News

Ransomware attacks set to break records in 2023

attacks, Corvus Insurance, cybersecurity, exploit, News, Ransomware, report /

Ransomware attacks set to break records in 2023 01/11/2023 at 08:01 By Help Net Security Ransomware attacks continue at a record-breaking pace, with Q3 2023 global ransomware attack frequency up 11% over Q2 and 95% year-over-year (YoY), according to Corvus Insurance. In its Q2 2023 Global Ransomware Report, Corvus noted a significant resurgence in global […]

React to this headline:

Loading spinner

Ransomware attacks set to break records in 2023 Read More »

Mainframes are around to stay, it’s time to protect them

Compliance, cybersecurity, data, DevOps, mainframe security, News, open source, report, Rocket Software, survey, vulnerability management /

Mainframes are around to stay, it’s time to protect them 01/11/2023 at 07:31 By Help Net Security While many organizations run their core business applications on the mainframe, IT leaders lack confidence in the effectiveness of their mainframe security compliance, signaling a need for more robust security practices, according to Rocket Software. For decades, mainframe

React to this headline:

Loading spinner

Mainframes are around to stay, it’s time to protect them Read More »

The hidden costs of Java, and the impact of pricing changes

Azul, Cloud, cloud computing, CVE, cybersecurity, Java, Log4j, News, open source, Oracle, report, survey /

The hidden costs of Java, and the impact of pricing changes 01/11/2023 at 07:01 By Help Net Security An overwhelming 98% of all the businesses surveyed use Java in their software applications or infrastructure, and 57% of those organizations indicate that Java is the backbone of most of their applications, according to Azul. When including

React to this headline:

Loading spinner

The hidden costs of Java, and the impact of pricing changes Read More »

Infosec products of the month: October 2023

Appdome, Arcitecta, AuditBoard, BackBox, Cloaked, ComplyCube, Darktrace, Data Theorem, Flexxon, Fortanix, Fortinet, Jumio, LogicMonitor, Malwarebytes, ManageEngine, News, Nutanix, Prevalent, Progress, SailPoint, Thales, Vanta, Veriff, Wazuh /

Infosec products of the month: October 2023 01/11/2023 at 06:32 By Help Net Security Here’s a look at the most interesting products from the past month, featuring releases from: Appdome, Arcitecta, AuditBoard, BackBox, Cloaked, ComplyCube, Darktrace, Data Theorem, Flexxon, Fortanix, Fortinet, Jumio, LogicMonitor, Malwarebytes, ManageEngine, Nutanix, Prevalent, Progress, SailPoint, Thales, Vanta, Veriff, and Wazuh. Veriff

React to this headline:

Loading spinner

Infosec products of the month: October 2023 Read More »

Israel Calls In Hackers And Spyware Companies To Break Into Abductees’ Phones

cybersecurity, Editors' Pick, Innovation, News, premium, Premium Content, premiumcontent, Technology /

Israel Calls In Hackers And Spyware Companies To Break Into Abductees’ Phones 31/10/2023 at 17:33 By Thomas Brewster, Forbes Staff The whole of Israel’s hacker ecosystem “is devoted to the effort to gather any kind of information,” one analyst tells Forbes. This article is an excerpt from Forbes – Cybersecurity View Original Source React to

React to this headline:

Loading spinner

Israel Calls In Hackers And Spyware Companies To Break Into Abductees’ Phones Read More »

BiBi-Linux wiper targets Israeli companies

Don't miss, Hacktivism, Hot stuff, Israel, Linux, Malware, News, Security Joes /

BiBi-Linux wiper targets Israeli companies 31/10/2023 at 15:01 By Helga Labus Attackers have started using new wiper malware called BiBi-Linux to attack Israeli companies and destroy their data. The BiBi-Linux wiper The Security Joes Incident Response team found the malware during a forensics investigation of a breach within an Israeli company. “This malware is an

React to this headline:

Loading spinner

BiBi-Linux wiper targets Israeli companies Read More »

Atlassian patches critical Confluence bug, urges for immediate action (CVE-2023-22518)

Atlassian Confluence, Don't miss, Hot stuff, News, security update, vulnerability /

Atlassian patches critical Confluence bug, urges for immediate action (CVE-2023-22518) 31/10/2023 at 13:16 By Zeljka Zorz Atlassian is urging enterprise administrators to update their on-premises Confluence Data Center and Server installations quickly to plug a critical security vulnerability (CVE-2023-22518) that could lead to “significant data loss if exploited by an unauthenticated attacker.” About CVE-2023-22518 CVE-2023-22518

