Security news that informs and inspires

All Articles

2202 articles:

Behind the Rising Tide of Cybersecurity Legislation

At the 2021 Aspen Cyber Summit this week, lawmakers discussed why cybersecurity legislation is picking up - and challenges in the legislative process.

Government, Cybersecurity, Legislation

Espionage Attacks Against Telecom, Aerospace Firms Reveal Stealthy RAT

A RAT that has stayed under the radar for at least three years was recently uncovered in highly targeted espionage attacks against companies in the telecommunications and aerospace industries.

Malware, Cyber Crime, Dropbox, Remote Access Trojan

U.S. Forms Cryptocurrency Enforcement Team to Disrupt Ransomware Payments

The Department of Justice has formed a new National Cryptocurrency Enforcement Team to help disrupt ransomware payments to cybercriminals.

Ransomware, Governance

Apache Fixes Web Server Path Traversal Flaw Under Active Attack

Apache has released a fix for a path traversal flaw (CVE-2021-41773) that has been exploited in the wild.

Apache

New ESPecter UEFI Bootkit Discovered

Researchers have discovered a new UEFI bootkit called ESPecter that can modify the Windows Boot Manager.

Malware, UEFI

Fear of Pegasus Spyware Used to Spread Sarwent RAT

The fear surrounding the Pegasus spyware tool is being used to lure victims to a fake Amnesty International site that installs the Sarwent RAT.

Malware

Device Security is ‘The Big Hairy Monster Under the Bed’

The security of IoT and non-general purpose computing devices represents a systemic risk to corporate and national security, experts say.

Government, Iot Security

Nobelium Deploying FoggyWeb Backdoor in Targeted Attacks

The Nobelium attackers, who are responsible for the SolarWinds intrusion, have been deploying a new backdoor called FoggyWeb in targeted attacks.

Microsoft, Solarwinds

Attackers Target Critical VMware Bug

There is active exploitation of the vCenter Server bug disclosed last week, along with mass scanning activity looking for vulnerable servers.

Vmware

FISMA Update Could Boost CISA’s Authority

Potential new legislation to update FISMA could codify CISA's role and grant it additional authority.

Government, Ransomware

U.S. Warns of Continued Threat from Conti Ransomware

A joint advisory from the FBI, CISA, and NSA warns that the Conti ransomware operation is still a threat to enterprises, despite some takedowns of its infrastructure.

Ransomware

VMware Fixes Critical Flaw in vCenter Server

VMware has released a fix for a critical file-upload vulnerability, along with nearly 20 other bugs in vCenter Server.

Vmware

Azure OMIGOD Flaw Under Attack

The Azure OMI vulnerability (CVE-2021-38647) is under attack by several threat actors, including the Mirai botnet operators.

Mirai, Microsoft, Azure

New Turla Backdoor Identified

Cisco Talos researchers have identified a new backdoor being deployed by the Turla APT against targets in multiple countries.

APT, Russia

MSHTML Zero Day Exploits Used Shared Infrastructure With Ransomware Group

Attackers exploiting the CVE-2021-40444 Windows flaw used infrastructure also known to be associated with a ransomware group.

Microsoft, Windows