The Security Ledger

DECEMBER 8, 2021

In this Expert Insight, Jack Naglieri, the founder and CEO of Panther Labs, talks about the many challenges of enterprise-scale threat detection and response. Jack provides some steps organizations can take to prepare themselves for the future. The post How to Overcome Threat Detection and Response Challenges appeared first on The Security Ledger. Read the whole entry. » Related Stories Spotting Hackers at the Pace of XDR – From Alerts to Incidents Spotlight: How Secrets Sprawl Under

Security 52

Security Cloud Cybersecurity 52

Krebs on Security

DECEMBER 8, 2021

A 31-year-old Canadian man has been arrested and charged with fraud in connection with numerous ransomware attacks against businesses, government agencies and private citizens throughout Canada and the United States. Canadian authorities describe him as “the most prolific cybercriminal we’ve identified in Canada,” but so far they’ve released few other details about the investigation or the defendant.

IT 259

IT Ransomware Mining Sales 259

Security Affairs

DECEMBER 8, 2021

Moobot is a Mirai-based botnet that is leveraging a critical command injection vulnerability in the webserver of some Hikvision products. The Mirai -based Moobot botnet is rapidly spreading by exploiting a critical command injection flaw, tracked as CVE-2021-36260 , in the webserver of several Hikvision products. The Moobot was first documented by Palo Alto Unit 42 researchers in February 2021, the recent attacks demonstrated that its authors are enhancing their malware.

IoT 132

IoT Access Risk IT 132

Dark Reading

DECEMBER 8, 2021

Cybercriminals are increasingly adopting "living-off-the-land’ techniques, leveraging commonly used tools to fly under the radar of conventional detection tools. But with AI, thousands of organizations have regained the upper hand.

116

116

Advertisement

Many organizations today are unlocking the power of their data by using graph databases to feed downstream analytics, enahance visualizations, and more. Yet, when different graph nodes represent the same entity, graphs get messy. Watch this essential video with Senzing CEO Jeff Jonas on how adding entity resolution to a graph database condenses network graphs to improve analytics and save your analysts time.

Analytics

Security Affairs

DECEMBER 8, 2021

SonicWall strongly urges customers using SMA 100 series appliances to install security patches that address multiple security flaws, some of them rated as critical. Security vendor SonicWall urges customers using SMA 100 series appliances to apply security patches that address multiple security vulnerabilities, some of which have been rated as critical. “SonicWall has verified and patched vulnerabilities of critical and medium severity (CVSS 5.3-9.8) in SMA 100 series appliances, which inc

Authentication 121

Authentication Security Information Security IT 121

Threatpost

DECEMBER 8, 2021

The lurking code-bombs lift Discord tokens from users of any applications that pulled the packages into their code bases.

Security 111

Security 111

DXC Technology

DECEMBER 8, 2021

?????????????????????ServiceNow?????????????????????????????????????????????????DXC???????????ServiceNow HR Service Delivery????HRSD?????????????? DXC?EHS?Environment, Health and Safety??????????????????????????????????????????????????????????????????EHS?????????????????????????????????????????????????????Environment????????Health????????Safety?????????????????????????????

Sales 87

Sales IT 87

Threatpost

DECEMBER 8, 2021

Unauthenticated, remote attackers can achieve root-level RCE on SMA 100-series appliances.

Cloud 121

Cloud Security 121

WIRED Threat Level

DECEMBER 8, 2021

The move delivers a blow to the hackers behind sophisticated attacks on government agencies, think tanks, and other organizations.

Government 100

Government Security 100

Speaker: Aarushi Kansal, AI Leader & Author and Tony Karrer, Founder & CTO at Aggregage

Software leaders who are building applications based on Large Language Models (LLMs) often find it a challenge to achieve reliability. It’s no surprise given the non-deterministic nature of LLMs. To effectively create reliable LLM-based (often with RAG) applications, extensive testing and evaluation processes are crucial. This often ends up involving meticulous adjustments to prompts.

IT

Threatpost

DECEMBER 8, 2021

The flaws, which could enable attackers to disable security and gain kernel-level privileges, affect Amazon WorkSpaces and other cloud services that use USB over Ethernet.

Cloud 83

Cloud Security 83

WIRED Threat Level

DECEMBER 8, 2021

Unless you manually opt out of the program, Verizon will store personal information and create user interest profiles.

Customer Experience 104

Customer Experience Privacy Security 104

Threatpost

DECEMBER 8, 2021

The botnet, which resurfaced last month on the back of TrickBot, can now directly install Cobalt Strike on infected devices, giving threat actors direct access to targets.

Ransomware 81

Ransomware Access Security 81

Thales Cloud Protection & Licensing

DECEMBER 8, 2021

SOAR + IAM: The Perfect Recipe for Threat Management and Response. divya. Thu, 12/09/2021 - 06:42. Incident detection and response are crucial for effective security operations and business continuity. SOAR (security orchestration, automation & response) systems empower security operation teams to identify threats sooner, make smarter incident response decisions, and automate corrective playbook actions that would otherwise be subject to manual processing glitches.

