Threats and vulnerabilities

Keeping up with the latest threats and vulnerabilities is a battle for any security pro. Get up-to-date information on email threats, nation-state attacks, phishing techniques, ransomware and malware, DDoS attacks, APTs, application vulnerabilities, zero-day exploits, malicious insiders and more.

Top Stories

News 15 Nov 2024
Palo Alto Networks PAN-OS management interfaces under attack

Palo Alto Networks confirmed that threat actors are exploiting a vulnerability in PAN-OS firewall management interfaces after warning customers to secure them for nearly a week. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 14 Nov 2024
Infoblox: 800,000 domains vulnerable to hijacking attack

While the 'Sitting Ducks' attack vector continues to pose a problem, Infoblox says domain registrars, DNS providers and government bodies remain inactive. Continue Reading
By
- Arielle Waldman, News Writer

Tip 31 Aug 2023
How to recover from a ransomware attack

With a ransomware recovery plan, organizations can act quickly to prevent data loss without descending into chaos. Learn the six steps to incorporate into your plan. Continue Reading
By
- John Burke, Nemertes Research
Feature 31 Aug 2023
Types of ransomware and a timeline of attack examples

There are eight main types of ransomware but hundreds of examples of ransomware strains. Learn how the ransomware types work, and review notable ransomware attacks and variants. Continue Reading
By
- Sharon Shea, Executive Editor
- Isabella Harford, TechTarget
News 30 Aug 2023
FBI, Justice Department dismantle Qakbot malware

The FBI operation, one of the largest U.S.-led botnet disruption efforts ever, included international partners such as France, Germany, the Netherlands and the United Kingdom. Continue Reading
By
- Alexander Culafi, Senior News Writer
Guest Post 30 Aug 2023
SEC cyber attack regulations prompt 10 questions for CISOs

New SEC regulations governing the disclosure of cyber attacks by public companies lead to 10 questions board members should ask their CISOs about managing cyber-risk. Continue Reading
By
- Frank Kim, SANS Institute
News 29 Aug 2023
Microsoft Teams attack exposes collab platform security gaps

Criminal and state-sponsored hackers are ramping up cyberattacks on instant messaging platforms and other workplace collaboration tools. Meanwhile, enterprises' readiness lags. Continue Reading
By
- Shaun Sutner, News Director
News 29 Aug 2023
Mandiant reveals new backdoors used in Barracuda ESG attacks

Further investigations show threat actors were prepared for Barracuda Networks' remediation efforts, including an action notice to replace all compromised devices. Continue Reading
By
- Arielle Waldman, News Writer
Tip 28 Aug 2023
Enterprise dark web monitoring: Why it's worth the investment

Getting an early warning that your data has been compromised is a key benefit of dark web monitoring, but there are many more. By knowing your enemies, you can better protect your assets. Continue Reading
By
- Ed Moyle, Drake Software
Feature 28 Aug 2023
3 ransomware detection techniques to catch an attack

While prevention is key, it's not enough to protect a company's system from ransomware. Reduce damage from attacks with these three ransomware detection methods. Continue Reading
By
- Kyle Johnson, Technology Editor
Tip 28 Aug 2023
Should companies make ransomware payments?

Once infected with ransomware, organizations face a major question: to pay or not to pay? Law enforcement recommends against it, but that doesn't stop all companies from paying. Continue Reading
By
- Kyle Johnson, Technology Editor
News 24 Aug 2023
FBI: Suspected Chinese actors continue Barracuda ESG attacks

The alert comes after Barracuda Networks issued an advisory stating that patches for CVE-2023-2868 were insufficient and all affected ESG devices need to be replaced. Continue Reading
By
- Arielle Waldman, News Writer
News 23 Aug 2023
Sophos: RDP played a part in 95% of attacks in H1 2023

While Sophos observed increasing activity around Active Directory and Remote Desktop Protocol abuse, it recommended simple mitigation steps can limit the attack surface. Continue Reading
By
- Arielle Waldman, News Writer
- Rob Wright, Senior News Director
Definition 23 Aug 2023
network vulnerability scanning

