Read Time:1 Second
Post Content
Yearly Archives: 2022
Community Defense Against Ransomware
Read Time:6 Second
This virtual Cybersecurity Modernization Summit explored the ongoing challenge of cybersecurity in the state and local government and higher education communities.
US Officials Increase Warnings About Russian Cyber-Attacks
Read Time:4 Second
The energy and finance sectors are likely to be targeted by Russian cyber-criminals
Funky Pigeon Suspends Orders Following Cyber-Attack
Read Time:4 Second
The retailer is currently investigating whether personal data was accessed in the attack
[R1] Tenable.sc 5.21.0 Fixes Fix Multiple Third-Party Vulnerabilities
Read Time:27 Second
Tenable.sc leverages third-party software to help provide underlying functionality. Several of the third-party components were found to contain vulnerabilities, and updated versions have been made available by the providers.
Out of caution, and in line with best practice, Tenable has upgraded the bundled components to address the potential impact of these issues. Tenable.sc 5.21.0 updates the following components to address the identified vulnerabilities:
jQuery UI upgraded from 1.12.0 to 1.13.1
MomentJS upgraded from 2.29.1 to 2.29.2
Funky Pigeon stalls orders after hackers breach its systems
Read Time:13 Second
Online greeting cards business Funky Pigeon was forced to close its doors temporarily last week after a “cybersecurity incident.”
Visitors to the company’s website were still being greeted as recently as Monday with a message saying that it could not accept new orders.
For cutting-edge web application and API protection – Trust Indusface WAAP
Read Time:21 Second
Graham Cluley Security News is sponsored this week by the folks at Indusface. Thanks to the great team there for their support! With APIs grown into a dominant mechanism of the modern web, protecting web applications and APIs becomes the default requirement of AppSec. This calls for a unified risk-based mitigation solution. Indusface WAAP, a … Continue reading “For cutting-edge web application and API protection – Trust Indusface WAAP”
LinkedIn Becomes the Most Impersonated Brand for Phishing Attacks
Read Time:5 Second
The research found that phishing attempts impersonating LinkedIn made up 52% of attacks globally in Q1 2022
Attack dwell times drop, ransomware TTPs evolve, China ramps up espionage activity
Read Time:29 Second
While significant progress is being made by global organizations in relation to threat detection and response, adversaries continue to surface, innovate, and adapt to target environments with diverse cyberattacks including new extortion and ransomware tactics, techniques, and procedures (TTPs). The data comes from Mandiant’s M-Trends 2022 report based on investigations of targeted attack activity conducted between October 1, 2020 and December 31, 2021. Among its various findings are insights into prevalent attack vectors, most targeted industries, and an increase in espionage activity linked to China.
Absolute Software launches ransomware response offering to accelerate endpoint recovery
Read Time:25 Second
Endpoint and secure access solutions vendor Absolute Software has released a new offering to enable customers to prepare and accelerate their endpoint recovery in the face of ransomware attacks. The firm said Absolute Ransomware Response features several capabilities and benefits that will help organizations assess their ransomware preparedness and cyber resilience across endpoints. The launch comes as new research from cybersecurity leader Mandiant cites an increasing evolution in ransomware tactics, techniques, and procedures (TTPs).