Cybersecurity News


SolarWinds Hack Lessons Learned: Finding the Next Supply Chain Attack

The SolarWinds supply chain compromise won't be the last of its kind. Vendors and enterprises alike must learn and refine their detection efforts to find the next such attack.
11 January 2021

US Capitol Attack a Wake-up Call for the Integration of Physical & IT Security

How two traditionally disparate security disciplines can be united.
11 January 2021

Microsoft Sysmon adds support for detecting Process Herpaderping attacks

Sysmon 13.00, released today, can detect both Process Hollowing and Process Herpaderping attacks, giving system administrators an edge in detecting and debugging malware attacks.
11 January 2021

New Tool Sheds Light on AppleScript-Obfuscated Malware

The AEVT decompiler helped researchers analyze a cryptominer campaign that used AppleScript for obfuscation and will help reverse engineers focused on other Mac OS malware.
11 January 2021

SolarWinds Hack Potentially Linked to Turla APT

SolarWinds Hack Potentially Linked to Turla APT Researchers have spotted notable code overlap between the Sunburst backdoor and a known Turla weapon.
11 January 2021

Free decrypter released for victims of Darkside ransomware

A new tool released today by Romanian security firm Bitdefender allows victims of the Darkside ransomware to recover their files without paying the ransom demand.
11 January 2021

When It Comes To Security Tools, More Isn't More

Organizations that focus on optimizing their tools, cutting down on tool sprawl, and taking a strategic approach to transitioning to the cloud are poised for success.
11 January 2021

Global cyber-espionage campaign linked to Russian spying tools

Global cyber-espionage campaign linked to Russian spying tools

Kaspersky investigators uncover evidence that may support US claims Moscow was behind attack

A Moscow-based cybersecurity company has reported that some of the malicious code employed against the US government in a cyber-attack last month overlaps with code previously used by suspected Russian hackers.

The findings by Kaspersky investigators may provide the first public evidence to support accusations from Washington that Moscow was behind the biggest cyber-raid against the government in years, affecting 18,000 users of software produced by SolarWinds, including US government agencies.

Related: What you need to know about the biggest hack of the US government in years

Continue reading...
11 January 2021

5 common scams and how to avoid them

Fraudsters are quick to exploit current events for their own gain, but many schemes do the rounds regardless of what’s making the news. Here are 5 common scams you should look out for.

The post 5 common scams and how to avoid them appeared first on WeLiveSecurity

11 January 2021

Security Technology Cannot Stop All Attacks

Technology alone cannot protect you. Bad guys are constantly developing new ways to get past firewalls, anti-virus and filters. You are the best defense against any attacker.
11 January 2021

Some ransomware gangs are going after top execs to pressure companies into paying

Ransomware gangs are prioritizing stealing data from workstations used by executives in the hopes of finding and using valuable information to use in the extortion process.
09 January 2021

Google removes Parler app from Play Store

Google cites the lack of content moderation on the platform and "ongoing and urgent public safety threat."
08 January 2021

Russian Hacker Sentenced to 12 Years for Role in Breaches of JP Morgan, Others

Crimes netted him $19 million overall.
08 January 2021

CISA: SolarWinds hackers also used password guessing to breach targets

CISA says the threat actor behind the SolarWinds hack also used password guessing and password spraying to breach targets, not just trojanized updates.
08 January 2021

Malicious Software Infrastructure Easier to Get and Deploy Than Ever

Malicious Software Infrastructure Easier to Get and Deploy Than Ever Researchers at Recorded Future report a rise in cracked Cobalt Strike and other open-source adversarial tools with easy-to-use interfaces.
08 January 2021

A Look Ahead at 2021: SolarWinds Fallout and Shifting CISO Budgets

A Look Ahead at 2021: SolarWinds Fallout and Shifting CISO Budgets Threatpost editors discuss the SolarWinds hack, healthcare ransomware attacks and other threats that will plague enterprises in 2021.
08 January 2021

Ryuk Rakes in $150M in Ransom Payments

Ryuk Rakes in $150M in Ransom Payments An examination of the malware gang's payments reveals insights into its economic operations.
08 January 2021

State Department creates bureau to reduce 'likelihood of cyber conflict'

The new Bureau of Cyberspace Security and Emerging Technologies (CSET) will manage cybersecurity issues as part of the US' foreign policy and diplomatic efforts.
08 January 2021

Malware Developers Refresh Their Attack Tools

Cisco analyzes the latest version of the LokiBot malware for stealing credentials, finding that its developers have added more misdirection and anti-analysis features.
08 January 2021

Cartoon: Shakin' It Up at the Office

Cartoon: Shakin' It Up at the Office And the winner of our December cartoon caption contest is ...
08 January 2021