supply-chain attack – Page 5

Predictions 2020: Don’t Forget the Current Threats

Posted on December 12, 2019 by Craig DAbreo

With cybercriminals increasing their ambitions, constantly evolving hacking techniques year over year, and with emerging technologies providing more attack surface for hackers, executives and IT leaders must plan for the inevitable. They must know how… Continue reading Predictions 2020: Don’t Forget the Current Threats→

APT review: what the world’s threat actors got up to in 2019

Posted on December 4, 2019 by David Emm

What were the most interesting developments in terms of APT activity during the year and what can we learn from them? Continue reading APT review: what the world’s threat actors got up to in 2019→

Avast, NordVPN Breaches Tied to Phantom User Accounts

Posted on October 22, 2019 by BrianKrebs

Antivirus and security giant Avast and virtual private networking (VPN) software provider NordVPN each today disclosed months-long network intrusions that — while otherwise unrelated — shared a common cause: Forgotten or unknown user accounts that granted remote access to internal systems with little more than a password. Continue reading Avast, NordVPN Breaches Tied to Phantom User Accounts→

The Top Vendor Management Processes to Automate

Posted on September 6, 2019 by Tony Howlett

Compliance, security and risk are three reasons why vendor management is becoming a vital task Managing vendor access into your network and systems is becoming a more critical job as news about third-party breaches seems to break almost daily and regu… Continue reading The Top Vendor Management Processes to Automate→

Ransomware Hits Dental Data Backup Service Offering Ransomware Protection

Posted on August 30, 2019 by Wang Wei

THIS WEEK IN THE IRONIC NEWS:

DDS Safe, an online cloud-based data backup system that hundreds of dental practice offices across the United States are using to safeguard medical records and other information of their patients from ransomware attacks h… Continue reading Ransomware Hits Dental Data Backup Service Offering Ransomware Protection→

Magecart Hackers Infect 17,000 Sites Through Misconfigured Amazon S3 Buckets

Posted on July 11, 2019 by Swati Khandelwal

Magecart strikes again!

Cybersecurity researchers have identified yet another supply-chain attack carried out by payment card hackers against more than 17,000 web domains, which also include websites in the top 2,000 of Alexa rankings.

Since Magecart… Continue reading Magecart Hackers Infect 17,000 Sites Through Misconfigured Amazon S3 Buckets→

The Modern-Day Heist: IP Theft Techniques That Enable Attackers

Posted on June 24, 2019 by Tim Bandos

There’s more than one way to get inside a company. Continue reading The Modern-Day Heist: IP Theft Techniques That Enable Attackers→

Border Control, Russia, & Scams – Paul’s Security Weekly #609

Posted on June 21, 2019 by Security Weekly Productions

In the Security News, how not to prevent a cyberwar with Russia, the case against knee-jerk installation of Windows patches, U.S. customs and Border Protection data breach is the result of a supply chain attack, and a phishing scam that hacks 2 factor … Continue reading Border Control, Russia, & Scams – Paul’s Security Weekly #609→

Report Reveals TeamViewer Was Breached By Chinese Hackers In 2016

Posted on May 17, 2019 by Wang Wei

The German software company behind TeamViewer, one of the most popular software in the world that allows users to access and share their desktops remotely, was reportedly compromised in 2016, the German newspaper Der Spiegel revealed today.

TeamViewer… Continue reading Report Reveals TeamViewer Was Breached By Chinese Hackers In 2016→

Wipro Attackers Have Operated Under the Radar for Years

Posted on May 1, 2019 by Tara Seals

The adversaries have the hallmarks of an advanced, organized group, with well-established infrastructure. Continue reading Wipro Attackers Have Operated Under the Radar for Years→