-
CIS Benchmarks Community Volunteer Spotlight: Doug Hunley
Volunteers who contribute to the CIS Benchmarks Community help to shape rigorous security measures and standards. Here’s Doug Hunley’s story. Read More
-
Everything You Need to Know to Keep Your Passwords Secure
When it comes to passwords, most of us would love nothing more than to set it and forget it. But that’s exactly what hackers are hoping for — in fact, it makes their job a lot easier. This means the best line of defense is frequent password changes. But how often should you create new passwords? Cybersecurity experts recommend…
-
Chinese State Actor APT40 Exploits N-Day Vulnerabilities “Within Hours”
A joint government advisory warned that the Chinese state-sponsored actor APT40 is capable of immediately exploiting newly public vulnerabilities in widely used software Read More
-
Avast Provides DoNex Ransomware Decryptor to Victims
Researchers at Avast found a flaw in the cryptographic schema of the DoNex ransomware and have been sending out decryptor keys to victims since March 2024 Read More
-
Building a Robust Defense-in-Depth Architecture for Digital Transformation
The content of this post is solely the responsibility of the author. LevelBlue does not adopt or endorse any of the views, positions, or information provided by the author in this article. Exploring Defense-in-Depth Architecture security strategy for ICS in the digital transformation era. Today’s businesses are transforming through integrating IT and OT environments, a…
-
Just a Fifth of Manufacturers Have Strongest Anti-Phishing Protection
Study confirms most manufacturers with DMARC don’t have it configured to most secure policy Read More
-
Ticketmaster Extortion Continues, Threat Actor Claims New Ticket Leak
Tickets to Foo Fighters, Aerosmith, Pink and Usher gigs have been leaked by a threat actor trying to extort Ticketmaster Read More
-
RockYou2024: Unpacking the Largest Password Leak in History
This Fourth of July brought fireworks in the form of a digital security breach, one that has been recorded as the most significant password leak in history. Dubbed RockYou2024, this colossal data dump was unveiled by a user named “ObamaCare” on a prominent hacking forum, revealing a staggering 9.9 billion unique passwords in plain text.…
-
On the CSRB’s Non-Investigation of the SolarWinds Attack
ProPublica has a long investigative article on how the Cyber Safety Review Board failed to investigate the SolarWinds attack, and specifically Microsoft’s culpability, even though they were directed by President Biden to do so. Read More
-
New APT CloudSorcerer Malware Hits Russian Targets
The malware issues commands via a hardcoded charcode table and Microsoft COM object interfaces Read More