Cyber Security Minute

Announcement Center

Customer Passwords are a Target for Cybercriminals: How to Address the Threat

May 5, 2022 9:01 pm

Advertisement Companies face various cyber risks, ranging from ransomware to data theft. Cyber threat actors gain access to an organization’s systems in various ways. However, cybercriminals commonly take the path of least resistance, and organizations’ reliance on password-based authentication provides numerous avenues of attack. Passwords are known to be a weak form of authentication, and...

Conti Ransomware Activity Surges Despite Exposure of Group’s Operations

April 26, 2022 9:53 pm

Advertisement An individual claiming to be a Ukrainian cybersecurity researcher has leaked vast amounts of data belonging to the Conti group, including malware source code, chat logs, credentials, email addresses, and C&C server details. The files were leaked in response to the hackers expressing support for the Russian government as it began its invasion of...

Serious Vulnerabilities Found in AWS’s Log4Shell Hot Patches

April 20, 2022 7:54 pm

Advertisement Apache Log4j vulnerabilities disclosed in December 2021, including the one tracked as Log4Shell, can allow attackers to remotely execute arbitrary code and take control of vulnerable systems. In response to these flaws, AWS released multiple hot patches – each suitable for a different environment, including servers, Kubernetes, Elastic Container Service (ECS) and Fargate –...

Tidelift Raises $27 Million to Tackle Open Source Supply Chain Security

Issued by: Security Week

High profile supply chain attacks like SolarWinds, Kaseya, Codecov, ua-parser-js and Log4j have put pressure on companies and governments to address the risks associated with open source and other software supply chain risks. President Biden’s May 2021 Executive Order includes supply chain attacks as an...

Tapping Neurodiverse Candidates Can Address Cybersecurity Skills Shortage

Issued by: Security Week

At a time when there countless unfulfilled cybersecurity positions worldwide, too many companies overlook neurodiverse candidates in their hiring processes. This a huge mistake as people with autism, dyslexia, and other conditions often possess skills that are well suited for cybersecurity work. Those skills include...

Crypto Hacks Aren’t a Niche Concern; They Impact Wider Society

Issued by: Dark Reading

The attack against the Ronin Network in March was quickly speculated to be one of the largest cryptocurrency hacks of all time. Approximately $540 million was stolen from the cryptocurrency and NFT games company in a combination of USDC and Etherium, with $400 million of...

Netskope Expands Data Protection Capabilities to Endpoint Devices and Private Apps

Issued by: Dark Reading

Netskope, the leader in Security Service Edge (SSE) and zero trust, today announced a key expansion of data protection capabilities to endpoint devices and private apps. The introduction of a patented endpoint data loss prevention (DLP) solution will enable Netskope Intelligent SSE customers to protect...

Why the Employee Experience Is Cyber Resilience

Issued by: Dark Reading

The modern workplace is changing at a pace never seen before in history. A lot of this stemmed from COVID and remote work necessities, with 74% of CFOs noting they've adopted some kind of telecommuting policies due to coronavirus challenges. Now, more than ever, the...

Linux Trojan XorDdos Attacks Surge, Targeting Cloud, IoT

Issued by: Dark Reading

Cybercriminal use of the Linux Trojan known as XorDdos is on the rise, according to a new report, which found a 254% increase in malicious activity against Linux endpoints using the malware over the last six months. It was first discovered in 2014, and the...

Cyber Security Minute

Outmaneuvering the Adversary: How to Detect Cyberthreats You Didn’t Know Were There

Zero Trust VPN Company Tailscale Raises $100 Million

‘Hack DHS’ Participants Awarded $125,000 for Over 100 Vulnerabilities

New threat groups and malware families emerging

Website Defacement: Petty Cyber Attack…Big Consequences

Announcement Center