US Government Issues Warning on Kimsuky APT Group
The joint alert, from CISA, the FBI, and others, describes activities from the North Korean advanced persistent threat group.The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of...
Microsoft’s Kubernetes Threat Matrix: Here’s What’s Missing
With a fuller picture of the Kubernetes threat matrix, security teams can begin to implement mitigation strategies to protect their cluster from threats.The MITRE ATT&CK threat matrix is a valuable...
US Treasury Sanctions Russian Institution Linked to Triton Malware
Triton, also known as TRISIS and HatMan, was developed to target and manipulate industrial control systems, the US Treasury reports.The US Department of the Treasury's Office of Foreign Assets...
Credential-Stuffing Attacks Plague Loyalty Programs
But that's not the only type of web attack cybercriminals have been profiting from.Loyalty programs that attract consumers with free coffee, gas, airline miles, hotel stays, and more if...
Botnet Infects Hundreds of Thousands of Websites
KashmirBlack has been targeting popular content management systems, such as WordPress, Joomla, and Drupal, and using Dropbox and GitHub for communication to hide its presence.A botnet focused on cryptomining,...
As Smartphones Become a Hot Target, Can Mobile EDR Help?
Lookout Security debuts a mobile endpoint detection and response offering that will integrate into its mobile security platform.Lookout Security today announced the addition of endpoint detection and response (EDR)...
McAfee Raises $740M in Second IPO
The security software giant and its investors sold 37 million shares priced at $20 each, putting McAfee's value around $8.6 billion.McAfee today made its return to the public market...
Iranian Cyberattack Group Deploys New PowGoop Downloader Against Mideast Targets
Seedworm Group, aka MuddyWater, is also deploying commodity ransomware as part of espionage attacks on companies and government agencies in the Middle East region.An Iranian cyberattack group known as...
Businesses Rethink Endpoint Security for 2021
The mass movement to remote work has forced organizations to rethink their long-term plans for endpoint security. How will things look different next year?This year has put IT and...
NSA Reveals the Top 25 Vulnerabilities Exploited by Chinese Nation-State Hackers
Officials urge organizations to patch the vulnerabilities most commonly scanned for, and exploited by, Chinese attackers.The US National Security Agency (NSA) today published a list of the top 25...