Security news that informs and inspires

All Articles

1171 articles:

Adversary Security Blunders Reveal LittleLooter Android Malware

During an investigation into suspected Iranian threat group ITG18, researchers found various security errors made by the attackers that gave them an inside look into their TTPs.

Charming Kitten, Android, Malware, Android Malware

Supply Chain Security: ‘The Government Is Not Going to Fix This’

At Black Hat, Matt Tait of Corellium said the supply chain security problem may get far worse if platform providers don't step in to address it.

Blackhat, Supply Chain

Whole of Government Effort, Collaboration Needed to Disrupt Ransomware

A whole of government approach, along with collaboration from the private sector, is key to disrupting the ransomware ecosystem.

Ransomware, Government, Cisa

Decipher Podcast: Jules Okafor

Jules Okafor, CEO of RevolutionCyber, joins Dennis Fisher to talk about her unconventional career arc, the importance of empathy in leadership and communications, and why conventional security awareness programs don't work.

Podcast

Biden Moves to Reinforce Critical Infrastructure Security

A new National Security Memorandum from President Biden sets performance goals for critical infrastructure security and creates a new CI security initiative.

Government, Ransomware

Microsoft Issue Guidance for Mitigating PetitPotam NTLM Relay Attack

Microsoft has released guidance for mitigating the recently disclosed PetitPotam NTLM relay attack.

Microsoft

Officials Cite Progress on Ransomware, But Say Much More Work Ahead

While law enforcement and security researchers have made progress against some ransomware groups, Europol and other law enforcement officials say the threat will remain for some time.

Ransomware, Government

New Print Spooler Flaw Found in Windows

A new print spooler vulnerability has surfaced in Windows 10 and newer versions, though it is not as serious as the Print Night mare bugs.

Microsoft

Privilege Escalation Flaw Found Buried in Linux File System

Researchers have uncovered a root privilege-escalation flaw that has been lurking in the Linux file system for at least seven years.

Linux

U.S. Indicts Four Chinese Nationals for Cyberespionage

The U.S. has indicted four Chinese men it alleges were part of APT40 and conducted cyberespionage on behalf of the Chinese government.

China, Ransomware

Chinese Attack Group Exploiting SolarWinds Zero Day

A newly identified attack group from China has been discovered exploiting a zero day in the SolarWinds Serv-U FTP products.

Solarwinds

SonicWall Warns of Active Ransomware Campaign Targeting Older Appliances

SonicWall said ransomware actors are targeting a known flaw in firmware running on some of its older security appliances and warned customers to disconnect them immediately.

Ransomware

Biden Says U.S. Will Take ‘Any Necessary Action’ to Defend Against Ransomware

President Biden told Russian President Putin in a phone call tha the U.S. will take "any necessary action" to defend its infrastructure from ransomware and other attacks.

Ransomware, Government

Kaseya Plans to Restart VSA Service Sunday

Kaseya plans to bring its VSA service back online on Sunday afternoon, more than a week after REvil ransomware actors exploited flaws in it.

Ransomware, Kaseya

Microsoft Releases Emergency Patch for PrintNightmare Bug

Microsoft has released an emergency patch for the PrintNightmare CVE-2021-34527 vulnerability in Windows.

Microsoft, Windows