Dark Reading

JULY 14, 2021

Hit by ransomware? These missteps can take a bad scenario and make it even worse

Ransomware 82

Ransomware IT 82

Dark Reading

JULY 12, 2021

Microsoft Active Directory, ubiquitous across enterprises, has long been a primary target for attackers seeking network access and sensitive data

Access 73

Access Security 73

OpenText Information Management

JULY 12, 2021

According to EFT, 55 percent of supply chain executives considered web service APIs as an alternative to EDI. But we should know better by now than try to write off electronic data interchange (EDI) again. This isn’t about replacement. It is, as always, about integration.

IT 60

IT B2B IoT 60

Data Breach Today

JULY 16, 2021

Palo Alto Networks Report Describes Tactics of Group Leveraging Open-Source Tools The gang behind the ransomware strain known as Mespinoza, aka PYSA, is targeting manufacturers, schools and others, mainly in the U.S. and U.K., demanding ransom payments as high as $1.6

Ransomware 207

Ransomware Manufacturing 207

Advertiser: Datadog

Companies frequently experience monitoring tool sprawl. Find out why monitoring tool sprawl occurs, why it’s a problem for businesses, and the positive business impacts of monitoring tool consolidation.

IT

Krebs on Security

JULY 13, 2021

Microsoft today released updates to patch at least 116 security holes in its Windows operating systems and related software. At least four of the vulnerabilities addressed today are under active attack, according to Microsoft.

IT 167

IT Security 167

Security Affairs

JULY 16, 2021

The Joker malware is back, experts spotted multiple malicious apps on the official Google Play store that were able to evade scanners. Experts reported an uptick in malicious Android apps on the official Google Play store laced with the Joker mobile trojan.

Encryption 82

Encryption Libraries Cloud Risk 82

Data Breach Today

JULY 15, 2021

Tortoiseshell' Group Used the Social Network to Contact Targets Facebook's threat intelligence team says it has disrupted an Iranian advanced persistent threat group that was using the social network as part of an effort to spread malware and conduct cyberespionage operations, primarily in the U.S.

IT 206

IT 206

Dark Reading

JULY 14, 2021

The attack exploits a known vulnerability that was fixed in new versions of firmware released this year

Ransomware 82

Ransomware 82

WIRED Threat Level

JULY 16, 2021

The security researchers used an infrared photos and third-party hardware to best Microsoft's facial recognition tech. Security Security / Security News

Security 94

Security 94

Advertiser: Datadog

In this eBook, find out the benefits and complexities of migrating workloads to AWS, and services that AWS offers for containers and serverless computing.

Cloud

Security Affairs

JULY 15, 2021

HelloKitty ransomware gang is using a Linux variant of their malware to target VMware ESXi virtual machine platform. A Linux variant of the HelloKitty ransomware was employed in attacks against VMware ESXi systems.

Ransomware 83

Ransomware Encryption Metadata Cybersecurity 83

Data Breach Today

JULY 13, 2021

Flaw in Serv-U File-Transfer Software Unconnected to Orion Supply-Chain Attack Attackers have been actively exploiting a zero-day flaw in SolarWinds' Serv-U Managed File Transfer Server and Serv-U Secured FTP software, the security software vendor warns.

Security 207

Security 207

Troy Hunt

JULY 13, 2021

I've spent more time IoT'ing my house over the last year than any sane person ever should. But hey, it's been strange times for all of us and it's kept me entertained whilst no longer travelling.

Manufacturing 82

Manufacturing Cloud IT Communications 82

WIRED Threat Level

JULY 13, 2021

In response to mass protests, the country has been blocking social media and communication platforms since Sunday—an increasingly common action worldwide. Security Security / Security News

Communications 88

Communications Security 88

Advertiser: Datadog

In this eBook, Danny Miles, CTO of Dollar Shave Club, reveals an efficient framework for thinking about and prioritizing the performance metrics that matter most to him, providing a blueprint for fellow e-commerce CTOs to follow as they evaluate their own business.

Security Affairs

JULY 14, 2021

Google security experts revealed that Russia-linked APT group targeted LinkedIn users with Safari zero-day. Security researchers from Google Threat Analysis Group (TAG) and Google Project Zero revealed that four zero-day vulnerabilities have been exploited in the wild earlier this year.