Network vulnerability scanning is the process of inspecting and reporting potential vulnerabilities and security loopholes on a computer, network, web application or other device, including firewalls, switches, routers and wireless access points. Continue Reading
By
- Kinza Yasar, Technical Writer
News 22 Aug 2023
Ivanti issues fix for third zero-day flaw exploited in the wild

CVE-2023-38035 is the latest Ivanti zero-day vulnerability to be exploited in the wild. The vendor has released a series of remediation recommendations. Continue Reading
By
- Arielle Waldman, News Writer
News 17 Aug 2023
CISA, vendors warn Citrix ShareFile flaw under attack

A vulnerability in the managed file transfer product that enterprises use is being actively exploited two months after Citrix released a fix. Continue Reading
By
- Arielle Waldman, News Writer
Podcast 17 Aug 2023
Risk & Repeat: Highlights from Black Hat USA 2023

Black Hat USA 2023 in Las Vegas covered several trends, such as generative AI and cloud security issues, as well as new vulnerabilities, including the Downfall flaw in Intel chips. Continue Reading
By
- Alexander Culafi, Senior News Writer
Feature 16 Aug 2023
How to use dynamic reverse engineering for embedded devices

In this excerpt from 'Practical Hardware Pentesting,' read step-by-step instructions on how to find vulnerabilities on IoT devices using dynamic reverse engineering. Continue Reading
By
- Kyle Johnson, Technology Editor
- Packt Publishing
Tip 14 Aug 2023
Top 3 ransomware attack vectors and how to avoid them

Protecting your organization against these three common ransomware attack entryways could mean the difference between staying safe or falling victim to a devastating breach. Continue Reading
By
- Diana Kelley, SecurityCurve
Feature 10 Aug 2023
Why using ransomware negotiation services is worth a try

If stakeholders decide to pay ransom demands, using a ransomware negotiation service could improve the situation's outcome and lower the payout. Continue Reading
By
- Kyle Johnson, Technology Editor
News 09 Aug 2023
Coalition looks to bridge gap between CISOs, cyber insurance

While carriers and CISOs agree cyber insurance has contributed to better security postures, Coalition said the relationship needs to stronger as threat evolve and intensify. Continue Reading
By
- Arielle Waldman, News Writer
News 09 Aug 2023
Onapsis researchers detail new SAP security threats

At Black Hat 2023, Onapsis researchers demonstrated how attackers could chain a series of SAP vulnerabilities impacting the P4 protocol to gain root access to a target network. Continue Reading
By
- Arielle Waldman, News Writer
News 08 Aug 2023
Google unveils 'Downfall' attacks, vulnerability in Intel chips

Google researcher Daniel Moghimi first reported CVE-2022-40982 and the resulting data leak attacks to Intel in August 2022, but it's taken nearly 12 months to disclose the flaw. Continue Reading
By
- Rob Wright, Senior News Director
Definition 07 Aug 2023
insecure deserialization

Insecure deserialization is a vulnerability in which untrusted or unknown data is used to inflict a denial-of-service attack, execute code, bypass authentication or otherwise abuse the logic behind an application. Continue Reading
By
- Alexander S. Gillis, Technical Writer and Editor
Tip 04 Aug 2023
8 vulnerability management tools to consider in 2023

Vulnerability management tools help organizations identify and remediate system and application weaknesses and more. Choose your tool -- or tools -- carefully. Continue Reading
By
- Karen Scarfone, Scarfone Cybersecurity
News 03 Aug 2023
MoveIt Transfer attacks dominate July ransomware disclosures

Traditional ransomware attacks took a back seat last month, as Clop operators continued to claim victims from the zero-day attacks on MoveIt Transfer customers. Continue Reading
By
- Arielle Waldman, News Writer
Podcast 03 Aug 2023
Risk & Repeat: Microsoft takes heat over Storm-0558 attacks

The Storm-0558 attacks have raised questions about Microsoft's response to a cloud flaw and a stolen MSA key that was used to compromise customer email accounts. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 31 Jul 2023
CISA details backdoor malware used in Barracuda ESG attacks

