A mysterious adversary snoops around government and academia without leaving a trace
A sophisticated post-exploitation framework has been used against the government, academia, and technology sectors. Observed intrusions align with China-nexus state-sponsored activity, but researchers do not rush with attribution.
CrowdStrike’s Falcon...
As new evidence emerges, experts wonder: is REvil really back?
REvil, a ransomware gang that proved to be a nightmare to hundreds of organizations, has not disappeared. Probably, no one even expected it to. Now, new evidence points to...
7 top software supply chain security tools
As the fallout from the Apache Log4J vulnerabilities earlier this year shows, the biggest risks in enterprise software today are not necessarily with insecure code written directly by in-house...
Progress launches Chef Cloud Security to extend DevSecOps to cloud-native assets
Infrastructure software provider Progress has announced the launch of Progress Chef Cloud Security to extend DevSecOps with compliance support for native cloud assets, enabling end-to-end management of on premise,...
Low-rent RAT Worries Researchers
Researchers say a hacker is selling access to quality malware for chump change.
For about the price of a cup of Starbucks latte, a hacker is renting out a remote...
U.S. Proposes $1 Million Fine on Colonial Pipeline for Safety Violations After Cyberattack
By: Ravie Lakshmanan
The U.S. Department of Transportation's Pipeline and Hazardous Materials Safety Administration (PHMSA) has proposed a penalty of nearly $1 million to Colonial Pipeline for violating federal safety...
