Hot stuff - Security Ticks

Shifting left and right, innovating product security

CISO, collaboration, Compliance, Cybellum, cybersecurity, Don't miss, Features, Hot stuff, Incident Response, News, opinion, policy, regulation, software, standards, strategy / SecurityTicks

Shifting left and right, innovating product security 07/09/2023 at 07:03 By Mirko Zorz In this Help Net Security interview, Slava Bronfman, CEO at Cybellum, discusses approaches for achieving product security throughout a device’s entire lifecycle, fostering collaboration across business units and product lines, ensuring transparency and security in the supply chain, and meeting regulatory requirements […]

Shifting left and right, innovating product security Read More »

Old vulnerabilities are still a big problem

cybercrime, Don't miss, exploit, Fortinet, Hot stuff, Malware, News, patching, Qualys, Ransomware, vulnerability / SecurityTicks

Old vulnerabilities are still a big problem 06/09/2023 at 17:01 By Zeljka Zorz A recently flagged phishing campaign aimed at delivering the Agent Tesla RAT to unsuspecting users takes advantage of old vulnerabilities in Microsoft Office that allow remote code execution. “Despite fixes for CVE-2017-11882/CVE-2018-0802 being released by Microsoft in November, 2017 and January, 2018,

Old vulnerabilities are still a big problem Read More »

Cybercriminals target MS SQL servers to deliver ransomware

brute-force, Don't miss, Hot stuff, Microsoft, MS SQL Server, News, Ransomware / SecurityTicks

Cybercriminals target MS SQL servers to deliver ransomware 06/09/2023 at 16:02 By Helga Labus A cyberattack campaign is targeting exposed Microsoft SQL (MS SQL) databases, aiming to deliver ransomware and Cobalt Strike payloads. The attack campaign The attackers target exposed MS SQL servers by brute-forcing access credentials. After having successfully authenticated, they start enumerating the

Cybercriminals target MS SQL servers to deliver ransomware Read More »

Emerging threat: AI-powered social engineering

Artificial Intelligence, cybercrime, cybersecurity, deepfakes, Don't miss, Email, Europe, Expert analysis, Expert corner, extortion, Hot stuff, law, News, phishing, social engineering, WithSecure / SecurityTicks

Emerging threat: AI-powered social engineering 06/09/2023 at 07:32 By Help Net Security Social engineering is a sophisticated form of manipulation but, thanks to AI advancements, malicious groups have gained access to highly sophisticated tools, suggesting that we might be facing more elaborate social engineering attacks in the future. It is becoming increasingly evident that the

Emerging threat: AI-powered social engineering Read More »

Cyber talent gap solutions you need to know

CISO, cybersecurity, Don't miss, Hot stuff, how-to, skill development, strategy, ThreatX, tips, Video / SecurityTicks

Cyber talent gap solutions you need to know 06/09/2023 at 07:03 By Help Net Security 90% of consumers across the US and UK are concerned about cybersecurity’s future if students aren’t exposed to the field at an earlier age, according to ThreatX. 88% are worried that today’s talent shortage will negatively impact protection of their

Cyber talent gap solutions you need to know Read More »

Atlas VPN zero-day allows sites to discover users’ IP address

0-day, Don't miss, exploit, Hot stuff, Linux, News, VPN, vulnerability / SecurityTicks

Atlas VPN zero-day allows sites to discover users’ IP address 05/09/2023 at 20:47 By Zeljka Zorz Atlas VPN has confirmed the existence of a zero-day vulnerability that may allow website owners to discover Linux users’ real IP address. Details about this zero-day vulnerability as well as exploit code have been publicly released on Reddit several

Atlas VPN zero-day allows sites to discover users’ IP address Read More »

LockBit leaks sensitive data from maximum security fence manufacturer

critical infrastructure, data breach, Data leak, Don't miss, Hot stuff, legacy technology, News, UK, Windows / SecurityTicks

LockBit leaks sensitive data from maximum security fence manufacturer 05/09/2023 at 17:32 By Helga Labus The LockBit ransomware group has breached Zaun, a UK-based manufacturer of fencing systems for military sites and critical utilities, by compromising a legacy computer running Windows 7 and using it as an initial point of access to the wider company