Authentication 71

Authentication Access Risk Data breaches 71

Advertisement

Geopolitical risk is now at the top of the agenda for CEOs. But tracking it can be difficult. The world is more interconnected than ever, whether in terms of economics and supply chains or technology and communication. Geopolitically, however, it is becoming increasingly fragmented – threatening the operations, financial well-being, and security of globally connected companies.

Risk

Dark Reading

DECEMBER 8, 2021

To transition to a zero-trust architecture, focus on doing the things that offer the most value.

Security 105

Security 105

Security Affairs

DECEMBER 8, 2021

A cyberattack hit CS Energy in Australia on Saturday, November 27, experts believe the attack was orchestrated by Chinese hackers. A ransomware cyberattack hit a major energy network operated by CS Energy, that attack could have had dramatic consequences leaving millions of homes without energy. The attack took place on Saturday, November 27, experts believe it was launched by Chinese hackers.

Ransomware 104

Ransomware Security IT Information Security 104

IG Guru

DECEMBER 8, 2021

Check out the article. The post Banks ordered to promptly flag cybersecurity incidents under new U.S. rule via Reuters appeared first on IG GURU.

Cybersecurity 81

Cybersecurity Information governance Risk Compliance 81

DXC Technology

DECEMBER 8, 2021

Manufacturing, healthcare, retail, utilities, construction and other industries all can benefit by using specialized, end-to-end ERP solutions that include automation capabilities. It’s a good time for the construction industry, including residential builders, to look closely at their options here. The sector, which saw a decline in output in 2020, is now recovering, with an expected […].

Retail 69

Retail Manufacturing 69

Advertisement

Apache Cassandra is an open-source distributed database that boasts an architecture that delivers high scalability, near 100% availability, and powerful read-and-write performance required for many data-heavy use cases. However, many developers and administrators who are new to this NoSQL database often encounter several challenges that can impact its performance.

Security

Dark Reading

DECEMBER 8, 2021

New, global-scale attacks aren't a security problem; they're a big data problem requiring a data-led solution.

Big data 90

Big data Security 90

Threatpost

DECEMBER 8, 2021

DoH! Nate Warfield, CTO of Prevailion, discusses new stealth tactics threat actors are using for C2, including Malleable C2 from Cobalt Strike's arsenal.

Security 73

Security 73

Dark Reading

DECEMBER 8, 2021

It's reportedly the first time this has happened since the takedown of Emotet in January 2021, say the researchers who made the discovery.

IT 69

IT 69

Threatpost

DECEMBER 8, 2021

Attackers are milking unpatched Hikvision video systems to drop a DDoS botnet, researchers warned.

IoT 85

IoT Security 85

Advertisement

“Reimagined: Building Products with Generative AI” is an extensive guide for integrating generative AI into product strategy and careers featuring over 150 real-world examples, 30 case studies, and 20+ frameworks, and endorsed by over 20 leading AI and product executives, inventors, entrepreneurs, and researchers.

WIRED Threat Level

DECEMBER 8, 2021

The Russia-led campaign was a wake-up call to the industry, but there's no one solution to the threat.

Security 75

Security 75

Jamf

DECEMBER 8, 2021

We’ve upgraded Jamf Training with new features accessible through your Jamf Account to give you more visibility and control over your course enrollments and certifications.

Access 52

Access 52

ForAllSecure

DECEMBER 8, 2021

We’re pushing out code faster than ever before. Current estimates show that there are over 111 billion lines of new code written per year. How will we scale security testing in tandem with the rate at which code is developed and deployed? Integrating fuzzing as a part of your DevOps pipeline can deliver big results: security and development alignment, shortened feedback and testing cycles, and clear insight into what is -- and isn’t -- being tested.

Libraries 52

Libraries Security IT 52

Jamf

DECEMBER 8, 2021

Cryptojacking, the unauthorized use of a computer to mine cryptocurrency, is an increasingly common threat. How do you spot the warning signs, and how do you prevent cryptojacking attempts?

Mining 52

Mining 52

Advertisement

If you’re considering migrating from DataStax Enterprise (DSE) to open source Apache Cassandra®, our comprehensive guide is tailored for architects, engineers, and IT directors. Whether you’re motivated by cost savings, avoiding vendor lock-in, or embracing the vibrant open-source community, Apache Cassandra offers robust value. Transition seamlessly to Instaclustr Managed Cassandra with our expert insights, ensuring zero downtime during migration.

IT

Dark Reading

DECEMBER 8, 2021

Two vulnerabilities in a call-center software suite could allow an attacker to take over the application server, researchers found.

Authentication 86

Authentication 86

Security Affairs

DECEMBER 8, 2021

CyberNews researchers discovered a Desktop Services Store (DS_STORE) file left on a publicly accessible web server that belongs to Microsoft Vancouver. Original post @ [link]. The metadata stored on the file led the researchers to several WordPress database dumps, which contained multiple administrator usernames and email addresses, as well as the hashed password for the Microsoft Vancouver website.

Passwords 104

Passwords Metadata File names Phishing 104

Dark Reading

DECEMBER 8, 2021

Industrial control systems security firm reaches $635M in funding with this Series E round.

IoT 58

IoT Security 58