CISA said Friday that 'Submarine' is a novel persistent backdoor used in attacks against Barracuda Email Security Gateway appliances vulnerable to CVE-2023-2868. Continue Reading
By
- Alexander Culafi, Senior News Writer
Opinion 31 Jul 2023
Lenovo's latest heavy on flash, security for enterprise storage

Lenovo's concentration on QLC flash, hybrid cloud and ransomware protection in its latest hardware and software offerings should aid enterprise buyers. Continue Reading
By
- Scott Sinclair, Practice Director
- Enterprise Strategy Group
  We provide market insights, research and advisory, and technical validations for tech buyers.
News 27 Jul 2023
Google: 41 zero-day vulnerabilities exploited in 2022

While attackers increasingly exploited zero-day flaws last year, one of the most notable findings from the report emphasized how inadequate patches led to new variants. Continue Reading
By
- Arielle Waldman, News Writer
Tip 26 Jul 2023
How to avoid LinkedIn phishing attacks in the enterprise

Organizations and users need to be vigilant about spotting LinkedIn phishing attacks by bad actors on the large business social media platform. Learn how to foil the attempts. Continue Reading
By
- Ashwin Krishnan, StandOutin90Sec
News 25 Jul 2023
Ivanti EPMM zero-day vulnerability exploited in wild

A zero-day authentication bypass vulnerability in Ivanti Endpoint Manager Mobile was exploited in a cyber attack against a Norwegian government agency. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 24 Jul 2023
Coveware: Rate of victims paying ransom continues to plummet

Incident response firm Coveware said 34% of ransomware victims paid the ransom in Q2 2023, a sharp decline from last quarter and an enormous decline from 2020 and 2019. Continue Reading
By
- Alexander Culafi, Senior News Writer
Opinion 24 Jul 2023
IBM FlashSystem 5045 aids access to storage cyber resilience

As ransomware and other cyber attacks persist, enterprises should prioritize cyber resilience. IBM's FlashSystem 5045 improves accessibility for that protection. Continue Reading
By
- Scott Sinclair, Practice Director
- Enterprise Strategy Group
  We provide market insights, research and advisory, and technical validations for tech buyers.
Tip 20 Jul 2023
API keys: Weaknesses and security best practices

API keys are not a replacement for API security. They only offer a first step in authentication -- and they require additional security measures to keep them protected. Continue Reading
By
- Ravi Das, ML Tech Inc.
Podcast 20 Jul 2023
Risk & Repeat: Are data extortion attacks ransomware?

Ransomware gangs are focusing more on data theft and extortion, while skipping the encryption of networks. But should these attacks still be considered ransomware? Continue Reading
By
- Alexander Culafi, Senior News Writer
News 19 Jul 2023
Citrix NetScaler ADC and Gateway flaw exploited in the wild

Critical remote code execution flaw CVE-2023-3519 was one of three vulnerabilities in Citrix's NetScaler ADC and Gateway. Customers are urged to patch their instances. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 18 Jul 2023
Multiple Adobe ColdFusion flaws exploited in the wild

One of the Adobe ColdFusion flaws exploited in the wild, CVE-2023-38203, was a zero-day bug that security vendor Project Discovery inadvertently published. Continue Reading
By
- Alexander Culafi, Senior News Writer
Feature 18 Jul 2023
Ransomware case study: Recovery can be painful

In ransomware attacks, backups can save the day and the data. Even so, recovery can still be expensive and painful, depending on the approach. Learn more in this case study. Continue Reading
By
- Alissa Irei, Senior Site Editor
Definition 18 Jul 2023
cyber extortion

Cyber extortion is a crime involving an attack or threat of an attack coupled with a demand for money or some other response in return for stopping or remediating the attack. Continue Reading
By
- Kinza Yasar, Technical Writer
Feature 18 Jul 2023
The history and evolution of ransomware

Ransomware has evolved from a malicious floppy disk demanding $189 in ransom to a multibillion-dollar industry with ransom for rent, sophisticated techniques and big-name victims. Continue Reading
By
- Sharon Shea, Executive Editor
- Isabella Harford, TechTarget
News 14 Jul 2023
XSS zero-day flaw in Zimbra Collaboration Suite under attack

