Collaborate Disseminate
This Thursday morning, Russia started its invasion on Ukraine and, As predicted, the attacks in the physical world have been preceded and accompanied by cyber attacks: Renewed DDoS attacks have been launched against websites Ukrainian government agenci… Continue reading Cyber attacks on Ukraine: DDoS, new data wiper, cloned websites, and Cyclops Blink
Our newest report takes a closer look at one of the most targeted industries today – healthcare. As exhausted healthcare professionals struggle with an extraordinary situation, their IT departments face critical skills and staffing shortages. Rou… Continue reading Help Net Security: Healthcare Cybersecurity Report has been released
Hackers are starting to realize that Microsoft Teams is a great means of spreading tentacles throughout an organization’s systems; since the start of the year, Avanan has been seeing hackers increasingly dropping malware in Teams conversation. &#… Continue reading Attackers use Microsoft Teams as launchpad for malware
Unknown attackers have mounted disruptive distributed denial-of-service (DDoS) attacks against several Ukrainian government organizations and state-owned banks on Tuesday. The list of targets included the websites of: The Ministry of Defence of Ukraine… Continue reading DDoS attacks knock Ukrainian government, bank websites offline
The Ultimate Guide to Client-Side Security provides organizations with a guide for understanding how modern websites and web applications work within the context of client-side interactions and the dangers inherent in the client-side coding structures … Continue reading eBook: The Ultimate Guide to Client-Side Security
Offensive Security has released Kali Linux 2022.1, the latest version of its popular open source penetration testing platform. Visually refreshed and with improved usability for visually impaired users, it comes also with a new “kali-linux-everything” … Continue reading Kali Linux 2022.1 released: New tools, kali-linux-everything, visual changes
Another month, another zero-day (CVE-2022-22620) exploited in the wild that has been fixed by Apple. About CVE-2022-22620 CVE-2022-22620 is a use after free issue in WebKit, the browser engine used in Safari and all iOS web browsers. Apple fixed it in … Continue reading Apple fixes actively exploited iOS, macOS zero-day (CVE-2022-22620)
When the Log4Shell vulnerability (CVE-2021-44228) was publicly revealed in December 2021, CISA Director Jen Easterly said that it is the “most serious” vulnerability she has seen in her decades-long career and it could take years to address. It’s… Continue reading Log4j exploitation risk is not as high as first thought, cyber MGA says
Illumio released findings of a study conducted by Forrester Consulting that explore how organizations are approaching their zero trust strategies in 2022 to better navigate the remote world brought on by the COVID-19 pandemic and continuing digital tra… Continue reading Zero trust adoption will continue to mature
80% of critical infrastructure organizations experienced a ransomware attack in the last year, with an equal number reporting that their security budgets have risen since 2020, a Claroty report reveals. The report is based on an independent global surv… Continue reading Ransomware attacks, and ransom payments, are rampant among critical infrastructure organizations