LockBit leaks sensitive data from maximum security fence manufacturer Read More »

Connected cars and cybercrime: A primer

attacks, connected cars, cybercrime, cybercriminals, cybersecurity, Don't miss, Expert analysis, Expert corner, exploit, Hot stuff, identity theft, Keylogger, Malware, News, opinion, phishing, VicOne / SecurityTicks

Connected cars and cybercrime: A primer 05/09/2023 at 08:02 By Help Net Security Original equipment suppliers (OEMs) and their suppliers who are weighing how to invest their budgets might be inclined to slow pedal investment in addressing cyberthreats. To date, the attacks that they have encountered have remained relatively unsophisticated and not especially harmful. Analysis

Connected cars and cybercrime: A primer Read More »

The misconceptions preventing wider adoption of digital signatures

certification, Compliance, cybersecurity, digital signature, Don't miss, Features, fidentity, Government, healthcare, Hot stuff, identity, identity verification, News, PDF, regulation, security ROI / SecurityTicks

The misconceptions preventing wider adoption of digital signatures 05/09/2023 at 07:33 By Mirko Zorz In this Help Net Security interview, Thorsten Hau, CEO at fidentity, discusses the legal validity of qualified digital signatures, demonstrating their equivalence to handwritten signatures when backed by robust identity verification. Opting for certified providers that adhere to standards like eIDAS

The misconceptions preventing wider adoption of digital signatures Read More »

Why end-to-end encryption matters

Don't miss, Encryption, Hot stuff, Hyperproof, IEEE, tips, Video / SecurityTicks

Why end-to-end encryption matters 05/09/2023 at 07:16 By Help Net Security In this Help Net Security video, Kayne McGladrey, IEEE Senior Member and Field CISO at Hyperproof, discusses end-to-end encryption (E2EE). E2EE ensures that only two parties – a sender and a receiver – can access data, and helps to protect consumers and businesses from

Why end-to-end encryption matters Read More »

6 free resources for getting started in cybersecurity

cybersecurity, Don't miss, Hot stuff, how-to, News, skill development, strategy, tips / SecurityTicks

6 free resources for getting started in cybersecurity 05/09/2023 at 06:32 By Help Net Security Cybersecurity is not just a career field on the rise – it’s a calling that’s increasingly vital to the infrastructure of our world. But stepping into the universe of threat vectors and intrusion detection systems might sound like a journey

6 free resources for getting started in cybersecurity Read More »

5 ways in which FHE can solve blockchain’s privacy problems

blockchain, cybersecurity, data security, Don't miss, Encryption, Expert analysis, Expert corner, framework, Hot stuff, News, opinion, Privacy, supply chain, Zama / SecurityTicks

5 ways in which FHE can solve blockchain’s privacy problems 04/09/2023 at 08:02 By Help Net Security Blockchain technology has gained significant traction due to its decentralized nature and immutability, providing transparency and security for various applications, especially in finance. Having gained notoriety during the 2010s with the boom of cryptocurrencies such as Bitcoin, skilled

5 ways in which FHE can solve blockchain’s privacy problems Read More »

How Ducktail capitalizes on compromised business, ad accounts

account hijacking, Don't miss, Facebook, Hot stuff, LinkedIn, Malware, News, phishing, social media, TikTok, Zscaler / SecurityTicks

How Ducktail capitalizes on compromised business, ad accounts 01/09/2023 at 12:04 By Helga Labus Quite some money can be made from selling compromised business and ad accounts on social media platforms, and the Ducktail threat actor has specialized in just that. “We observed that an account deemed ‘low-grade’ sells for around 350,000 Vietnamese dong (~$15

How Ducktail capitalizes on compromised business, ad accounts Read More »

Cisco VPNs with no MFA enabled hit by ransomware groups

Arctic Wolf Networks, brute-force, Cisco, Don't miss, enterprise, Hot stuff, MFA, News, Ransomware, Rapid7, SMBs, VPN / SecurityTicks

