Cybersecurity
Fresh warning to businesses over rising "Egregor" ransomware threat.
Not an executable, but a DLL executed using Windows’ rundll32.exe utility. To evade sandbox detection it only...
Cybersecurity
Security experts warn over federal network risk following storming of US Capitol
"The first port of call will be to count inventory..."
Cybersecurity
SolarWinds update: US intelligence community says attack likely Russian in origin - confirms circa 9 gov't agencies hacked after supply chain compromise
"Compromise will... require a sustained and dedicated effort to remediate"
Cybersecurity
Amid a ransomware endemic, image-based backups are emerging as a strong recovery vector
With ransomware endemic, more comprehensive back-up strategies are a must, says Datto CISO Ryan Weeks.
Cybersecurity
There's a critical bug in this router: but the vendor doesn't want to know.
Plus ça change plus c'est la même chose?
Cybersecurity
Defra turns to private sector for SOC/Incident Response support
Requests to participate need to be in by March 2
Cybersecurity
US gov't, CrowdStrike push out free Azure security tools, after SUNBURST abuse
"Many steps required to investigate not documented... inability to audit via API... global admin rights view excessive information"
Cybersecurity
Thin Clients, Full Fat CVSS 10 Security Vulnerabilities
Dell Wyse ThinOS 8.6 and prior versions contain a brace of CVSS 10 critical vulnerabilities, that could give a remote, unauthenticated attacker the ability to -- in Dell's own words -- "manipulate the configuration of any target specific station" and "gain access to sensitive
Cybersecurity
How do you supercharge your SOC?
Many organisations are ending up with a disjoined 'frankenstack' of security tools that leave the SOC without a unified workflow
Cybersecurity
Microsoft admits breach, as SolarWinds hack fallout continues
"This is not 'espionage as usual' even in the digital age"
Cybersecurity
NETGEAR pushes out 48 security advisories in 3 days
A critical pre-authentication command injection vulnerability in the NMS300 network management system among the bugs.
Cybersecurity
We got hit by ransomware. This is how it played out.
"We ran around and physically cut the cords connecting the servers to make sure the virus couldn’t spread any further... There was an eery silence."