Government 83

Government Cybersecurity IT Information Security 83

Data Breach Today

JULY 12, 2021

Biden Administration Says Attempted Ransomware Disruption Efforts Won't Be Immediate As the Biden administration attempts to force Russia to crack down on its domestic cybercriminals, one challenge will be the sheer diversity of attack code being wielded and individuals involved.

Ransomware 207

Ransomware IT 207

Dark Reading

JULY 12, 2021

RiskIQ's technology helps businesses assess their security across the Microsoft cloud, Amazon Web Services, other clouds, and on-premises

Cloud 82

Cloud Security 82

WIRED Threat Level

JULY 11, 2021

What you look for online is up to you—just make sure no one else is taking a peek. Security Security / Privacy Security / Security Advice

Security 89

Security Privacy 89

Advertiser: Datadog

In this eBook, Christian Oestreich, a senior software engineering leader with experience at multiple Fortune 500 companies, shares how a metrics-driven mindset can dramatically improve software quality and enable DevOps at enterprise scale.

Security Affairs

JULY 15, 2021

Security researchers have linked a new ransomware strain called Diavol to the Wizard Spider threat group behind the Trickbot botnet.

Ransomware 81

Ransomware Communications Encryption IT 81

Data Breach Today

JULY 16, 2021

Report: Cooperation Is Required to Protect US Critical Infrastructure A greater level of cooperation is needed between the DOD and DHS to ensure that U.S. critical infrastructure is protected against various cyberthreats, according to an inspector general's report.

Cybersecurity 187

Cybersecurity 187

Threatpost

JULY 16, 2021

HelloKitty joins the growing list of ransomware bigwigs going after the juicy target of VMware ESXi, where one hit gets scads of VMs. Malware Web Security

Ransomware 111

Ransomware Security 111

WIRED Threat Level

JULY 15, 2021

Security researchers say the group exploited a zero-day in Apple’s operating system to target European government officials over LinkedIn. Security Security / Cyberattacks and Hacks

Government 80

Government Security 80

Advertiser: ZoomInfo

In our 24-criterion evaluation of B2B marketing data providers, we identified the 11 most significant vendors — Data Axle, Dun & Bradstreet, Enlyft, Global Database, InsideView, Leadspace, Oracle, SMARTe, Spiceworks Ziff Davis, TechTarget, and ZoomInfo Technologies — and researched, analyzed, and scored them. This report shows how each provider measures up and helps B2B marketing professionals select the right one for their needs.

B2B

Security Affairs

JULY 13, 2021

American clothing brand and retailer Guess discloses a data breach after the February ransomware attack and is notifying the affected customers. In February, American fashion brand Guess was hit by a ransomware attack, now the company is disclosing a data breach and is notifying affected customers.

Retail 82

Retail Data breaches Ransomware Access 82

Data Breach Today

JULY 10, 2021

The oil and gas industry is yet again a victim of Agent Tesla malware A sophisticated campaign that uses remote access Trojans and malware-as-a-service threats for cyber espionage purposes has been targeting large international energy companies for at least a year, according to cybersecurity company Intezer.

Phishing 180

Phishing Cybersecurity Access 180

Threatpost

JULY 16, 2021

Another vulnerability separate from PrintNightmare allows for local elevation of privilege and system takeover. Vulnerabilities

108

108

WIRED Threat Level

JULY 12, 2021

Attackers are increasingly attuned to the power and potential of remote management software. Security Security / Cyberattacks and Hacks

IT 79

IT Security 79

Advertisement

This paper will discuss why organizations frequently end up with multiple data copies and how a secure "no-copy" data strategy enabled by the Dremio data lake service can help reduce complexity, boost efficiency, and dramatically reduce costs.

Paper

Security Affairs

JULY 12, 2021

Researchers from Cyber News Team have spotted threat actors offering for sale 600 million LinkedIn profiles scraped from the platform, again. Original post: [link].

Archiving 80

Archiving Passwords Sales Phishing 80

Data Breach Today

JULY 11, 2021

On-Premises Software Patched, SaaS to Come Online Again Miami-based software company Kaseya released patches on Sunday for its monitoring and management software that was exploited by a ransomware group.

Ransomware 169

Ransomware IT 169

Schneier on Security

JULY 14, 2021

China is making sure that all newly discovered zero-day exploits are disclosed to the government. Under the new rules, anyone in China who finds a vulnerability must tell the government, which will decide what repairs to make.

Manufacturing 77

Manufacturing Government Security IT 77