React to this headline:

Loading spinner

Atlassian patches critical Confluence bug, urges for immediate action (CVE-2023-22518) Read More »

SolarWinds and CISO accused of fraud, control failures

CISO, Government, law, News, SolarWinds, USA /

SolarWinds and CISO accused of fraud, control failures 31/10/2023 at 11:16 By Help Net Security The Securities and Exchange Commission announced charges against SolarWinds and its CISO, Timothy G. Brown, for fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities. The complaint alleges that, from at least its October 2018 initial

React to this headline:

Loading spinner

SolarWinds and CISO accused of fraud, control failures Read More »

From Windows 9x to 11: Tracing Microsoft’s security evolution

CISA, CISO, cybersecurity, Don't miss, Features, Hot stuff, Linux, macOS, Microsoft, News, opinion, strategy, Tenable, Windows /

From Windows 9x to 11: Tracing Microsoft’s security evolution 31/10/2023 at 09:01 By Mirko Zorz Over its journey from Windows 9x to Windows 11, Microsoft has implemented multiple security overhauls, each addressing the challenges of its time and setting the stage for future developments. In this Help Net Security interview, we feature security researcher Alex

React to this headline:

Loading spinner

From Windows 9x to 11: Tracing Microsoft’s security evolution Read More »

A closer look at healthcare’s battle with AI-driven attacks

access control, Artificial Intelligence, attacks, authentication, biometrics, cybercrime, cybersecurity, data breach, deepfakes, Don't miss, FBI, Features, fraud, healthcare, Hot stuff, medical devices, MFA, Moss Adams, News, opinion, Privacy, Ransomware /

A closer look at healthcare’s battle with AI-driven attacks 31/10/2023 at 08:02 By Mirko Zorz With its wealth of sensitive patient data, the healthcare industry has become a prime target for cybercriminals leveraging AI tools. As these threats continue to evolve, it’s important to understand how AI is shaping the cybercrime landscape in healthcare and

React to this headline:

Loading spinner

A closer look at healthcare’s battle with AI-driven attacks Read More »

The hidden costs of data breaches for small businesses

cybercrime, cybersecurity, data, data breach, Identity Theft Resource Center, News, Ping Identity, report, Shred-it, survey /

The hidden costs of data breaches for small businesses 31/10/2023 at 07:01 By Help Net Security Nearly 8 in 10 small business leaders admit they are anxious about the safety of their company’s sensitive data and information, according to Shred-it. According to the Identity Theft Resource Center’s report, the number of data breaches remains in

React to this headline:

Loading spinner

The hidden costs of data breaches for small businesses Read More »

F5 fixes critical BIG-IP vulnerability (CVE-2023-46747)

Don't miss, enterprise, F5 Networks, Hot stuff, News, patch, Praetorian, traffic monitoring, vulnerability /

F5 fixes critical BIG-IP vulnerability (CVE-2023-46747) 30/10/2023 at 18:46 By Helga Labus F5 Networks has released hotfixes for three vulnerabilities affecting its BIG-IP multi-purpose networking devices/modules, including a critical authentication bypass vulnerability (CVE-2023-46747) that could lead to unauthenticated remote code execution (RCE). About CVE-2023-46747 Discovered and reported by Thomas Hendrickson and Michael Weber of Praetorian

React to this headline:

Loading spinner

F5 fixes critical BIG-IP vulnerability (CVE-2023-46747) Read More »

White House issues Executive Order for safe, secure, and trustworthy AI

Artificial Intelligence, critical infrastructure, cybersecurity, DHS, framework, Government, legislation, News, NIST, Privacy, regulation, software, standards, strategy, USA /

White House issues Executive Order for safe, secure, and trustworthy AI 30/10/2023 at 15:47 By Help Net Security President Biden issued a landmark Executive Order to ensure that America leads the way in seizing the promise and managing the risks of artificial intelligence (AI). New standards for AI safety and security As AI’s capabilities grow,

React to this headline:

Loading spinner

White House issues Executive Order for safe, secure, and trustworthy AI Read More »

Citrix Bleed: Mass exploitation in progress (CVE-2023-4966)

