Enterprises embrace devsecops practices against supply chain attacks
For enterprise security professionals alarmed about the rising number of supply chain attacks, a report released this week by Google and supply chain security firm Chainguard has good news:...
Dangerous New Attack Technique Compromising VMware ESXi Hypervisors
VMware issued urgent new mitigation measures and guidance on Sept. 29 for customers of its vSphere virtualization technology after Mandiant reported detecting a China-based threat actor using a troubling...
Ransomware Attacks Continue Increasing: 20% of All Reported Attacks Occurred in the Last 12...
PITTSBURGH, Sept. 26, 2022 /PRNewswire/ -- Nearly a quarter of businesses have suffered a ransomware attack, with a fifth occurring in the past 12 months, according to a latest...
Ex-NSA employee charged with violating Espionage Act, selling U.S. cyber secrets
Written by Suzanne Smalley Sep 29, 2022 |...
Espionage Group Wields Steganographic Backdoor Against Govs, Stock Exchange
An emerging cyber-espionage threat group has been hitting targets in the Middle East and Africa with a novel backdoor dubbed "Stegmap," which uses the rarely seen steganography technique to hide...
Wintermute inside job theory ’not convincing enough’ — BlockSec
Blockchain security firm BlockSec has debunked a conspiracy theory alleging the $160 million Wintermute hack was an inside job, noting that the evidence used for allegations is “not convincing enough.”Earlier...
Phishing Attacks Crushed Records Last Quarter, Driven by Mobile
Last quarter saw a record-shattering number of observed phishing attacks, fueled in large part by attempts to target users on their mobile devices.
The latest Anti-Phishing Working Group (APWG) "Phishing...
Sophisticated Covert Cyberattack Campaign Targets Military Contractors
A cyberattack campaign, potentially bent on cyber espionage, is highlighting the increasingly sophisticated nature of cyberthreats targeting defense contractors in the US and elsewhere.
The covert campaign, which researchers at Securonix detected...
Most Attackers Need Less Than 10 Hours to Find Weaknesses
The average ethical hacker can find a vulnerability that allows the breach of the network perimeter and then exploit the environment in less than 10 hours, with penetration testers...
Chaos Malware Resurfaces With All-New DDoS & Cryptomining Modules
The powerful Chaos malware has evolved yet again, morphing into a new Go-based, multiplatform threat that bears no resemblance to its previous ransomware iteration. It's now targeting known security vulnerabilities...
