U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “Trickbot,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. The U.S. Department of the Treasury says the Trickbot group is associated with Russian intelligence services, and that this alliance led to the targeting of many U.S. companies and government entities. Continue reading U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Rackspace ransomware attack was executed by using previously unknown security exploit

The MS Exchange exploit chain recently revealed by Crowdstrike researchers is how the Play ransomware gang breached the Rackspace Hosted Exchange email environment, the company confirmed last week. The exploit chains CVE-2022-41082, a RCE flaw, and CVE… Continue reading Rackspace ransomware attack was executed by using previously unknown security exploit

January 2023 Patch Tuesday forecast: Procrastinate at your own risk

The start of a new year means it’s time to start working towards achieving your annual resolutions. Based on the headlines from the December news media, perhaps the most important point is don’t procrastinate! We should all have some sort of goal aroun… Continue reading January 2023 Patch Tuesday forecast: Procrastinate at your own risk

New Microsoft Exchange exploit chain lets ransomware attackers in (CVE-2022-41080)

Ransomware-wielding attackers are using a new exploit chain that includes one of the ProxyNotShell vulnerabilities (CVE-2022-41082) to achieve remote code execution on Microsoft Exchange servers. The ProxyNotShell exploit chain used CVE-2022-41040, a S… Continue reading New Microsoft Exchange exploit chain lets ransomware attackers in (CVE-2022-41080)

Want to be a CISO? Being technical is just one of the requirements

As data breaches’ financial and reputational costs continue to reach new heights, cybersecurity should be on top of mind for leadership across every industry. Recent Proofpoint research found that 65% of board members believe their organization i… Continue reading Want to be a CISO? Being technical is just one of the requirements

Microsoft fixes exploited zero-day in the Windows CLFS Driver (CVE-2022-37969)

September 2022 Patch Tuesday is here, with fixes for 64 CVE-numbered vulnerabilities in various Microsoft products, including one zero-day (CVE-2022-37969) exploited by attackers. About CVE-2022-37969 CVE-2022-37969 is an elevation of privilege vulnera… Continue reading Microsoft fixes exploited zero-day in the Windows CLFS Driver (CVE-2022-37969)

Appgate Technology Alliance Partnership program helps organizations adopt zero trust

Appgate has launched its Technology Alliance Partnership program and four of the program’s featured partners are: Illumio, Menlo Security, CrowdStrike and Amazon Web Services (AWS). Appgate’s Technology Alliance Partnership program is designed to help … Continue reading Appgate Technology Alliance Partnership program helps organizations adopt zero trust

Thoma Bravo: Securing digital identities has become a major priority

Thoma Bravo is a private equity firm with a 40+ year history, including over $114 billion in assets under management, and a focus on investing in software and technology companies. Last week they completed the acquisition of SailPoint, in an all-cash t… Continue reading Thoma Bravo: Securing digital identities has become a major priority

Open Cybersecurity Schema Framework project helps organizations detect and defend from cyberattacks

A coalition of cybersecurity and technology leaders announced an open-source effort to break down data silos that impede security teams. The Open Cybersecurity Schema Framework (OCSF) project, revealed at Black Hat USA 2022, will help organizations det… Continue reading Open Cybersecurity Schema Framework project helps organizations detect and defend from cyberattacks

The Ukraine war could provide a cyberwarfare manual for Chinese generals eyeing Taiwan

China’s certainly watching Russia’s missteps in cyberspace, as well as the U.S. response.

The post The Ukraine war could provide a cyberwarfare manual for Chinese generals eyeing Taiwan appeared first on CyberScoop.

Continue reading The Ukraine war could provide a cyberwarfare manual for Chinese generals eyeing Taiwan