Often, employees of security operation centers and information security departments turn to Kaspersky specialists for expert help. We analyzed the most common reasons for such requests and created a specialized service that helps customers to ask a question directly to an expert in the area they need. Why you might show more ...
Eric Goldstein, Executive Assistant Director for Cybersecurity for the Cybersecurity and Infrastructure Security Agency (CISA), says the agency is all about helping companies and local government to keep hackers at bay. But are organizations ready to ask for help? The post Episode 228: CISA’s Eric Goldstein on being show more ...
MagicCube, a mobile security startup, has raised $15 million in a round led by Mosaik Partners. Bold Capital, Epic Ventures, ID Tech, and unnamed individual investors also participated in the round.
Operators behind a relatively new ransomware operation are rebranding a "supplier" ransomware before deployment instead of simply distributing it under the original name.
The Tor sites went offline earlier today, with a threat actor affiliated with the REvil operation posting to the XSS hacking forum that someone hijacked the gang's domains.
Ransomware extracted at least $590 million for the miscreants who create and distribute it in the first half of 2021 alone, according to the US Financial Crimes Enforcement Network (FinCEN).
According to the update, Twitch passwords have not been exposed. The company believes that systems that store Twitch login credentials, which are hashed with bcrypt, were not accessed.
Researchers from security firm Armorblox discovered a scam in which attackers tried to impersonate Microsoft Defender to coax potential victims to grant them remote access.
Cisco Talos discovered multiple vulnerabilities in the Nitro Pro PDF reader that could allow an attacker to execute code in the context of the application. Users are urged to update their apps.
In a Form 10-K filing with the Securities and Exchange Commission (SEC) last week, the company confirmed that the attackers were able to steal some proprietary information from its servers.
It was only last month that the Port of Houston fended off a cyberattack and there is no reason to believe cyberattacks on OT systems won't continue -- or, perhaps, become more common.
The Chinese version of Pwn2Own was started in 2018 in the wake of government regulation in the country that barred security researchers from participating in international hacking competitions.
The security flaws in the Fastest Cache plugin, which has more than one million active downloads, were discovered during an internal audit of the software by Jetpack Security.
Cryptocurrency scammers are exploiting Apple’s Enterprise Developer Program to get bogus trading apps onto their marks’ iPhones. Sophos Labs observed the scam making the rounds on dating sites.
An investigation into Lyceum has shown that the group has evolved its arsenal over the years and shifted its usage from the previously documented .NET malware to new versions, written in C++.
Unfortunately, the underlying encryption problem in BlackByte is likely in the process of already being fixed by the malware's developer, says Karl Sigler of Trustwave SpiderLabs.
TV stations owned by the Sinclair Broadcast Group went down over the weekend across the US, with multiple sources telling BleepingComputer a ransomware attack caused the downtime.
Researchers have proven it’s possible to train a special-purpose deep-learning algorithm that can guess 4-digit card PINs 41% of the time, even if the victim is covering the pad with their hands.
The bank issued a statement on Monday to inform customers about the cyberattack, it also added to have “identified a cybersecurity incident in our systems that has partially disabled our services.”
New research from cloud security firm Zscaler, presented at the recent VB2021 conference, exploits bugs and coding errors in malware code to thwart infections by botnets, ransomware, and trojans.
By exploiting the WDAC security bypass vulnerability tracked as CVE-2020-0951, threat actors can execute PowerShell commands that would otherwise be blocked when WDAC is enabled.
First released in 1997, the L0phtCrack tool can be used to test password strength and recover lost Windows passwords via dictionary, brute-force, and other types of attacks.
Experts reported a phishing attempt targeted at Verizon that involves the use of mathematical symbols to bypass anti-phishing systems to acquire users’ Office 365 credentials. The spoofed messages pretend to be a voicemail notification with an embedded Play button. The recent campaign reflects how users can be fooled if they do not pay attention to small details.
Kaspersky unearthed a cyberespionage campaign exploiting a zero-day flaw in Windows to deliver MysterySnail malware and steal data. A connection to a Chinese-speaking APT was also established. Experts recommend organizations stay proactive and ready with adequate security measures.
Iran-linked hackers were found conducting extensive password spraying attacks against Office 365 accounts of defense technology and global maritime firms in the U.S. and Israel. The group attempts to gain access to commercial satellite imagery and proprietary shipping plans/logs. Microsoft notified the victims and provided them with the information required to secure their accounts.
Ubuntu Security Notice 5109-1 - It was discovered that nginx incorrectly handled files with certain modification dates. A remote attacker could possibly use this issue to cause a denial of service or other unspecified impact.
Backdoor.Win32.LanaFTP.k malware suffers from a heap corruption vulnerability.
Backdoor.Win32.LanFiltrator.11.b malware suffers from a code execution vulnerability.
Mitsubishi Electric and INEA SmartRTU suffer from a source code disclosure vulnerability.
Mitsubishi Electric and INEA SmartRTU suffer from a cross site scripting vulnerability.
Virus.Win32.Ipamor.c malware suffers from an unauthenticated remote system reboot vulnerability.
Engineers Online Portal version 1.0 suffers from remote SQL injection vulnerabilities.
Trojan-Proxy.Win32.Ranky.z malware suffers from an unauthenticated open proxy vulnerability.
WordPress Duplicator plugin version 1.3.26 suffers from an unauthenticated arbitrary file read vulnerability.
Worm.Win32.Runfer.bpo malware suffers from an unquoted service path vulnerability.
Plastic SCM version 10.0.16.5622 suffers from an insecure direct object reference vulnerability that lets an attacker set the administrative password.
Trojan-Proxy.Win32.Ranky.dh malware suffers from an unauthenticated open proxy vulnerability.
Company's Recruitment Management System version 1.0 suffers from a cross site request forgery vulnerability.
Company's Recruitment Management System version 1.0 suffers from multiple persistent cross site scripting vulnerabilities.
REvil, the notorious ransomware gang behind a string of cyberattacks in recent years, appears to have gone off the radar once again, a little over a month after the cybercrime group staged a surprise return following a two-month-long hiatus. The development, first spotted by Recorded Future's Dmitry Smilyanets, comes after a member affiliated with the REvil operation posted on the XSS hacking
Windows 10, iOS 15, Google Chrome, Apple Safari, Microsoft Exchange Server, and Ubuntu 20 were successfully broken into using original, never-before-seen exploits at the Tianfu Cup 2021, the fourth edition of the international cybersecurity contest held in the city of Chengdu, China. Targets this year included Google Chrome running on Windows 10 21H1, Apple Safari running on Macbook Pro, Adobe
Representatives from the U.S., the European Union, and 30 other countries pledged to mitigate the risk of ransomware and harden the financial system from exploitation with the goal of disrupting the ecosystem, calling it an "escalating global security threat with serious economic and security consequences." "From malign operations against local health providers that endanger patient care, to
Since cybersecurity is definitely an issue that’s here to stay, I’ve just checked out the recently released first episodes of Cato Networks Cybersecurity Master Class Series. According to Cato, the series aims to teach and demonstrate cybersecurity tools and best practices; provide research and real-world case studies on cybersecurity; and bring the voices and opinions of top cybersecurity
Patching really, really matters – patching is what keeps technology solutions from becoming like big blocks of Swiss cheese, with endless security vulnerabilities punching hole after hole into critical solutions. But anyone who's spent any amount of time maintaining systems will know that patching is often easier said than done. Yes, in some instances, you can just run a command line to install
