Home Blog Page 168
When it comes to cybersecurity, no organization can be 100 percent safe. Even organizations that use advanced security technologies may face problems with such key elements as people, business processes, technologies, and associated intersection points. There are many methods that...
A recent vulnerability on Netlogon patched in the Microsoft August Patch Tuesday was a nightmare, reaching a CVSSv3 score of 10.0. The vulnerability dubbed as 'Zerologon,' also identified as CVE-2020-1472, could allow attackers to hijack the Windows domain controller....
Security pros from cybersecurity firm Sansec discovered a massive Magecart campaign in which over 2000 Magento online stores were hacked. Magento is an e-commerce platform that allows websites to create their own online store. The researchers stated that most...
Ireland reportedly ordered Facebook to stop transfers of EU users’ data back to the U.S., which was carried out under the Standard Contractual Clauses (SCC) provision rendered by the ECJ in its July 2016 ruling. In response to the...
An anonymous ethical hacker found an unsecured Elasticsearch server exposing private data of hundreds of thousands of users of over 70 adult dating and e-commerce websites across the globe. The leaky database belongs to Mailfire, an email marketing firm that...
Enterprise security challenges witnessed a sudden uptick due to the spike in work from home. A recent study commissioned by Juniper and conducted by Vanson Bourne explored the attitudes, perspectives, and concerns of senior IT networking and security professionals from...
Marking the second anniversary of the London Office for Rapid Cybersecurity Advancement (LORCA), a government-backed cyber innovation program, Digital Infrastructure Minister Matt Warman announced that hundreds of the U.K.’s vital healthcare firms are set to benefit from government’s newest...
Security researchers from cybersecurity firm ESET uncovered a new kind of Linux malware variant targeting Voice-over-IP (VoIP) telephony softswitches. The malware dubbed as “CDRThief” is programmed to compromise specific softswitches - Linknat VOS2009 and VOS3000--and exfiltrate private data like...
APT28, also known as the “Fancy bear” or “Strontium” threat group, is reportedly backed by the Russian military intelligence agency GRU and has been active since at least 2007. APT28 is famously known to target political entities for carrying...
While organizations are trying hard to cope with the new working conditions like connecting with remote employees and securing critical data at distributed networks, opportunistic cybercriminals are targeting organizations that lack cyber readiness. The “Acronis Cyber Readiness Report 2020,” from...