Matt Kapko – Page 29 – WindowsTechs.com

Is Ivanti the problem or a symptom of a systemic issue with network devices?

Posted on April 14, 2025 by Matt Kapko

Network edge devices — hardware that powers firewalls, VPNs and network routers — have quickly moved up the list of attackers’ preferred intrusion points into enterprise networks. While dozens of companies make and sell these devices, customers of one company in particular — Ivanti — have confronted exploited vulnerabilities in their products more than any […]

The post Is Ivanti the problem or a symptom of a systemic issue with network devices? appeared first on CyberScoop.

Continue reading Is Ivanti the problem or a symptom of a systemic issue with network devices?→

Microsoft patches zero-day actively exploited in string of ransomware attacks

Posted on April 8, 2025 by Matt Kapko

Microsoft said Storm-2460 has exploited the zero-day in the Windows Common Log File System to attack organizations in the U.S., Venezuela, Spain and Saudi Arabia.

The post Microsoft patches zero-day actively exploited in string of ransomware attacks appeared first on CyberScoop.

Continue reading Microsoft patches zero-day actively exploited in string of ransomware attacks→

Google addresses 2 actively exploited vulnerabilities in security update

Posted on April 7, 2025 by Matt Kapko

Serbian security services exploited one of the actively exploited vulnerabilities to break into the phone of a youth activist in Serbia, according to Amnesty International.

The post Google addresses 2 actively exploited vulnerabilities in security update appeared first on CyberScoop.

Continue reading Google addresses 2 actively exploited vulnerabilities in security update→

China-backed espionage group hits Ivanti customers again

Posted on April 3, 2025 by Matt Kapko

UNC5221 has a knack for exploiting defects in Ivanti products. The group has exploited at least four vulnerabilities in the vendor’s products since 2023, according to Mandiant.

The post China-backed espionage group hits Ivanti customers again appeared first on CyberScoop.

Continue reading China-backed espionage group hits Ivanti customers again→

Independent tests show why orgs should use third-party cloud security services

Posted on April 2, 2025 by Matt Kapko

AWS, Microsoft Azure and Google Cloud Platform each scored 0% security effectiveness in CyberRatings.org’s evaluation of cloud network firewall vendors’ ability to prevent exploits and evasions.

The post Independent tests show why orgs should use third-party cloud security services appeared first on CyberScoop.

Continue reading Independent tests show why orgs should use third-party cloud security services→

Apple issues fixes for vulnerabilities in both old and new OS versions

Posted on April 1, 2025 by Matt Kapko

The company released a host of security patches Monday, including ones that address two zero-day vulnerabilities.

The post Apple issues fixes for vulnerabilities in both old and new OS versions appeared first on CyberScoop.

Continue reading Apple issues fixes for vulnerabilities in both old and new OS versions→

Identity lapses ensnared organizations at scale in 2024

Posted on April 1, 2025 by Matt Kapko

Cisco Talos observed identity-based attacks in 60% of the incidents it responded to last year.

The post Identity lapses ensnared organizations at scale in 2024 appeared first on CyberScoop.

Continue reading Identity lapses ensnared organizations at scale in 2024→

The North Korea worker problem is bigger than you think

Posted on March 31, 2025 by Matt Kapko

The yearslong scheme goes much deeper than contract work, extending to roles beyond traditional IT and sometimes granting the insider threat “keys to the kingdom,” DTEX President Mohan Koo said.

The post The North Korea worker problem is bigger than you think appeared first on CyberScoop.

Continue reading The North Korea worker problem is bigger than you think→

Browser extension sales, updates pose hidden threat to enterprises

Posted on March 27, 2025 by Matt Kapko

Some browser extension permissions are too broad, and owners can quickly repurpose pre-approved capabilities for malicious intent, a security researcher told CyberScoop.

The post Browser extension sales, updates pose hidden threat to enterprises appeared first on CyberScoop.

Continue reading Browser extension sales, updates pose hidden threat to enterprises→

String of defects in popular Kubernetes component puts 40% of cloud environments at risk

Posted on March 26, 2025 by Matt Kapko

Researchers aren’t aware of active exploitation in the wild, but they warn the risk for publicly exposed and unpatched Ingress Nginx controllers is extremely high.

The post String of defects in popular Kubernetes component puts 40% of cloud environments at risk appeared first on CyberScoop.

Continue reading String of defects in popular Kubernetes component puts 40% of cloud environments at risk→