1. Nmap Online
  2. Cybersecurity News

Cybersecurity News

CISA Offers New Mitigation for PrintNightmare Bug

CISA Offers New Mitigation for PrintNightmare Bug CERT urges administrators to disable the Windows Print spooler service in Domain Controllers and systems that don’t print, while Microsoft attempts to clarify RCE flaw with a new CVE assignment.
02 July 2021

GitHub Unveils AI Tool to Speed Development, but Beware Insecure Code

The company has created an AI system, dubbed Copilot, to offer code suggestions to developers, but warns that any code produced should be tested for defects and vulnerabilities.
01 July 2021

CISA Urges Orgs to Disable Windows Print Spooler on Critical Systems

Patches Microsoft issued last month not effective against exploits targeting "PrintNightmare" flaw, agency and others say.
01 July 2021

Linux Variant of REvil Ransomware Targets VMware’s ESXi, NAS Devices

Linux Variant of REvil Ransomware Targets VMware’s ESXi, NAS Devices Criminals behind the potent REvil ransomware have ported the malware to Linux for targeted attacks.
01 July 2021

Defeating Ransomware-as-a-Service? Think Intel-Sharing

Defeating Ransomware-as-a-Service? Think Intel-Sharing Aamir Lakhani, cybersecurity researcher and practitioner at FortiGuard Labs, explains the rise of RaaS and the critical role of threat intel in effectively defending against it.
01 July 2021

Intuit to Share Payroll Data from 1.4M Small Businesses With Equifax

Financial services giant Intuit this week informed 1.4 million small businesses using its QuickBooks Online Payroll and Intuit Online Payroll products that their payroll information will be shared with big-three consumer credit bureau Equifax starting later this year unless customers opt out by the end of this month. Intuit says the change is tied to an "exciting" and "free" new service that will let millions of small business employees get easy access to employment and income verification services when they wish to apply for a loan or line of credit.
01 July 2021

WhiteHat Security Rebrands as NTT Application Security

The name change follows NTT Security Corporation's acquisition of WhiteHat in 2019.
01 July 2021

Name That Edge Toon: Security Grill

Name That Edge Toon: Security Grill Feeling creative? Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card.
01 July 2021

CISA Updates CSET Tool for Ransomware Defense

A new module provides a set of practices to help organizations assess how well-equipped they are to defend and recover from ransomware.
01 July 2021

NSA & CISA Issue Warning About Russian GRU Brute-Force Cyberattacks Against US, Global Orgs

Fancy Bear nation-state hacking team add a modern twist on old-school hacking method by using a cluster of Kubernetes software containers to expedite credential theft.
01 July 2021

Why Are There Never Enough Logs During An Incident Response?

Most security pros believe their responses could be dramatically quicker were the right logs available, and usually they're not.
01 July 2021

Hacked Data for 69K LimeVPN Users Up for Sale on Dark Web

Hacked Data for 69K LimeVPN Users Up for Sale on Dark Web LimeVPN has confirmed a data incident, and meanwhile its website has been knocked offline.
01 July 2021

Babuk Ransomware Builder Mysteriously Appears in VirusTotal

Babuk Ransomware Builder Mysteriously Appears in VirusTotal The gang's source code is now available to rivals and security researchers alike - and a decryptor likely is not far behind.
01 July 2021

Stop Playing Catchup: Move From Reactive to Proactive to Defeat Cyber Threats

One-time reactive measures can't keep up. It's time to be proactive and pick our swords and not just our shields.
01 July 2021

Data Exfiltration: What You Should Know to Prevent It

Data Exfiltration: What You Should Know to Prevent It Data leaks are a serious concern for companies of all sizes; if one occurs, it may put them out of business permanently. Here's how you can protect your organization from data theft.
01 July 2021

LinkedIn’s 1.2B Data-Scrape Victims Already Being Targeted by Attackers

LinkedIn’s 1.2B Data-Scrape Victims Already Being Targeted by Attackers A refined database of 88K U.S. business owners on LinkedIn has been posted in a hacker forum.
01 July 2021

Netgear Authentication Bypass Allows Router Takeover

Netgear Authentication Bypass Allows Router Takeover Microsoft researchers discovered the firmware flaws in the DGN-2200v1 series router that can enable authentication bypass to take over devices and access stored credentials.
01 July 2021

Microsoft reveals authentication failures, system hijack vulnerabilities in Netgear routers

Microsoft says the bugs could have allowed “attackers to roam untethered through an entire organization.”
01 July 2021

Columbian police collar suspected Gozi Trojan distributor

The alleged hacker is wanted in the United States.
01 July 2021

Dropbox Used to Mask Malware Movement in Cyberespionage Campaign

Dropbox Used to Mask Malware Movement in Cyberespionage Campaign The ongoing spear-phishing campaign targeting the Afghan government uses Dropbox as an API that leaves no traces of communications with weirdo websites.
01 July 2021