Category: Threats & Malware

October 15, 2021

The U.S. Cybersecurity Infrastructure and Security Agency (CISA) on Thursday warned of continued ransomware attacks aimed at disrupting water and wastewater facilities (WWS), highlighting five incidents that occurred between March 2019 and August 2021. “This activity—which includes attempts to compromise […]

October 15, 2021

The Korean Police Agency said it has received domestic arrest warrants and requested Interpol to issue a “red notice” for the two suspects in an effort to bring them to South Korea. South Korean authorities did not publicly release the […]

October 14, 2021

Continuity issued a research report which provided an analysis of the vulnerabilities and misconfigurations of enterprise storage systems. The findings revealed that storage systems have a significantly weaker security posture than the other two layers of IT infrastructure: compute or […]

October 12, 2021

Adobe has patched four vulnerabilities in Acrobat and Reader for Windows and macOS. Two of the flaws, described as use-after-free and out-of-bounds issues, have been classified as critical and they can lead to arbitrary code execution in the context of […]

October 12, 2021

The maintainers of LibreOffice and OpenOffice have shipped security updates to their productivity software to remediate multiple vulnerabilities that could be weaponized by malicious actors to alter documents to make them appear as if they are digitally signed by a […]

October 8, 2021

A massive trove of confidential Twitch data dumped on the internet included records showing top game play streamers took in millions of dollars during the past year. The breach came as another black eye for Twitch’s cyber defenses that have […]

October 8, 2021

Dubbed FontOnLake, the malware family employs a rootkit to conceal its presence and uses different command and control servers for each sample, which shows how careful its operators are to maintain a low profile. What’s more, the malware developers are […]

October 7, 2021

These days, when speaking of cyberthreats, most people have in mind ransomware, specifically cryptomalware. In 2020–2021, with the outbreak of the pandemic and the emergence of several major cybercriminal groups (Maze, REvil, Conti, DarkSide, Avaddon), an entire criminal ecosystem took […]

October 6, 2021

We are witnessing numerous and damaging attacks on critical infrastructure lately. What is the main cause that makes them susceptible to these attacks? Over recent years, attacks on critical infrastructure have grown from moderate risk to major headline-grabbing news and […]

October 4, 2021

Security operations teams have been dealing with “alert fatigue” for far too long. The introduction of log monitoring (e.g., SIEM), firewall, and AV technologies over two decades ago provided valuable tools for IT teams to be alerted to known suspicious […]