A manual workaround is currently available for a cross-site scripting vulnerability in Zimbra Collaboration Suite, though a patch won't be available until later this month. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 13 Jul 2023
Microsoft: Government agencies breached in email attacks

While Microsoft mitigated the attacks and found no evidence of further access beyond the email accounts, the Outlook breaches raised questions for the software giant. Continue Reading
By
- Arielle Waldman, News Writer
News 12 Jul 2023
Russia-based actor exploited unpatched Office zero day

Microsoft investigated an ongoing phishing campaign that leverages Word documents to deliver malicious attachments to targeted organizations in the U.S. and Europe. Continue Reading
By
- Arielle Waldman, News Writer
Podcast 11 Jul 2023
Risk & Repeat: How bad is Clop's MoveIt Transfer campaign?

Clop's data theft and extortion campaign against MoveIt Transfer customers marks some of the most high-profile threat activity this year, but its success level remains unclear. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 11 Jul 2023
Clop's MoveIt Transfer attacks lead to mixed results

Clop's data theft extortion campaign against MoveIt Transfer customers has apparently compromised hundreds of organizations. But it's unclear how many victims have paid ransoms. Continue Reading
By
- Alexander Culafi, Senior News Writer
Feature 10 Jul 2023
How to map security gaps to the Mitre ATT&CK framework

Mapping security gaps to the Mitre ATT&CK framework enables SOC teams to prioritize, remediate and eliminate vulnerabilities before malicious actors exploit them. Continue Reading
By
- Kyle Johnson, Technology Editor
- Packt Publishing
Tip 07 Jul 2023
Enterprise risk management should inform cyber-risk strategies

Cyber-risk doesn't exist in a vacuum. By understanding the broader enterprise risk management landscape, CISOs can make decisions that best serve the business. Continue Reading
By
- Jerald Murphy, Nemertes Research
News 06 Jul 2023
CISA: Truebot malware infecting networks in U.S., Canada

CISA warned of Truebot attacks in a joint advisory alongside the FBI, the Canadian Centre for Cyber Security and the Multi-State Information Sharing and Analysis Center. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 05 Jul 2023
June saw flurry of ransomware attacks on education sector

As the school year culminated, ransomware attacks surged across K-12 schools and universities, causing class disruptions and putting sensitive data at risk. Continue Reading
By
- Arielle Waldman, News Writer
Definition 05 Jul 2023
WannaCry ransomware

WannaCry ransomware is a cyber attack that spreads by exploiting vulnerabilities in the Windows operating system. Continue Reading
By
- Alexander S. Gillis, Technical Writer and Editor
- Linda Rosencrance
News 30 Jun 2023
TSMC partner breached by LockBit ransomware gang

A cyber attack against Chinese systems integrator Kinmax led to the theft of TSMC proprietary data, which LockBit threatened to publish unless TSMC paid a $70 million ransom. Continue Reading
By
- Alexander Culafi, Senior News Writer
Feature 29 Jun 2023
Quishing on the rise: How to prevent QR code phishing

A monthslong quishing campaign demonstrated how cybercriminals are using QR codes to trick users. Here's what enterprise security leaders need to know. Continue Reading
By
- Alissa Irei, Senior Site Editor
Tip 26 Jun 2023
How API gateways improve API security

API gateways keep APIs secure by providing rate limiting, DDoS protection and more. Learn more about these benefits, along with API gateway security best practices. Continue Reading
By
- Michael Cobb
News 22 Jun 2023
Apple patches zero days used in spyware attacks on Kaspersky

Two Apple zero days were used in the spyware campaign Kaspersky Lab named 'Operation Triangulation,' which was initially discovered on iOS devices of Kaspersky employees. Continue Reading
By
- Arielle Waldman, News Writer
News 21 Jun 2023
May ransomware activity rises behind 8base, LockBit gangs

LockBit was the most active group last month, but NCC Group researchers were surprised by 8base, which started listing victims from attacks that occurred beginning in April 2022. Continue Reading
By
- Arielle Waldman, News Writer
Podcast 20 Jun 2023
Risk & Repeat: More victims emerge from MoveIt Transfer flaw