Cisco VPNs with no MFA enabled hit by ransomware groups 31/08/2023 at 14:46 By Zeljka Zorz Since March 2023 (and possibly even earlier), affiliates of the Akira and LockBit ransomware operators have been breaching organizations via Cisco ASA SSL VPN appliances. “In some cases, adversaries have conducted credential stuffing attacks that leveraged weak or default

Cisco VPNs with no MFA enabled hit by ransomware groups Read More »

Apple offers security researchers specialized iPhones to tinker with

apple, bug bounty, bug hunting, Don't miss, Hot stuff, iOS, News, research / SecurityTicks

Apple offers security researchers specialized iPhones to tinker with 31/08/2023 at 13:05 By Helga Labus Apple is inviting security researchers to apply for the Apple Security Research Device Program (SRDP) again, to discover vulnerabilities and earn bug bounties. Apple started the Apple SRDP in 2019. In the intervening years, participating researchers have identified 130 security-critical

Apple offers security researchers specialized iPhones to tinker with Read More »

The power of passive OS fingerprinting for accurate IoT device identification

access control, Cato Networks, cybersecurity, DDoS, Don't miss, Expert analysis, Expert corner, Hot stuff, IoT, monitoring, network, News, operating system, opinion, policy, SASE, software, TCP/IP / SecurityTicks

The power of passive OS fingerprinting for accurate IoT device identification 31/08/2023 at 07:31 By Help Net Security The number of IoT devices in enterprise networks and across the internet is projected to reach 29 billion by the year 2030. This exponential growth has inadvertently increased the attack surface. Each interconnected device can potentially create

The power of passive OS fingerprinting for accurate IoT device identification Read More »

What does optimal software security analysis look like?

Artificial Intelligence, code analysis, Codean, cybersecurity, Don't miss, Features, fuzzing, Hot stuff, machine learning, News, opinion, software / SecurityTicks

What does optimal software security analysis look like? 31/08/2023 at 07:01 By Mirko Zorz In this Help Net Security interview, Kevin Valk, co-CEO at Codean, discusses the consequences of relying solely on automated tools for software security. He explains how these tools can complement human knowledge to enhance software security analysis and emphasizes the need

What does optimal software security analysis look like? Read More »

ChatGPT on the chopping block as organizations reevaluate AI usage

ChatGPT, CISO, cybersecurity, Don't miss, generative AI, Hot stuff, opinion, strategy, tips, Video / SecurityTicks

ChatGPT on the chopping block as organizations reevaluate AI usage 31/08/2023 at 06:31 By Help Net Security ChatGPT has attracted hundreds of millions of users and was initially praised for its transformative potential. However, concerns for safety controls and unpredictability have landed it on IT leaders’ list of apps to ban in the workplace. In

ChatGPT on the chopping block as organizations reevaluate AI usage Read More »

The removal of Qakbot from infected computers is just the first step

account hijacking, botnet, Don't miss, Europe, FBI, Hot stuff, Malware, News, remediation, Shadowserver, Spamhaus, USA / SecurityTicks

The removal of Qakbot from infected computers is just the first step 30/08/2023 at 14:46 By Zeljka Zorz The Qakbot botnet has been disrupted by an international law enforcement operation that culminated last weekend, when infected computers started getting untethered from it by specially crafted FBI software. Arranging a widespread Qakbot removal The Qakbot administrators

The removal of Qakbot from infected computers is just the first step Read More »

VMware fixes critical vulnerability in Aria Operations for Networks (CVE-2023-34039)

Don't miss, Hot stuff, News, security update, VMWare, vulnerability / SecurityTicks

VMware fixes critical vulnerability in Aria Operations for Networks (CVE-2023-34039) 30/08/2023 at 14:01 By Helga Labus VMware has patched one critical (CVE-2023-34039) and one high-severity vulnerability (CVE-2023-20890) in Aria Operations for Networks, its popular enterprise network monitoring tool. About the vulnerabilities (CVE-2023-34039, CVE-2023-20890) CVE-2023-34039 is a network bypass vulnerability arising as a result of a

VMware fixes critical vulnerability in Aria Operations for Networks (CVE-2023-34039) Read More »