German govt warns of APT27 hackers backdooring business networks
The BfV German domestic intelligence services (short for Bundesamt für Verfassungsschutz) warn of ongoing attacks coordinated by the APT27 Chinese-backed…
Protecting Critical Infrastructure Against Cyberattacks
Understanding how attackers get in is the critical first step to mounting an effective defense. By Sean Deuby […] The…
Phishing impersonates shipping giant Maersk to push STRRAT malware
A new phishing campaign using fake shipping delivery lures installs the STRRAT remote access trojan on unsuspecting victim's devices. [...]
Over 90 WordPress themes, plugins backdoored in supply chain attack
A massive supply chain attack compromised 93 WordPress themes and plugins to contain a backdoor, giving threat-actors full access to…
Microsoft lists the Windows 10 group policies to avoid
Microsoft released a list of twenty-five group policies that admins should not use in Windows 10 and Windows 11 as…
Automating Response Is a Marathon, Not a Sprint
Organizations should balance process automation and human interaction to meet their unique security requirements.
Windows Server 2019 OOB update fixes reboots, Hyper-V, ReFS bugs
Microsoft has released an emergency out-of-band (OOB) update for Windows Server 2019 that fixes numerous critical bugs introduced during the January…
BlueNoroff hackers steal crypto using fake MetaMask extension
The North Korean threat actor group known as 'BlueNoroff' has been spotted targeting cryptocurrency startups with malicious documents and fake…
Magniber ransomware using signed APPX files to infect systems
The Magniber ransomware has been spotted using Windows application package files (.APPX) signed with valid certificates to drop malware pretending…
It’s 2022 And Cyber Deception Has Arrived – Defeat Tomorrow’s Threat Today
Lessons from The Cheshire Cat in Concealment & Misdirection Cyber deception has come a long way from deploying […] The…