networks Archives - Cyber Security Minute

Critical flaw in VMware Aria Operations for Networks sees mass exploitation

Issued by: CSO Online

Researchers warn that a vulnerability patched this month in VMware Aria Operations for Networks, formerly known as vRealize Network Insight, is now seeing exploitation en masse. The flaw allows for remote code execution through command injection and is rated with critical severity. “New data from Akamai shows the scale of active scanning for sites vulnerable…

Cybersecurity M&A Roundup: 39 Deals Announced in July 2022

Issued by: Security Week

SecurityWeek has also conducted an analysis of the deals announced in the first half of the year. We have cataloged 234 cybersecurity M&A deals, with a surge observed in the first half of June. 11:11 Systems acquires Static1 Managed infrastructure solutions provider 11:11 Systems has acquired managed network and IT infrastructure development and services firm…

Network Security

Life in Lockdown: Offices Are Empty of People, Full of Risky IoT Devices

Issued by: Security Week

A study of more than 500 million IoT device transactions in little over two weeks between December 15 and December 31, 2020 discovered a 700% increase in IoT malware over a previous study of pre-lockdown 2019. The study (PDF), conducted by Zscaler ThreatLabz, found Gafgyt and Mirai accounted for 97% of the IoT malware that…

Vulnerabilities

The Rise of Industrial IoT and How to Mitigate Risk

Issued by: Security Week

With the acceleration of digital transformation and convergence of IT and operational technology (OT) networks, Internet of Things (IoT) and Industrial IoT (IIoT) devices are becoming essential tools for companies in sectors including oil and gas, energy, utilities, manufacturing, pharmaceuticals, and food and beverage. Whether optimizing individual processes or entire factories and other critical infrastructure…

Vulnerabilities

Over 80,000 Exchange Servers Still Affected by Actively Exploited Vulnerabilities

Issued by: Security Week

The bugs were publicly disclosed on March 2, when the Redmond-based tech giant announced not only patches for them, but also the fact that a Chinese threat actor had been actively exploiting them in attacks. Within days, security researchers revealed that multiple adversaries were quick to pick up exploits for the Exchange bugs, but also…

Malware & Threats

Number of ransomware attacks grew by more than 150%

Issued by: Help Net Security

By the end of 2020, the ransomware market, fueled by the pandemic turbulence, had turned into the biggest cybercrime money artery. Based on the analysis of more than 500 attacks observed during Group-IB’s own incident response engagements and cyber threat intelligence activity, researchers estimate that the number of ransomware attacks grew by more than 150%…

Network Security

The Realities of Extended Detection and Response (XDR) Technology

Issued by: Dark Reading

Given all the hype around extended detection and response (XDR) technology, it’s worth starting this article by defining the term “XDR.” XDR is an integrated suite of security products spanning hybrid IT architectures (such as LAN, WAN, infrastructure-as-a-service, data centers, etc.) designed to interoperate and coordinate on threat prevention, detection, and response. XDR unifies control…

Network Security

Report: Hunting Evasive Malware

Issued by: Help Net Security

Today’s networks have more sophisticated automated defenses than ever, yet cybercriminals are taking full advantage of business disruptions and distractions in 2020. Adversaries are exploiting user behavior and leveraging trusted operating system tools to pursue “actions on objective” and evade detection. When used in combination, these techniques are effective at bypassing automated defenses to gain…

Network Security

In addition to traditional DDoS attacks, researchers see various abnormal traffic patterns

Issued by: Help Net Security

In the first quarter of 2020, DDoS attacks rose more than 278% compared to Q1 2019, and more than 542% compared to the last quarter, as published in the Nexusguard Q1 2020 Threat Report. DDoS attacks have become a global risk, and as attacks continue to increase in complexity, further spurred by the pandemic, ISPs…

Vulnerabilities

What are vulnerability scanners and how do they work?

Issued by: CSO

Vulnerability scanners are automated tools that allow organizations to check if their networks, systems and applications have security weaknesses that could expose them to attacks. Vulnerability scanning is a common practice across enterprise networks and is often mandated by industry standards and government regulations to improve the organization’s security posture. There are many tools and…