cybersecurity

Why firewalls, VPNs and hypervisors are a hacker's new favourite target

Why firewalls, VPNs and hypervisors are a hacker's new favourite target

TTPs and telemetry suggest a real focus on zero days and appliances by Chinese APTs.

Steve Ranger November 08, 2023

Citrix Bleed: Two ransomware groups now exploiting bug for initial access

vulnerabilities

Citrix Bleed: Two ransomware groups now exploiting bug for initial access

Here's what you need to do to reduce the threat posed by CVE-2023-4966. But don't delay.

Steve Ranger October 31, 2023

English-speaking ransomware group expanding ops, deploying diverse tools, threats

English-speaking ransomware group expanding ops, deploying diverse tools, threats

Both blunt and more advanced social engineering approaches used for initial access; the group also has sophisticated hands-on-keyboards capabilities and a diverse toolset.

The Stack October 26, 2023

Incident response exercises urged after mass Cisco device exploitation

Incident response exercises urged after mass Cisco device exploitation

Cisco says patch pending October 22 for what transpires to have been two discrete zero days...

The Stack October 20, 2023

"The worst security flaw in a long time" is about to land. With 20 billion curl installations, be worried

"The worst security flaw in a long time" is about to land. With 20 billion curl installations, be worried

Could a pending curl vulnerability be the next Log4j?

The Stack October 09, 2023

Georgia on my fines: Top tech uni charged with discrimination

Georgia on my fines: Top tech uni charged with discrimination

Renowned IT research institute Georgia Tech has been fined for discriminating against non US citizens in its job fairs

Shaun Nichols September 01, 2023

The five key habits of top CISOs

The five key habits of top CISOs

These approaches cropped up regularly amongst those CISOs inhabiting the metaphorical equivalent of that top right corner in a Magic Quadrant (now there's an idea...)

Edward Targett August 30, 2023

kroll t-mobile sim swapping ftx

cyberresilience

Kroll blasts T-Mobile after SIM swapping attack enables data breach: CISOs, listen up...

Security leaders would do well to revisit this month's findings of the Cyber Security Advisory Board (CSRB)...

Edward Targett August 28, 2023