SEARCH
All Articles
SolarWinds Attackers Accessed, But Did Not Modify, Microsoft Source Code
The SolarWinds attackers had access to some Microsoft source code repositories, but did not have the ability to change them, the company said.
Torvalds Favors Memory Protections in AMD Chips
Linux creator Linus Torvalds prefers AMD processors because of the chip company's unofficial support for ECC memory, something Intel has chosen not to offer for its non-server processors.
Emotet Back in Circulation
The Emotet malware has begun spreading again after one of its periodic breaks, using Christmas and COVID lures.
Ransomware Task Force to Figure Out How To Fight Ransomware
A group of security and technology vendors, non-profit groups, and other organizations have formed a coalition to tackle the impact of ransomware on various industry sectors such as government, education, healthcare, and other critical verticals. The Ransomware Task Force will release a standard framework addressing how to deal with attacks.
Malicious Code Found in Package Repositories
Attackers have increasingly targeted the software supply chain by populating package managers such as RubyGems and npm with malicious code.
Decipher Library: Holiday Edition
The editors of Decipher have put together a list of books, technical and otherwise, you can enjoy during a well-deserved holiday break.
CISA: Attackers Used Vectors Other Than SolarWinds Backdoor
CISA said the attackers behind the SolarWinds compromise used other infection vectors to access some victims' networks.
Stopping SolarWinds Backdoor with a Killswitch
Some news for security operations teams investigating their networks for signs that nation-state attackers had deployed the Sunburst malware via the SolarWinds' Orion network monitoring technology: FireEye has identified a killswitch that would stop the malware from executing in infected networks.
The Long Tail of the SolarWinds Breach
Completely recovering from the effects of the breach of SolarWinds could take months for some customers.
Broad Cyber Espionage Campaign Follows Supply Chain Attack on SolarWinds
Attackers planted a compromised update for the SolarWinds Orion platform, leading to a cyber espionage campaign that hit many companies and government agencies.
Facebook Disrupts Activity by APT32
Facebook has disrupted attacks on its platform it attributes to APT32, a group based in Vietnam.
Decipher Podcast: Haroon Meer
Haroon Meer, founder of Thinkst, joins Dennis Fisher to talk about why a lot of security products don't work, the challenges of running a security company from South Africa, and doing well by doing good.
Congress About to Pass Security-Heavy Defense Bill
The House of Representatives overwhelmingly passed the National Defense Authorization Act and the Senate is expected to vote on the defense appropriations bill this week.
Microsoft Teams Flaw Allowed Easy Remote Code Execution
A flaw in Microsoft Teams allowed remote code execution by sending one message to a victim.
NSA Warns Russian Attackers Are Exploiting VMware Flaw
The NSA warned that Russian state attackers are targeting a recent VMware vulnerability, which NSA discovered and disclosed.