Security news that informs and inspires

SEARCH

All Articles

Browse by Tag:
Government Podcast Privacy Microsoft Malware Ransomware Vulnerability Data Breaches Google Encryption Apple Phishing 2fa Hardware Iot Security Apt Android Ciso Supply Chain Cybercrime Cloud Solarwinds Hacker Movies Internet Black Hat Facebook Labs Research Botnet Cisa Linux Patching Government Agencies Vulnerabilities Log4j Windows Patch Vpn Software Security Apache Open Source Legislation Bug Bounty Networking Gdpr Critical Infrastructure Security Mobile Mozilla Magecart Disinformation Vmware
1665 articles:

Decipher Podcast: Source Code 7/15

Welcome back to Source Code, Decipher’s weekly news wrap podcast with input from our sources.

Source Code

North Korean Threat Actors Target Small Businesses With Ransomware

The H0lyGh0st ransomware group has spent the last year targeting small and medium-sized businesses - but has not yet successfully extorted ransom payments from victims, said Microsoft researchers.

Microsoft, North Korea

Cyber Safety Review Board: Exploitation of ‘Endemic’ Log4j Flaw Will Evolve

The Cyber Safety Review Board’s report on the Log4j flaw pointed to an open-source software ecosystem riddled with security challenges.

Log4j

New Retbleed Speculative Execution Flaw Emerges

A new speculative execution flaw called Retbleed affects many AMD and Intel chips running any modern operating system.

Hardware Security, Intel, Spectre

U.S. Journalists Targeted in ‘Sustained Effort’ By APTs

The espionage attacks by APTs from China, North Korea and elsewhere started in 2021 and have continued in recent months.

Journalist Security

Ransomware Landscape Evolves in a Post-Conti World

The release of LockBit 3.0 is making waves in a ransomware ecosystem that has been reshaped due to Conti shutting down its operations.

Ransomware

Microsoft Fixes Windows Flaw Under Active Attack

Microsoft fixed the flaw as part of its regularly-scheduled update, which includes over 80 critical and important-severity bugs.

Microsoft

Microsoft Exposes Phishing Campaign That Stole Session Cookies to Bypass MFA

Microsoft has identified a long, widespread phishing campaign that stole session cookies to bypass MFA and led to BEC and payment fraud.

Phishing, Microsoft

Siemens Security Advisory Discloses Critical, High-Severity Flaws

The industrial manufacturing company disclosed several high- and critical-severity vulnerabilities that could enable denial-of-service, code execution and more.

Siemens

Q&A: Joe Grand

Hardware hacker Joe Grand discusses his work hacking hardware cryptocurrency wallets and how much he still has to learn after decades of hacking.

Hardware Security

Microsoft Rolls Back Strategy to Block Office Macros By Default

Security researchers say the choice by Microsoft to re-enable Office macros by default is "puzzling."

Macros, Microsoft

Apple Lockdown Mode ‘First Step Toward Mainstreaming Better Protections’

The new Lockdown Mode that will be in iOS 16 this fall will disable many features used to target at-risk users with commercial spyware tools.

Apple

Decipher Podcast: Source Code 7/8

Welcome back to this week’s Source Code podcast by Decipher, where we go over the top security news of the week with input from our sources.

Podcast, Source Code

CISA: North Korea-Backed Actors Using Maui Ransomware

North Korean government-backed actors are using the new Maui ransomware to target health care organizations, CISA says.

Ransomware, North Korea

New Hive Ransomware Variant Gets Rust Overhaul

Hive is the latest ransomware family to undergo a full code migration to Rust.

Ransomware