-
LastPass Hackers Stole Source Code
PRIVACY PRIVACY Password management firm reveals incident in early August Read More
-
Here’s How to Steer Clear of Bot Accounts on Social Media
PRIVACY PRIVACY “Congratulations, you’re a winner!” “Did you know this public figure is trying to make your life worse? Click here for what they don’t want you to know.” “Save thousands today with just one click!” Spam and bot accounts on social media are everywhere. You’ve likely encountered messages like these that attempt to get…
-
Embrace change! Chris’s McAfee Journey
PRIVACY PRIVACY In this career-journey series, Internal Audit Manager Chris shares his recent journey joining the McAfee finance team and why he is always learning something new in his role. A typical day I’m an Internal Audit Manager. Essentially, I work with my McAfee colleagues to understand the processes we follow and run tests to…
-
Advancing Hardened Systems in the AWS Cloud
PRIVACY PRIVACY CIS and AWS have produced one updated and one new CIS Benchmark to help them secure their AWS Cloud deployments. Read More
-
Microsoft Attributes New Post-Compromise Capability to Nobelium
PRIVACY PRIVACY MagicWeb improves on FoggyWeb by facilitating covert access directly via a malicious DLL Read More
-
Talos Renews Cybersecurity Support For Ukraine on Independence Day
PRIVACY PRIVACY Cisco and Talos both have resources available to organizations in Ukraine in need of assistance Read More
-
Up to 35% more CVEs published so far this year compared to 2021
PRIVACY PRIVACY A new report from Trustwave SpiderLabs has revealed that the number of CVEs published so far this year could be as much as 35% higher than in the same period in 2021. The findings come from the security firm’s 2022 Telemetry Report. While organizations appear to be exhibiting greater awareness of effective patch…
-
DNS data indicates increased malicious domain activity, phishing toolkit reuse
PRIVACY PRIVACY New research from cybersecurity vendor Akamai has revealed that 12.3% of monitored devices communicated with domains associated with malware or ransomware at least once during the second quarter of 2022. This represented a 3% increase compared to Q1 2022, the firm stated, with phishing toolkits playing a key role in malicious domain-related activity.…
-
CISA Releases Guidelines to Aid Companies Transition to Post-quantum Cryptography
PRIVACY PRIVACY The guide provides overview of potential impacts of quantum computing on National Critical Functions Read More
-
Man-in-the-Middle Phishing Attack
PRIVACY PRIVACY Here’s a phishing campaign that uses a man-in-the-middle attack to defeat multi-factor authentication: Microsoft observed a campaign that inserted an attacker-controlled proxy site between the account users and the work server they attempted to log into. When the user entered a password into the proxy site, the proxy site sent it to the…