CISA last week said several federal agencies suffered data breaches resulting from a MoveIt Transfer zero-day vulnerability, though it's unclear what type of data was stolen. Continue Reading
By
- Alexander Culafi, Senior News Writer
Tip 20 Jun 2023
Implement zero trust to improve API security

Not all organizations have an API security strategy in place. Using zero trust in API security is one way to protect APIs and reduce their changes of being attacked. Continue Reading
By
- Ashwin Krishnan, StandOutin90Sec
News 20 Jun 2023
Attackers discovering exposed cloud assets within minutes

Cloud security vendor Orca Security used honeypots to learn more about how threat actors compromise cloud resources such as misconfigured AWS S3 buckets and GitHub repositories. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 16 Jun 2023
U.S. government agencies breached via MoveIt Transfer flaw

CISA Director Jen Easterly said 'several' U.S. agencies suffered intrusions via their MoveIt Transfer instances, but have not seen significant effects from the attacks. Continue Reading
By
- Alexander Culafi, Senior News Writer
Tip 16 Jun 2023
Use IoT hardening to secure vulnerable connected devices

IoT and industrial IoT innovation continue to thrive, but IoT device security continues to be an afterthought. Companies should harden connected devices to remain protected. Continue Reading
By
- Michael Cobb
Podcast 15 Jun 2023
Risk & Repeat: Mandiant sheds light on Barracuda ESG attacks

Barracuda Networks attempted to fix the critical ESG zero-day vulnerability, but a Chinese nation-state threat actor was able to maintain access on compromised devices. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 14 Jun 2023
State governments among victims of MoveIT Transfer breach

The Clop ransomware gang, which claimed responsibility for multiple data breaches tied to the MoveIT Transfer flaw, said it would delete data stolen from government agencies. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 13 Jun 2023
Fortinet warns critical VPN vulnerability 'may' be under attack

Fortinet said the heap buffer overflow flaw might have been exploited already and warned that Chinese nation-state threat group Volt Typhoon would likely attack the vulnerability. Continue Reading
By
- Arielle Waldman, News Writer
News 13 Jun 2023
Mandiant: New VMware ESXi zero-day used by Chinese APT

VMware said the ESXi flaw was 'low severity' despite being under active exploitation because it requires the attacker to already have gained root access on the target's system. Continue Reading
By
- Alexander Culafi, Senior News Writer
Tip 12 Jun 2023
Benefits of risk-based vulnerability management over legacy VM

Risk-based vulnerability management not only offers a proactive way to identify vulnerable assets, but it also helps prevent alert fatigue and improve patch prioritization. Continue Reading
By
- Ravi Das, ML Tech Inc.
News 12 Jun 2023
MoveIT Transfer attacks highlight SQL injection risks

Security vendors say SQL injection flaws, like the zero-day vulnerability recently disclosed by Progress Software, can be challenging for companies to identify and resolve. Continue Reading
By
- Arielle Waldman, News Writer
News 12 Jun 2023
Veeam execs examine backup and security blend, other trends

Veeam leaders break down how cybersecurity issues have changed the data protection conversation. The discussion also details future plans, such as in SaaS backup and potential IPO. Continue Reading
By
- Paul Crocetti, Executive Editor
News 08 Jun 2023
Cisco generative AI heads to Security Cloud, Webex

Cisco plans to release generative AI features in the Webex platform and Security Cloud this year. Together, the products tighten security for remote workers. Continue Reading
By
- Antone Gonsalves, News Director
Podcast 08 Jun 2023
Risk & Repeat: Moveit Transfer flaw triggers data breaches

Several organizations, predominantly in the U.K., have confirmed data breaches that stemmed from exploitation of the critical Moveit Transfer zero-day vulnerability. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 08 Jun 2023
Barracuda: Replace vulnerable ESG devices 'immediately'

Customers with email security gateway appliances affected by a recent zero-day flaw, CVE-2023-2868, are being urged to replace devices, even if the hardware has been patched. Continue Reading
By
- Arielle Waldman, News Writer
News 08 Jun 2023
MoveIt Transfer flaw leads to wave of data breach disclosures

