News

Malicious logins from suspicious infrastructure fuel identity-based incidents

cybercrime, cybersecurity, Expel, identity, News, report, survey /

Malicious logins from suspicious infrastructure fuel identity-based incidents 2024-02-02 at 06:01 By Help Net Security 69% of identity-based incidents involved malicious logins from suspicious infrastructure, which are hosting providers or proxies that aren’t expected for a user or organization, according to Expel. Identity-based incidents accounted for 64% of all incidents investigated by the Expel SOC, […]

Malicious logins from suspicious infrastructure fuel identity-based incidents Read More »

FritzFrog botnet exploits Log4Shell, PwnKit vulnerabilities

Akamai, botnet, Don't miss, exploit, Hot stuff, Linux, Log4j, Malware, News, vulnerability /

FritzFrog botnet exploits Log4Shell, PwnKit vulnerabilities 2024-02-01 at 17:31 By Helga Labus The FritzFrog cryptomining botnet has new potential for growth: a recently analyzed variant of the bot is exploiting the Log4Shell (CVE-2021-44228) and PwnKit (CVE-2021-4034) vulnerabilities for lateral movement and privilege escalation. The FritzFrog botnet The FritzFrog botnet, initially identified in August 2020, is

FritzFrog botnet exploits Log4Shell, PwnKit vulnerabilities Read More »

FBI disrupts Chinese botnet used for targeting US critical infrastructure

botnet, China, critical infrastructure, Don't miss, FBI, Hot stuff, News, USA /

FBI disrupts Chinese botnet used for targeting US critical infrastructure 2024-02-01 at 15:17 By Helga Labus The FBI has disrupted the KV botnet, used by People’s Republic of China (PRC) state-sponsored hackers (aka “Volt Typhoon”) to target US-based critical infrastructure organizations. A botnet for probing critical infrastructure organizations The threat actors used the KV botnet

FBI disrupts Chinese botnet used for targeting US critical infrastructure Read More »

Trustwave MailMarshal Now Available on the Microsoft Azure Marketplace

News /

Trustwave MailMarshal Now Available on the Microsoft Azure Marketplace 2024-02-01 at 15:02 By Trustwave MailMarshal is now listed on the Microsoft Azure Marketplace, an online store for solutions that are built on or built for Azure and intended for IT professionals and developers. Trustwave MailMarshal joins an illustrious list of IT software applications and services

Trustwave MailMarshal Now Available on the Microsoft Azure Marketplace Read More »

Threat actor used Vimeo, Ars Technica to serve second-stage malware

cybercrime, Don't miss, EU, Hot stuff, Malware, Mandiant, News, theft, USB devices /

Threat actor used Vimeo, Ars Technica to serve second-stage malware 2024-02-01 at 12:31 By Zeljka Zorz A financially motivated threat actor tracked as UNC4990 is using booby-trapped USB storage devices and malicious payloads hosted on popular websites such as Ars Technica, Vimeo, GitHub and GitLab to surreptitiously deliver malware. Another interesting detail about UNC4990 it’s

Threat actor used Vimeo, Ars Technica to serve second-stage malware Read More »

Zero trust implementation: Plan, then execute, one step at a time

access management, authentication, Don't miss, Hot stuff, News, strategy, tips, zero trust /

Zero trust implementation: Plan, then execute, one step at a time 2024-02-01 at 08:02 By Helga Labus 82% of cybersecurity professionals have been working on implementing zero trust last year, and 16% should be on it by the end of this year. The challenges of zero trust implementation You’ve probably heard it before: zero trust

Zero trust implementation: Plan, then execute, one step at a time Read More »

Custom rules in security tools can be a game changer for vulnerability detection

cybersecurity, Don't miss, Features, Hot stuff, News, opinion, scanning, Semgrep, software development, strategy, tips /

Custom rules in security tools can be a game changer for vulnerability detection 2024-02-01 at 07:32 By Mirko Zorz In this Help Net interview, Isaac Evans, CEO at Semgrep, discusses the balance between speed and thoroughness in CI/CD pipeline security scanning. Stressing the need to avoid slowing down the process, he recommends a nuanced approach,

Custom rules in security tools can be a game changer for vulnerability detection Read More »

CVEMap: Open-source tool to query, browse and search CVEs

CISA, CVE, cybersecurity, Don't miss, GitHub, HackerOne, Hot stuff, News, open source, Project Discovery, software /

CVEMap: Open-source tool to query, browse and search CVEs 2024-02-01 at 07:01 By Mirko Zorz CVEMap is an open-source command-line interface (CLI) tool that allows you to explore Common Vulnerabilities and Exposures (CVEs). It’s designed to offer a streamlined and user-friendly interface for navigating vulnerability databases. Although CVEs are crucial for pinpointing and discussing security

CVEMap: Open-source tool to query, browse and search CVEs Read More »

Payment fraud is hitting organizations harder than ever before

cybercrime, cybersecurity, fraud, News, report, survey, Trustpair /

Payment fraud is hitting organizations harder than ever before 2024-02-01 at 06:01 By Help Net Security 96% of US companies were targeted with at least one fraud attempt in the past year, according to Trustpair. 83% of US companies saw an increase in cyber fraud attempts on their organization in the past year. Fraudsters primarily

Payment fraud is hitting organizations harder than ever before Read More »

Infosec products of the month: January 2024

1Kosmos, Atakama, Critical Start, Dasera, ID R&D, Living Security, News, Onfido, Regula, Searchlight Cyber, Seceon, Skopenow, Skyhigh Security, SpecterOps, Veriti, Wing Security /

