All Articles

Browse by Category:

Browse by Tag:

Government Podcast Privacy Microsoft Malware Ransomware Vulnerability Data Breaches Google Encryption Apple Phishing 2fa Hardware Iot Security Apt Android Ciso Supply Chain Cybercrime Cloud Solarwinds Hacker Movies Internet Black Hat Facebook Labs Research Botnet Cisa Linux Patching Government Agencies Vulnerabilities Log4j Windows Patch Vpn Software Security Apache Open Source Legislation Bug Bounty Networking Gdpr Critical Infrastructure Security Mobile Mozilla Magecart Disinformation Vmware

2235 articles:

Exploit Code For Critical VMware Bug Published

Exploit code has been published for a critical-severity flaw in VMware's network monitoring tool, the company said on Thursday.

Exploit, Vmware

Analyzing the Qakbot Disruption

Decipher editors Dennis Fisher and Lindsey O'Donnell-Welch discuss the FBI's disruption of the Qakbot malware operation and what it might mean for the larger malware ecosystem.

Qakbot

Decipher Podcast: Source Code 9/1

Welcome back to Source Code, Decipher's weekly news wrap podcast with input from our sources.

Source Code, Podcast

Splunk Patches ANSI Bug in ITSI

Splunk has released updates to fix an odd bug that allows an attacker to inject special codes into log files, potentially leading to remote code execution.

Splunk

New Cyber Espionage Campaign Targets Tech, Government Entities

The newly discovered threat group compromises companies and then moves laterally on the network, exfiltrating data, logging keystrokes and more along the way.

Government

Tech Companies Mull Strategies to Block Threat Groups From Abusing Platforms

Researchers recently examined more than 400 malware families and found that 25 percent of them abused legitimate internet services as part of their attack infrastructure.

Google, Microsoft

White House Advisory Group: Water Sector Needs Cybersecurity National Standard

The White House advisory group acknowledged that water providers face various cybersecurity workforce and budgetary issues.

White House, Critical Infrastructure

Researchers Detail New Backdoors Used in Barracuda ESG Attacks

Mandiant researchers said that a “limited number” of previously impacted victims remain at risk.

Barracuda, Backdoors

Attackers Target Juniper SRX and EX Flaws

Adversaries are targeting flaws in Juniper's EX and SRX series devices that can be chained together to gain remote code execution.

Juniper

Decipher Podcast: Danny Rogers and Rocky Cole

iVerify CEO Danny Rogers and COO Rocky Cole join Dennis Fisher to discuss the spinout of the iVerify mobile security tool as a standalone company, the scourge of mercenary spyware, and how enterprises can protect their users.

Podcast

Federal VDP Program Shows Early Success

The federal government's vulnerability disclosure policy platform has taken in more than 1,300 unique valid bug reports in its first 18 months.

Government, Vulnerabilities

China-Based APT Flies Under Radar in Espionage Attacks

While the APT has targeted dozens of organizations in Taiwan, researchers with Microsoft warn that its tactics could easily be used in campaigns in other areas.

APT