0

April 13, 2021

Cloud Security / Data Protection / Disaster Recovery / Identity & Access / Incident Response / NEWS & INDUSTRY / Risk Management

Google Patches More Under-Attack Chome Zero-days

Google’s problems with in-the-wild Chrome browser zero-days appear to be multiplying by the month. The latest confirmation of this appears today with a new...

0

April 12, 2021

Application Security / Data Protection / Disaster Recovery / Email Security / Endpoint Security / Fraud & Identity Theft / Incident Response / Malware / Mobile Security / Network Security / NEWS & INDUSTRY / Phishing / Virus & Malware / Vulnerabilities / Wireless Security

Joker Android Trojan Lands in Huawei AppGallery App Store

Ten variants of the Joker Android Trojan managed to slip into the Huawei AppGallery app store and were downloaded by more than 538,000 users,...

0

April 12, 2021

Application Security / Cloud Security / Compliance / Data Protection / Disaster Recovery / Email Security / Endpoint Security / Fraud & Identity Theft / Incident Response / Malware / Network Security / NEWS & INDUSTRY / Phishing / Privacy / Risk Management / Security Architecture / Virus & Malware / Vulnerabilities

Unearthing the ‘Attackability’ of Vulnerabilities that Attract Hackers

Vulnerability management is largely about patch management: finding, triaging and patching the most critical vulnerabilities in your environment. Each aspect of this process presents...

0

April 9, 2021

Application Security / Data Protection / Email Security / Endpoint Security / Fraud & Identity Theft / Identity & Access / Malware / Network Security / NEWS & INDUSTRY / Phishing / Virus & Malware / Vulnerabilities

CISA Releases Tool to Detect Microsoft 365 Compromise

The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has released a new tool to help with the detection of potential...

0

April 6, 2021

Application Security / Cloud Security / Cyberwarfare / Data Protection / Endpoint Security / Fraud & Identity Theft / Identity & Access / Malware / NEWS & INDUSTRY / Phishing / Virus & Malware / Vulnerabilities

APT Group Using Voice Changing Software in Spear-Phishing Campaign

A sub-group of the ‘Molerats’ threat-actor has been using voice-changing software to successfully trick targets into installing malware, according to a warning from Cado...

0

April 5, 2021

Application Security / Cyberwarfare / Data Protection / Email Security / Endpoint Security / Fraud & Identity Theft / Malware / NEWS & INDUSTRY / Phishing / Tracking & Law Enforcement / Virus & Malware / Vulnerabilities

China-Linked ‘Cycldek’ Hackers Target Vietnamese Government, Military

China-linked cyber-espionage group Cycldek is showing increasing sophistication in a series of recent attacks targeting government and military entities in Vietnam, according to a...

0

April 5, 2021

Application Security / Cloud Security / Data Protection / Email Security / Endpoint Security / Fraud & Identity Theft / Identity & Access / Incident Response / Malware / Network Security / NEWS & INDUSTRY / Phishing / Risk Management / Virus & Malware / Vulnerabilities

CISA, FBI Warn of Attacks Targeting Fortinet FortiOS

The U.S. government is warning that Advanced Persistent Threat (APT) actors are exploiting vulnerabilities in Fortinet FortiOS in ongoing attacks targeting commercial, government, and...

0

April 5, 2021

Cloud Security / Cyberwarfare / Data Protection / Email Security / Endpoint Security / Identity & Access / Malware / Mobile Security / NEWS & INDUSTRY / Phishing / Virus & Malware / Vulnerabilities

VMware Patches Critical Flaw in Carbon Black Cloud Workload

A critical vulnerability recently addressed in the VMware Carbon Black Cloud Workload could be abused to execute code on a vulnerable server, according to...

0

April 2, 2021

Application Security / Audits / Compliance / Data Protection / Email Security / Endpoint Security / Fraud & Identity Theft / Malware / NEWS & INDUSTRY / Phishing / Privacy / Tracking & Law Enforcement / Virus & Malware / Vulnerabilities

SecureDrop Workstation Gets Post-Audit Security Refresh

The open-source SecureDrop Workstation has undergone a security makeover after a third-party security audit flagged multiple problems, including a high-risk bug that could allow...

0

April 1, 2021

Application Security / Audits / Cloud Security / Data Protection / Email Security / Endpoint Security / Fraud & Identity Theft / Incident Response / Malware / Network Security / NEWS & INDUSTRY / Phishing / Risk Management / Virus & Malware / Vulnerabilities

DHS Gives Federal Agencies 5 Days to Identify Vulnerable MS Exchange Servers

The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has issued a supplemental directive requiring all federal agencies to identify vulnerable Microsoft...