Organizations that have confirmed a data breach tied to the critical MoveIt flaw disclosed in May include the government of Nova Scotia, the BBC and HR software firm Zellis. Continue Reading
By
- Alexander Culafi, Senior News Writer
Tip 07 Jun 2023
6 blockchain use cases for cybersecurity

Is blockchain secure by design, or should blockchains be designed for security? Learn more through these six security and privacy use cases for blockchain. Continue Reading
By
- Jessica Groopman, Kaleido Insights
Tip 07 Jun 2023
Top blockchain attacks, hacks and security issues explained

Blockchain is an attractive target for malicious actors. From blockchain-specific attacks to human vulnerabilities to lack of regulations, these are the top blockchain issues. Continue Reading
By
- Jessica Groopman, Kaleido Insights
News 06 Jun 2023
Free Atlassian Jira DevSecOps tab opens doors to expansion

Vulnerability management data from Atlassian partners surfaces in a new Security in Jira tab for cloud customers, setting the stage for a potential DevSecOps expansion. Continue Reading
By
- Beth Pariseau, Senior News Writer
News 06 Jun 2023
Ransomware takes down multiple municipalities in May

City and local governments experienced severe disruptions to public services due to ransomware attacks in May, particularly from the Royal ransomware group. Continue Reading
By
- Arielle Waldman, News Writer
News 06 Jun 2023
Verizon 2023 DBIR: Ransomware remains steady but complicated

Chris Novak, managing director of cybersecurity consulting at Verizon Business, said 2023 was a "retooling year" for ransomware threat actors adapted to improved defenses. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 05 Jun 2023
Atlassian cloud preps threat tool as security boss departs

Atlassian Beacon shores up cloud security as it adds transparency around security issues, but the chief trust officer role at the company is also changing hands. Continue Reading
By
- Beth Pariseau, Senior News Writer
News 05 Jun 2023
Ransomware actors exploiting MoveIt Transfer vulnerability

Microsoft said the recently disclosed zero-day flaw in Progress Software's managed file transfer product is being exploited by threat actors connected to the Clop ransomware gang. Continue Reading
By
- Rob Wright, Senior News Director
Feature 05 Jun 2023
Attack surface reduction rules for Microsoft productivity apps

Attack surface reduction rules in Microsoft Defender for Endpoint help prevent apps from launching executable files and scripts, running suspicious scripts and more. Continue Reading
By
- Kyle Johnson, Technology Editor
- Packt Publishing
News 01 Jun 2023
Zyxel vulnerability under 'widespread exploitation'

Researchers warn that threat actors are widely exploiting an unauthenticated command injection vulnerability to target multiple Zyxel network devices. Continue Reading
By
- Alexis Zacharakos, Student Co-op
News 01 Jun 2023
Zero-day vulnerability in MoveIt Transfer under attack

Rapid7 observed exploitation of a SQL injection vulnerability in Progress Software's managed file transfer product, which was disclosed this week but has not been patched. Continue Reading
By
- Rob Wright, Senior News Director
News 31 May 2023
Barracuda zero-day bug exploited months prior to discovery

Barracuda said a zero-day flaw used to target its email security gateway appliance customers is a remote command injection vulnerability exploited since at least October 2022. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 31 May 2023
Many Gigabyte PC models affected by major supply chain issue

Eclypsium researchers say the insecure implementation of PC hardware manufacturer Gigabyte's App Center could potentially result in supply chain attacks. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 25 May 2023
Chinese hackers targeting U.S. critical infrastructure

Microsoft uncovered a Chinese nation-state threat group that is compromising Fortinet FortiGuard devices to gain access to critical infrastructure entities in the U.S. and Guam. Continue Reading
By
- Arielle Waldman, News Writer
Tip 25 May 2023
9 smart contract vulnerabilities and how to mitigate them

Smart contracts execute tasks automatically when specific events occur, and often handle large data and resource flows. This makes them particularly attractive to attackers. Continue Reading
By
- Michael Cobb
News 25 May 2023
Users dish on ransomware protection, recovery at VeeamON

To help protect against and recover from ransomware attacks, IT professionals at VeeamON 2023 recommended planning, testing and other key security measures. Continue Reading
By
- Paul Crocetti, Executive Editor
Tip 25 May 2023
How to conduct a smart contract audit and why it's needed

