Security news that informs and inspires

SEARCH

All Articles

Browse by Category:
Duo Labs Industry Events Industry News passwords Product & Engineering
Browse by Tag:
Government Podcast Privacy Microsoft Malware Ransomware Vulnerability Data Breaches Google Encryption Apple Phishing 2fa Hardware Iot Security Apt Android Ciso Supply Chain Cybercrime Cloud Solarwinds Hacker Movies Internet Black Hat Facebook Labs Research Botnet Cisa Linux Patching Government Agencies Vulnerabilities Log4j Windows Patch Vpn Software Security Apache Open Source Legislation Bug Bounty Networking Gdpr Critical Infrastructure Security Mobile Mozilla Magecart Disinformation Vmware
2239 articles:

Qakbot Ducks for Cover With New Tactics

The Qakbot malware operators have shifted tactics again to adapt to changes in defenses.

Malware, Qakbot

New SeroXen RAT Emerges

A new RAT known as SeroXen is for sale on forums and social media platforms and has the ability to evade EDR and delivers a rootkit.

Malware

BlackCat Ransomware Improves Capabilities With Sphynx Variant

A BlackCat ransomware version announced in February includes new abilities allowing attackers to evade detection and analysis.

Ransomware

Q&A: Megan Stifel

From safe haven countries to crackdowns on cryptocurrency exchanges used for ransomware payments, Megan Stifel talks about how the security ecosystem is putting pressure on ransomware threat groups.

Q&a, Ransomware

Decipher Podcast: Hazel Burton

Dennis Fisher is joined by Hazel Burton from the Cisco Talos team to talk about the importance of empathy in communications, her non-linear path to infosec, and how her improv comedy training has helped her in her roles.

Podcast

New Ransomware Group Uses Repurposed LockBit, Babuk Variants

Researchers with Symantec said the threat actor behind the campaign, Blacktail, hasn’t been linked to any existing cybercrime group.

Ransomware

Barracuda Fixes RCE Flaw in Email Security Gateway

Barracuda has patched a remote code execution vulnerability in its Email Security Gateway appliances.

Email

New CosmicEnergy Operational Technology Malware Found

The discovery of CosmicEnergy is unique because malware families targeting industrial control systems are rarely disclosed.

Malware

Decipher Podcast: Source Code 5/26

Welcome back to Source Code, Decipher’s weekly news wrap podcast with input from our sources.

Podcast, Source Code

Volt Typhoon Attack Group Targets U.S. Infrastructure

A group known as Volt Typhoon, that is affiliated with the Chinese government, has been attacking critical infrastructure in Guam and elsewhere in the United States.

China

More APTs Eye Managed Service Providers in Supply Chain Attacks

Overall, threat actors aligned with Russian, Iranian and North Korean state interests have increasingly targeted small and medium-sized businesses.

Managed Service Providers

Decipher Podcast: Megan Stifel Returns

Megan Stifel, chief strategy officer for the Institute for Security and Technology and executive director of the Ransomware Task Force, talks about the multitude of efforts being made in tackling the ransomware threat landscape.

Podcast, Ransomware Task Force, Ransomware

BlackCat Ransomware Actors Use Malicious Drivers to Evade Detection

Researchers said that malicious Windows kernel drivers will continue to be used by sophisticated groups that have the skills and resources needed to develop such tools.

Ransomware, Windows

Lazarus Group Targets IIS Servers

The Lazarus Group has been compromising vulnerable IIS servers in an ongoing campaign.

North Korea

Apple Fixes Three Actively Exploited WebKit Flaws

The Apple vulnerabilities (CVE-2023-32409, CVE-2023-28204 and CVE-2023-32373) exist in WebKit.

Apple, Webkit, Ios