incident response Archives - Page 8 of 15

Privilege Escalation Bugs Patched in Linux Kernel

Issued by: Security Week

Identified by Positive Technologies security researcher Alexander Popov, the high severity bugs resided in the virtual socket implementation of the Linux kernel. Tracked as CVE-2021-26708 and featuring a CVSS score of 7.0, the security holes were introduced in Linux kernel version 5.5 in November 2019. The vulnerabilities are the result of race conditions that were…

Vulnerabilities

France to Boost Cyberdefense After Hospital Malware Attacks

Issued by: Security Week

The attacks at the hospitals in Dax and Villefranche-sur-Saone prompted the transfer of some patients to other facilities as the French health care system is under pressure from the coronavirus pandemic. Macron discussed the attacks with officials and workers from both hospitals, saying the incident “shows how the threat is very serious, sometimes vital.” “We…

Cloud Security, Vulnerabilities

Accellion to Retire File Transfer Service Targeted in Attacks

Issued by: Security Week

The 20-year-old service is planned for retirement on April 30, 2021, past which Accellion won’t renew licenses for the software. FTA runs on CentOS 6, an operating system that reached end-of-life on November 30, 2020, a matter that Accellion brought to the attention of FTA customers six months ago. Despite efforts to completely move away…

Network Security, Software Security

Industry Reactions to U.S. Water Plant Hack: Feedback Friday

Issued by: Security Week

The attack, which targeted the water supply in Oldsmar, a small city in Florida, was discovered by staff at the plant — they noticed the mouse moving on the screen — and they rushed to take action before any damage was caused. The attackers breached the facility via TeamViewer, which staff had been using to…

Malware & Threats

Law Enforcement Planning Emotet Cleanup Operation Following Botnet Takedown

Issued by: Security Week

One of the most prevalent botnets over the past decade, Emotet has been around since 2014, helping cybercriminals deploy their own Trojans, ransomware, and other types of malware onto compromised machines. Serving as a malware loader, Emotet has been associated with the distribution of well-known malware families, including TrickBot and Ryuk ransomware, among others. This…

Application Security

Facebook Takes Legal Action Against Data Scrapers

Issued by: Security Week

In a lawsuit filed in Portugal, Facebook Inc. and Facebook Ireland seek permanent injunction against the two for violation of the social media platform’s terms of service and Portugal’s Database Protection Law. The social media giant says that the two created browser extensions that they made available for download through the Chrome Web Store. The…

Malware & Threats

Microsoft, Energy Department and Others Named as Victims of SolarWinds Attack

Issued by: Security Week

Microsoft has confirmed that it has detected the malicious SolarWinds binaries delivered by the threat actor on its own systems as well. The tech giant took steps to remove the malware and claimed it had found no evidence that the attackers used its own systems to target others. Microsoft said in a blog post on…

Malware & Threats

Killswitch Found for Malware Used in SolarWinds Hack

Issued by: Security Week

FireEye, which disclosed the attack earlier this month after the threat actor managed to breach its systems and steal some Red Team tools, revealed that the attacker had compromised SolarWinds systems and used its access to deliver a piece of malware named SUNBURST. The malware, which is configured to remain dormant for a certain period…

Network Security

The Future of Cybersecurity: How to Prepare for a Crisis in 2020 and Beyond

Issued by: Security Intelligence

When it comes to the future of cybersecurity, an ounce of prevention is worth far more than a pound of cure. According to the Ponemon Institute and IBM Security’s 2020 Cost of a Data Breach Report, enterprises that designated an incident response (IR) team, developed a cybersecurity incident response plan (CSIRP) and tested their plan…