Infosec products of the month: January 2024 2024-02-01 at 05:46 By Help Net Security Here’s a look at the most interesting products from the past month, featuring releases from: 1Kosmos, Atakama, Critical Start, Dasera, ID R&D, Living Security, Onfido, Regula, Searchlight Cyber, Seceon, Skopenow, Skyhigh Security, SpecterOps, Veriti, and Wing Security. SpecterOps adds new Attack

Infosec products of the month: January 2024 Read More »

A zero-day vulnerability (and PoC) to blind defenses relying on Windows event logs

0-day, ACROS Security, Don't miss, Hot stuff, intrusion detection, logging, News, PoC, Windows, Windows Server /

A zero-day vulnerability (and PoC) to blind defenses relying on Windows event logs 2024-01-31 at 18:31 By Zeljka Zorz A zero-day vulnerability that, when triggered, could crash the Windows Event Log service on all supported (and some legacy) versions of Windows could spell trouble for enterprise defenders. Discovered by a security researcher named Florian and

A zero-day vulnerability (and PoC) to blind defenses relying on Windows event logs Read More »

Free ransomware recovery tool White Phoenix now has a web version

cybercrime, cybersecurity, disaster recovery, Don't miss, Hot stuff, Malware, News, Ransomware, software /

Free ransomware recovery tool White Phoenix now has a web version 2024-01-31 at 10:17 By Help Net Security White Phoenix is a free ransomware recovery tool for situations where files are encrypted with intermittent encryption. It was tested on BlackCat/ALPHV Ransomware, Play Ransomware, Qilin/Agenda Ransomware, BianLian Ransomware, and DarkBit. Intermittent encryption occurs when ransomware chooses

Free ransomware recovery tool White Phoenix now has a web version Read More »

Does CVSS 4.0 solve the exploitability problem?

CVSS, cybersecurity, Don't miss, Expert analysis, Hot stuff, IBS Software, News, opinion, vulnerability management /

Does CVSS 4.0 solve the exploitability problem? 2024-01-31 at 08:03 By Help Net Security The newest version of the vulnerability scoring system CVSS 4.0 is here! After a lengthy gap between version 3 (released in 2015), as of November 2023 version 4.0 is officially live. Building iteratively on version 3 there are a few differences

Does CVSS 4.0 solve the exploitability problem? Read More »

Proactive cybersecurity: A strategic approach to cost efficiency and crisis management

CDW, cyberattacks, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, risk assessment, strategy, zero trust /

Proactive cybersecurity: A strategic approach to cost efficiency and crisis management 2024-01-31 at 07:31 By Mirko Zorz In this Help Net Security interview, Stephanie Hagopian, VP of Security at CDW, discusses offensive strategies in the face of complex cyberattacks and the role of the zero-trust model. The conversation also covers the essential steps for a

Proactive cybersecurity: A strategic approach to cost efficiency and crisis management Read More »

How to make developers accept DevSecOps

CISO, code, DevOps, DevSecOps, Don't miss, Hot stuff, News, skill development, software development /

How to make developers accept DevSecOps 2024-01-31 at 07:05 By Helga Labus According to a recent Dynatrace report, only 50% of CISOs believe that development teams have thoroughly tested the software for vulnerabilities before deploying it into the production environment. This is a statistic that needs to change and the only way to change it

How to make developers accept DevSecOps Read More »

Cybercriminals replace familiar tactics to exfiltrate sensitive data

cybercrime, cybersecurity, Data exfiltration, Delinea, News, Ransomware, report, survey /

Cybercriminals replace familiar tactics to exfiltrate sensitive data 2024-01-31 at 06:35 By Help Net Security Ransomware attacks are increasing again as cybercriminals’ motivation shifts to data exfiltration, according to Delinea. The familiar tactics of crippling a company and holding it hostage have been replaced by new strategies that use stealth to exfiltrate private and sensitive

Cybercriminals replace familiar tactics to exfiltrate sensitive data Read More »

Database management enters a new era of complexity

Cloud, data, database management, News, Redgate, report, skill development, survey /

Database management enters a new era of complexity 2024-01-31 at 06:02 By Help Net Security Increasing complexity, the rapid adoption of emerging technologies and a growing skills gap are the biggest concerns facing IT leaders in 2024, according to Redgate. 30% of development teams now deploy database changes to production in a day or less,

Database management enters a new era of complexity Read More »

Self-managed GitLab installations should be patched again (CVE-2024-0402)

DevOps, Don't miss, GitLab, Hot stuff, News, security update, software development, vulnerability /

Self-managed GitLab installations should be patched again (CVE-2024-0402) 2024-01-30 at 14:02 By Zeljka Zorz Less than two weeks after having plugged a security hole that allows account takeover without user interaction, GitLab Inc. has patched a critical vulnerability (CVE-2024-0402) in GitLab CE/EE again and is urging users to update their installations immediately. GitLab Inc. operates

Self-managed GitLab installations should be patched again (CVE-2024-0402) Read More »

Hundreds of network operators’ credentials found circulating in Dark Web

cybercrime, cybersecurity, dark web, News, Resecurity /

Hundreds of network operators’ credentials found circulating in Dark Web 2024-01-30 at 10:44 By Help Net Security After the recent incident involving Orange España and the leakage of credentials from the RIPE NCC portal, which led to a major outage, the cybersecurity community needs to reconsider the digital identity protection for staff engaged in network

Hundreds of network operators’ credentials found circulating in Dark Web Read More »

Great security or great UX? Both, please

authentication, biometrics, cybersecurity, Don't miss, Expert analysis, Frontegg, Hot stuff, News, opinion, passwords, SaaS /

Great security or great UX? Both, please 2024-01-30 at 08:02 By Help Net Security A new user is signing up for a SaaS application. On the one hand, UX teams want that user to get into the app as quickly as possible. On the other hand, security teams want the user to strongly validate their

Great security or great UX? Both, please Read More »

Scroll to Top