 Chinese mobile apps, including the wildly popular TikTok and WeChat, over national security and privacy concerns two weeks after a deadly Himalayan border clash between the nuclear-armed neighbours. [Read More]
At least 31 organizations in the United States have been targeted with the recently detailed WastedLocker ransomware. [Read More]
- 1 of 117
- ››
FEATURES, INSIGHTS // Virus & Malware
Today’s email-based attacks don’t occur at a single point in time and use multiple methods to evade detection. To bolster protection, organizations may turn to a set of disparate products that don’t – and can’t – work together.
To limit the risk of having drive-by malware attacks planted on their websites, organizations should monitor the payload of their different Internet properties, which for larger organizations can easily become a huge undertaking.
Malvertising underscores the need for an approach to security that addresses the full attack continuum. With ongoing visibility and control, and intelligent and continuous updates, security professionals can take action to stop the inevitable outbreak.
Just as offices need to detect break-ins to keep criminals from committing industrial espionage, enterprises need to put more focus on detecting APTs and other advanced threats to keep adversaries from their network.
While obscuring website code, server architecture, and security mechanisms doesn’t provide bullet-proof security on its own, it is actually pretty effective.
Even with the basics covered, we also have to be on the lookout for unknown threats and anomalies in our networks that can be an indicator of compromise.
Was the Mayan Apocalypse was a myth? Since I am a security geek, I just happen to talk about security a lot. What are some security myths I have heard in my conversations with some very bright people?
As with most stories Mac-related, the malware-is-finally-coming story attracted a lot of press. But the desktop Mac OS might not be attractive to attackers as you might think.
We still don't know who created Conficker or what that person’s motivations were. What we do know: Conficker could have proved much more damaging than it ultimately did, but the threat has not entirely disappeared.
Enjoy this selection of top picks for 2010, listed in no particular order. Happy New Year!
- 1 of 2
- ››
Get the Daily Briefing
- Vulnerabilities in Popular Open Source Management Tool Expose Hospitals to Attacks
- Honeywell Sees Rise in USB-Borne Malware That Can Cause Major ICS Disruption
- Researchers Find Pre-Installed Malware on More Android Phones in U.S.
- Germany Seizes Server Hosting Pilfered U.S. Police Files
- Microsoft Adds New Data Corruption Preventions to Windows
- Palo Alto Networks Patches Command Injection Vulnerabilities in PAN-OS
- Powerful Conti Ransomware Emerges
- Cyberattack Simulation Company XM Cyber Raises $17 Million
- Google Patches Critical Android Vulnerabilities With July 2020 Updates
- Over 5 Billion Unique Credentials Offered on Cybercrime Marketplaces
Copyright © 2020 Wired Business Media. All Rights Reserved. Privacy Policy