Threats & Defense – The Week’s Best News – 2021.08.02
A Review of the Best News of the Week on Cyber Threats & Defense Feds list the top 30 most exploited vulnerabilities. Many are years old (Ars Technica, Jul 29 2021) Hackers continue to exploit publicly known—and often dated—software vulnerabilities. Navigating the 2021 threat landscape: Security operations, cybersecurity maturity (Help Net Security, Aug 02 2021) […]
Threats & Defense – The Week’s Best News – 2021.07.26
A Review of the Best News of the Week on Cyber Threats & Defense Disrupting Ransomware by Disrupting Bitcoin (Schneier on Security, Jul 26 2021) In this light, banning cryptocurrencies like bitcoin is an obvious solution. But while the solution is conceptually simple, it’s also impossible because — despite its overwhelming problems — there are […]
Threats & Defense – The Week’s Best News – 2021.07.19
A Review of the Best News of the Week on Cyber Threats & Defense Mysterious Israeli Spyware Vendor’s Windows Zero-Days Caught in the Wild (VICE, Jul 15 2021) Microsoft and Citizen Lab found a new kind of spyware made by the mysterious Israeli vendor Candiru, and targeting someone in Europe based on their political beliefs. […]
Threats & Defense – The Week’s Best News – 2021.07.12
A Review of the Best News of the Week on Cyber Threats & Defense Kaseya Releases Security Patch as Companies Continue to Recover (Dark Reading, Jul 12 2021) Estimates indicate the number of affected companies could grow, while Kaseya faces renewed scrutiny as former employees reportedly criticize its lack of focus on security. New Age […]
Threats & Defense – The Week’s Best News – 2021.07.05
A Review of the Best News of the Week on Cyber Threats & Defense CISA Adds Ransomware Module to Cyber Security Evaluation Tool (SecurityWeek, Jul 01 2021) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday announced the release of a new module for its Cyber Security Evaluation Tool (CSET), namely the Ransomware Readiness […]
Threats & Defense – The Week’s Best News – 2021.06.28
A Review of the Best News of the Week on Cyber Threats & Defense NSA Funds Development & Release of D3FEND Framework (Dark Reading, Jun 22 2021) The framework, now available through MITRE, provides countermeasures to attacks. 74% of Q1 Malware Was Undetectable Via Signature-Based Tools (Dark Reading, Jun 24 2021) Attackers have improved on […]
Threats & Defense – The Week’s Best News – 2021.06.21
A Review of the Best News of the Week on Cyber Threats & Defense No Two REvil Attacks Are the Same, Experts Warn (Infosecurity Magazine, Jun 15 2021) The ransomware affiliate model drives a challenging variety of threats for defenders to tackle NSA Releases Guidance for Securing Enterprise Communication Systems (SecurityWeek, Jun 18 2021) The […]
Threats & Defense – The Week’s Best News – 2021.06.14
A Review of the Best News of the Week on Cyber Threats & Defense How Hackers Used Slack to Break into EA Games (VICE, Jun 14 2021) A representative for the hackers explained to Motherboard how the group stole a wealth of data from the game publishing giant. “Once inside the chat, we messaged a […]
Threats & Defense – The Week’s Best News – 2021.06.07
A Review of the Best News of the Week on Cyber Threats & Defense This is not a drill: VMware vuln with 9.8 severity rating is under attack (Ars Technica, Jun 04 2021) Code execution flaw in vCenter is exploited to install web shell on unpatched machines. How to Protect Your Files From Ransomware (Wired, […]
Threats & Defense – The Week’s Best News – 2021.05.31
A Review of the Best News of the Week on Cyber Threats & Defense New Age Network Detection: Introduction (Securosis Blog, May 25 2021) Like the rest of the technology stack, the enterprise network is undergoing a huge transition. With data stores increasingly in the cloud and connectivity to SaaS providers and applications running in […]