Malware Infects NetBeans Projects In Software Supply Chain Attack
The Octopus Scanner malware compromised 26 open source projects hosted on GitHub in a new supply chain attack targeting NetBeans projects, GitHub Security Lab said.
SEARCH
Stolen Credentials Behind Supercomputing Attacks
Compromised credentials and empty SSH passphrases led to the string of attacks on academic supercomputing sites in recent weeks.
iOS 13.5.1 Fixes Kernel Zero Day
Apple has patched, for the second time, a vulnerability in the iOS kernel that has been used in jailbreak tools.
OpenSSH Will Deprecate SHA-1
OpenSSH will soon deprecate the use of SHA-1 because of the risk of specific attacks against the algorithm.
Analysis of DNS Traffic Uncovers DDoS Attacks
Internet usage in 2020 is shaping up to be very different from how it was at the end of 2019. New DNS research from Farsight...
Most Applications Contain Vulnerable Open Source Libraries
Modern software development relies on open source libraries, even for those applications that are sold commercially and aren’t...
Decipher Podcast: Alex Pinto
Alex Pinto from Verizon Enterprise joins Dennis Fisher to discuss the findings of the 2020 Data Breach Investigations Report.
Two Years of GDPR Changed Privacy Landscape
Two years may have passed since enforcement of the European Union’s General Data Protection Regulation began, but regulators...
NSA Warns Russian Attackers are Exploiting Old Exim Flaw
The Sandworm team, associated with the Russian GRU, is exploiting a flaw in the Exim mail transfer agent, the NSA warned in a...
Dennis Has Some Questions About…2FA
Two-factor authentication is a vital part of many corporate security strategies, and is now offered by lots of consumer apps,...
Attacks Based on Credential Theft On The Rise, DBIR Says
In the 13th Data Breach Investigations Report, Verizon researchers found that attackers are relying less on malware and more on...
GoDaddy Reports Breach of Customer Hosting Accounts
An attacker was able to access an undisclosed number of GoDaddy customers' hosting accounts using SSH connections.
Banner Health Settles Data Breach Lawsuit
A judge has approved the deal settling all claims related to Banner Health’s 2016 data breach, which includes stipulations for...