Assetnote, Citrix, Don't miss, exploit, hardware, Hot stuff, Mandiant, NetScaler, News, Ransomware, vulnerability /

Citrix Bleed: Mass exploitation in progress (CVE-2023-4966) 30/10/2023 at 14:46 By Zeljka Zorz CVE-2023-4966, aka “Citrix Bleed”, a critical information disclosure vulnerability affecting Citrix NetScaler ADC/Gateway devices, is being massively exploited by threat actors. According to security researcher Kevin Beaumont’s cybersecurity industry sources, one ransomware group has already distributed a Python script to automate the

React to this headline:

Loading spinner

Citrix Bleed: Mass exploitation in progress (CVE-2023-4966) Read More »

Logging Made Easy: Free log management solution from CISA

CISA, Don't miss, GitHub, Hot stuff, log management, logging, NCSC, News, open source, software, Windows /

Logging Made Easy: Free log management solution from CISA 30/10/2023 at 13:17 By Help Net Security CISA launched a new version of Logging Made Easy (LME), a straightforward log management solution for Windows-based devices that can be downloaded and self-installed for free. CISA’s version reimagines technology developed by the United Kingdom’s National Cyber Security Centre

React to this headline:

Loading spinner

Logging Made Easy: Free log management solution from CISA Read More »

Google expands bug bounty program to cover AI-related threats

Artificial Intelligence, bug bounty, Don't miss, Google, Hot stuff, News /

Google expands bug bounty program to cover AI-related threats 30/10/2023 at 12:18 By Helga Labus Google has expanded its bug bounty program, aka Vulnerability Rewards Program (VRP), to cover threats that could arise from Google’s generative AI systems. Google’s AI bug bounty program Following the voluntary commitment to the Biden-⁠Harris Administration to develop responsible AI

React to this headline:

Loading spinner

Google expands bug bounty program to cover AI-related threats Read More »

The dangers of dual ransomware attacks

attacks, authentication, backup, CIO, CISO, Cohesity, collaboration, cybersecurity, data management, data security, digital forensics, disaster recovery, Don't miss, Expert analysis, Expert corner, Hot stuff, Incident Response, News, opinion, Ransomware /

The dangers of dual ransomware attacks 30/10/2023 at 09:32 By Help Net Security At some point in the movie “Groundhog Day,” Phil Connors breaks his bedside radio when he is woken up (yet again) by the song “I Got You Babe”. This déjà vu seems to await companies that fall victim to ransomware and fail

React to this headline:

Loading spinner

The dangers of dual ransomware attacks Read More »

AI threat landscape: Model theft and inference attacks emerge as top concerns

Artificial Intelligence, CISO, collaboration, cybersecurity, data, Don't miss, Features, generative AI, guidelines, Hot stuff, News, opinion, policy, regulation, risk, SaaS, Savvy /

AI threat landscape: Model theft and inference attacks emerge as top concerns 30/10/2023 at 08:31 By Mirko Zorz Generative AI has emerged as a powerful tool, heralded for its potential but also scrutinized for its implications. Enterprises will invest nearly $16 billion worldwide on GenAI solutions in 2023, according to IDC. In this Help Net

React to this headline:

Loading spinner

AI threat landscape: Model theft and inference attacks emerge as top concerns Read More »

Companies scramble to integrate immediate recovery into ransomware plans

cyber insurance, Data Protection, disaster recovery, News, Ransomware, report, strategy, survey, Zerto /

Companies scramble to integrate immediate recovery into ransomware plans 30/10/2023 at 08:01 By Help Net Security More than one-third of companies still do not have a well-rounded, holistic ransomware strategy in place, according to Zerto. Immediate recovery crucial for businesses’ survival The survey also found that companies are reevaluating their data protection and cyber resilience

React to this headline:

Loading spinner

Companies scramble to integrate immediate recovery into ransomware plans Read More »

Cyber attacks cause revenue losses in 42% of small businesses

cyber insurance, cybersecurity, data, data breach, Identity Theft Resource Center, News, Privacy, report, survey /

Cyber attacks cause revenue losses in 42% of small businesses 30/10/2023 at 07:32 By Help Net Security 85% of small business leaders say they are ready to respond to a cyber incident despite a record-high 73% reporting an attack in 2023, according to Identity Theft Resource Center. Employee and consumer data continue to be the

React to this headline:

Loading spinner

Cyber attacks cause revenue losses in 42% of small businesses Read More »

Scroll to Top