Collaborate Disseminate
Blocking refers to the practice of deploying network security devices to block threats as they traverse the network.
The post Blocking Bad: The Importance of Blocking and Virtual Patching appeared first on Security Intelligence.
Continue reading Blocking Bad: The Importance of Blocking and Virtual Patching
A worm called EternalRocks has been spreading seven Windows SMB exploits leaked by the ShadowBrokers, including EternalBlue, which was used to spread WannaCry. Continue reading EternalRocks Worm Spreads Seven NSA SMB Exploits
A worm called EternalRocks has been spreading seven Windows SMB exploits leaked by the ShadowBrokers, including EternalBlue, which was used to spread WannaCry. Continue reading EternalRocks Worm Spreads Seven NSA SMB Exploits
A widespread ransomware attack such as WannaCry can cause problems for any business. For a health care organization, it can cause an utter catastrophe.
The post Why Has Health Care Become Such a Target for Cyberattacks? appeared first on Security Intelligence.
Continue reading Why Has Health Care Become Such a Target for Cyberattacks?
WannaCry may be behind us, but fears that the crooks might create new malware from the NSA’s stash of exploits seem to be coming true Continue reading After WannaCry, EternalRocks digs deeper into the NSA’s exploit toolbox
When the authors of WannaCry turbo-charged their ransomware with NSA exploits leaked by the Shadow Brokers, people thought it was the Vulnerability Equities Process’ worst-case scenario. It’s really not. The VEP is the policy process the U.S. government undertakes when one of its agencies finds a new software vulnerability. It’s how the government decides whether to tell the manufacturer about the bug, so they can patch it and keep all their customers safe; or to keep it secret and stealthily employ it to spy on foreign adversaries who use that software. In the wake of Shadow Brokers dumping several sets of highly advanced NSA hacking tools online — many using previously unknown vulnerabilities — there have been rising demands for reform of the VEP. Lawmakers have got in on the act, pledging to legislate the process with the Protecting Our Ability to Counter Hacking, or PATCH Act of 2017. But […]
The post Why reforming the Vulnerability Equities Process would be a disaster appeared first on Cyberscoop.
Continue reading Why reforming the Vulnerability Equities Process would be a disaster
Some security researchers have found similarities between WannaCry and malware previously written by a hacking group linked to North Korea.
Read more in my article on the Hot for Security blog.
Continue reading North Korea denies link to WannaCry ransomware attack
Jaya Baloo, CISO of KPN, the Netherlands’ leading telecommunications provider, talks to Mike Mimoso about the WannaCry ransomware outbreak and how large network providers and enterprises must contend with advanced attacks. Continue reading Jaya Baloo on WannaCry and Defending Against Advanced Attacks
I understand that WannaCry spreads itself by exploiting the SMBv1 vulnerability, which is fixed by patch MS17-010.
Does this mean that even with the patch installed, WannaCry can still infect the computer–if the user downlo… Continue reading What happens if you run WannaCry after installing the necessary patches?
I recently was attacked by some cryptolocker (not sure if it’s WannaCry) and now I am revising my network policies. For reaching this aim I want to disable all SMB-activity for infected PC. Surprisingly, even doing all accord… Continue reading Effective blocking of SMB connections