Smart contracts ensure the integrity of transactions, such as those that initiate key services. A smart contract audit is one way to ensure the programs work as designed. Continue Reading
By
- Paul Kirvan
News 24 May 2023
Barracuda discloses zero-day flaw affecting ESG appliances

Barracuda Networks said threat actors exploited the zero-day to gain 'unauthorized access to a subset of email gateway appliances,' though it did not say how many. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 23 May 2023
Threat actors leverage kernel drivers in new attacks

Fortinet detailed a campaign using a malicious driver in attacks against organizations in the Middle East, and Trend Micro detailed a driver-based attack by BlackCat ransomware. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 22 May 2023
Iowa hospital discloses breach following Royal ransomware leak

Clarke County Hospital revealed that it took network services offline after an attack in April, but did not address the reported data leak by the Royal ransomware gang. Continue Reading
By
- Arielle Waldman, News Writer
News 19 May 2023
Dish 'received confirmation' ransomware gang deleted stolen data

A line in Dish Network's breach notification sent to affected employees this week suggested the satellite TV provider had paid a ransomware gang to delete stolen data. Continue Reading
By
- Alexander Culafi, Senior News Writer
Feature 19 May 2023
The potential danger of the new Google .zip top-level domain

How much should the average end user be concerned about the new .zip and .mov TLDs? They aren't as bad as some make them out to be, but it's still worth doing something about them. Continue Reading
By
- Kyle Johnson, Technology Editor
News 18 May 2023
Gentex confirms data breach by Dunghill ransomware actors

The Dunghill ransomware gang last month claimed responsibility for an attack against Gentex Corporation, which confirmed this week that it suffered a breach several months ago. Continue Reading
By
- Arielle Waldman, News Writer
News 17 May 2023
KeePass vulnerability enables master password theft

KeePass developer Dominik Reichl said the vulnerability should be fixed in KeePass version 2.54, which is expected to release in July along with other security updates. Continue Reading
By
- Alexander Culafi, Senior News Writer
Tip 17 May 2023
Why Amazon S3 is a ransomware target and how to protect it

Hacking continues to evolve. While Amazon S3 is a major ransomware target, admins can take steps in configuration and event logging, among other protection measures. Continue Reading
By
- Mike Matchett, Small World Big Data
News 16 May 2023
Chinese APT exploits TP-Link router firmware via implant

Check Point Software Technologies said the malicious implant, which it attributed to Chinese APT "Camaro Dragon," was firmware agnostic and could be used against other vendors. Continue Reading
By
- Alexander Culafi, Senior News Writer
Opinion 16 May 2023
Protect against current and future threats with encryption

Current and future cyber threats, such as ransomware, generative AI, quantum computing and an increase in surveillance, are driving the need to secure all data with encryption. Continue Reading
By
- Jack Poller
- Enterprise Strategy Group
  We provide market insights, research and advisory, and technical validations for tech buyers.
Tip 16 May 2023
How to build a better vulnerability management program

With a vulnerability management program in place, your organization is better equipped to identify and mitigate security vulnerabilities in people, processes and technologies. Continue Reading
By
- Karen Scarfone, Scarfone Cybersecurity
News 15 May 2023
CrowdStrike warns of rise in VMware ESXi hypervisor attacks

As enterprise adoption of virtualization technology increases, CrowdStrike has observed a rise in ransomware attacks on servers running VMware's ESXi bare-metal hypervisors. Continue Reading
By
- Arielle Waldman, News Writer
Feature 12 May 2023
Explore the impact of quantum computing on cryptography

When quantum computers become available, lots of encryption types will be vulnerable. Learn why, and what's being researched, to navigate post-quantum cryptography. Continue Reading
By
- Ryan Arel, Former Associate Site Editor
News 12 May 2023
Bl00dy ransomware gang targets schools via PaperCut flaw

The Bl00dy ransomware gang is targeting schools via a critical remote code execution flaw present in unpatched instances of PaperCut MF and NG print management software. Continue Reading
By
- Alexander Culafi, Senior News Writer