Security news that informs and inspires

All Articles

1889 articles:

DoJ Charges Alleged Raccoon Infostealer Operator

The DoJ said that a 26-year-old Ukrainian national, Mark Sokolovky, had been arrested in March by Dutch authorities as an alleged operator of the Raccoon Stealer malware.

Malware, Doj

Microsoft Adds New Features to Authenticator to Prevent MFA Fatigue Attacks

Microsoft is adding number matching and geographic and app context to Authenticator to defend against MFA fatigue attacks.

Mfa, Microsoft

Apple Fixes Zero Day in iOS 16.1

Apple has fixed a kernel zero day in iOS 16.1, along with a huge number of vulnerabilities in macOS Ventura.

Apple

FTC Cracks Down on Drizly, CEO For Lax Security Practices

A newly proposed order against Drizly will also bind its CEO to specific data security-related requirements after a 2020 data breach.

Ftc, Data Security

FBI, CISA Warn Healthcare Sector of Daixin Ransomware Attacks

The Daixin group has been targeting healthcare organizations with double extortion ransomware attacks, U.S. government agencies warned.

Healthcare, Cisa, Ransomware

New Data Exfiltration Tool Seen in BlackByte Ransomware Attacks

Threat actors are using customized exfiltration tools in hopes of increasing the speed for their ransomware attacks.

Ransomware

FBI Warns of Attacks From Iranian Threat Group Emennet Pasargad

The FBI is warning companies about hack-and-leak operations from Iranian threat actor Emennet Pasargad.

Fbi

Decipher Podcast: Source Code 10/21

Welcome to Source Code: Decipher's behind the scenes look at the weekly news with input from our sources.

Source Code, Podcast

CISOs, Board Members and the Search for Cybersecurity Common Ground

Boards of directors are on track to better understand cybersecurity and its impact on their companies - and interactions with CISOs play a key role in that evolution.

Ciso

Decipher Podcast: Martin Roesch Returns

Martin Roesch, CEO of Netography, joins Dennis Fisher to talk about the evolution of network security, protecting hybrid computing environments, and where that Snort pig couch came from.

Podcast

‘Milestone’ Ursnif Variant Sheds Banking Trojan Features

Ursnif's newest variant, LDR4, has been reconstructed from a banking trojan into a generic backdoor.

Malware

Security Remains a ‘Living, Breathing Task’ Long After Incidents

A panel of CISOs from companies like SolarWinds and Kaseya discussed their efforts to rebuild company culture with security in mind on the heels of massive security incidents at their organizations.

Ciso, Ciso Concerns

With Attacks Underway, Fortinet Urges Customers to Patch CVE-2022-40684

Fortinet said many of its customers still have not updated to fix CVE-2022-40684, which has been under active attack for two weeks.

Fortinet, Greynoise

Critical-Severity Flaw in Apache Commons Text Library Fixed

Details about the severity and scope of the vulnerability are still emerging, including the detection of any examples of real-world applications using vulnerable configurations of the impacted library.

Apache

Prestige Ransomware Hits Targets in Ukraine and Poland

A new ransomware called Prestige has hit organizations in Poland and Ukraine using a variety of deployment methods.

Russia, Ukraine