Cybersecurity News
New TrickBot Variant Updates Anti-Analysis Tricks
A new TrickBot variant shows that the malware is continuing to swap out new anti-analysis and persistence tactics.
11 March 2020
Why CSP Isn't Enough to Stop Magecart-Like Attacks
As Magecart and formjacking attacks become more sophisticated, it's essential to address not only what services may interact with users, but what that interaction looks like and how to control it.11 March 2020
More Than Half of IoT Devices Vulnerable to Severe Attacks
A full 98 percent of all IoT device traffic is unencrypted, exposing personal and confidential data on the network.
11 March 2020
The Ultimate Security Budget Excel Template – The Easiest Way to Plan and Monitor Your Security Spending
The Ultimate Security Budget Plan & Track Excel template provides security executives with a clear and intuitive tool to keep track of planned vs. actual spend, ensuring that security needs are addressed while maintaining the budgetary frame.
11 March 2020
Why are governments so vulnerable to ransomware attacks?
Government systems paralyzed by malware cause chaos. New research explores why are attacks so frequently successful.11 March 2020
Necurs Botnet in Crosshairs of Global Takedown Offensive
The tech giant will take control of the U.S.-based infrastructure used by the criminals behind the world’s most prolific botnet used to distribute malware and infect victim computers.
11 March 2020
Whisper, an anonymous secret-sharing app, failed to keep messages or profiles private
Millions of users’ private profiles and highly sensitive datasets were viewable online.11 March 2020
University of Hertfordshire avoids data breach action by UK watchdog
The ICO is taking no further action despite student information being inappropriately shared.11 March 2020
Modern RAM used for computers, smartphones still vulnerable to Rowhammer attacks
Academics break TRR protections on RAM cards for new Rowhammer attacks.10 March 2020
Microsoft Patch Tuesday, March 2020 Edition
Microsoft Corp. today released updates to plug more than 100 security holes in its various Windows operating systems and associated software. If you (ab)use Windows, please take a moment to read this post, backup your system(s), and patch your PCs.10 March 2020
Microsoft March 2020 Patch Tuesday fixes 115 vulnerabilities
The March 2020 Patch Tuesday is the largest Patch Tuesday release in Microsoft's history.10 March 2020
Critical Bugs in Rockwell, Johnson Controls ICS Gear
Bugs affecting programmable logic controllers (PLC) and physical access-control systems for facilities are rated 9.8 in severity.
10 March 2020
Microsoft Patches 26 Critical Bugs in Big March Update
March security updates include 115 CVEs patching everything from Windows, Office and Microsoft’s new Chromium-based Edge web browser.
10 March 2020
Researchers Develop New Side-Channel Attacks on Intel CPUs
Load Value Injection (LVI) takes advantage of speculative execution processes just like Meltdown and Spectre, say security researchers from Bitdefender and several universities.10 March 2020
Details about new SMB wormable bug leak in Microsoft Patch Tuesday snafu
SMB vulnerability is currently not patched, but now everyone knows it's there.10 March 2020
Popular ThemeREX WordPress Plugin Opens Websites to RCE
The bug has been under active attack as a zero-day.
10 March 2020
Microsoft Patches Over 100 Vulnerabilities
Patch Tuesday features several remote code execution flaws in Microsoft Word.10 March 2020
Bitsight and Microsoft Disrupt Necurs Botnet
But roughly 2 million infected systems remain in the wild, and infected systems could be reactivated at any time.10 March 2020