Successful Malware Incidents Rise as Attackers Shift Tactics
As employees moved to working from home and on mobile devices, attackers followed them and focused on weekend attacks, a security firm says.Companies relaxed security controls to help employees...
NSA Appoints Rob Joyce as Cyber Director
Enterprise VulnerabilitiesFrom DHS/US-CERT's National Vulnerability Database
CVE-2020-25533PUBLISHED: 2021-01-15
An issue was discovered in Malwarebytes before 4.0 on macOS. A malicious application was able to perform a privileged action within the Malwarebytes...
Businesses Struggle with Cloud Availability as Attackers Take Aim
Researchers find organizations struggle with availability for cloud applications as government officials warn of cloud-focused cyberattacks.The majority of organizations have separate tools for networking and security, researchers report in...
‘Chimera’ Threat Group Abuses Microsoft & Google Cloud Services
Researchers detail a new threat group targeting cloud services to achieve goals aligning with Chinese interests.Security researchers are watching a threat group that takes advantage of Microsoft and Google...
Huntress Acquires EDR Technology From Level Effect
Enterprise VulnerabilitiesFrom DHS/US-CERT's National Vulnerability Database
CVE-2021-1245PUBLISHED: 2021-01-13
Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack...
SolarWinds Attackers May Have Hit Mimecast, Driving New Concerns
Mimecast no longer uses the SolarWinds Orion network management software that served as an attack vector for thousands of organizations.The discovery of a data breach at email service provider...
United Nations Security Flaw Exposed 100K Staff Records
Security researchers have disclosed a vulnerability they exploited to access more than 100,000 private employee records.Security researchers have disclosed a vulnerability they exploited to access at least 100,000 private...
More SolarWinds Attack Details Emerge
A third piece of malware is uncovered, but there's still plenty of unknowns about the epic attacks purportedly out of Russia.As yet another piece of malware has been uncovered...
New Tool Sheds Light on AppleScript-Obfuscated Malware
The AEVT decompiler helped researchers analyze a cryptominer campaign that used AppleScript for obfuscation and will help reverse engineers focused on other Mac OS malware.An effort to reverse-engineer malicious...
Intel’s New vPro Processors Aim to Help Defend Against Ransomware
The newest Intel Core vPro mobile platform gives PC hardware a direct role in detecting ransomware attacks.Intel is bringing ransomware protection to its new 11th Gen Core vPro mobile...
