Why the ‘Basement Hacker’ Stereotype Is Wrong — and Dangerous
It engenders a false sense of superiority that spurs complacency among risk managers and executives, who in turn may underinvest…
Microsoft Exchange servers hacked in internal reply-chain attacks
Threat actors are hacking Microsoft Exchange servers using ProxyShell and ProxyLogon exploits to distribute malware and bypass detection using stolen…
Threat actors offer millions for zero-days, developers talk of exploit-as-a-service
While mostly hidden in private conversations, details sometimes emerge about the parallel economy of vulnerability exploits on underground forums, revealing…
The Troubling Rise of Internet Access Brokers
Criminal groups are ramping up use of IABs to get access to networks without having to deal with the initial…
New Rowhammer technique bypasses existing DDR4 memory defenses
Researchers have developed a new fuzzing-based technique called 'Blacksmith' that revives Rowhammer vulnerability attacks against modern DRAM devices that bypasses…
MacOS Zero-Day Used in Watering-Hole Attacks
Attackers targeted Chinese pro-democracy groups using a vulnerability fixed in September along with a second vulnerability fixed early in the…
Norton Special Report Reveals Nearly 1 in 2 Gamers Have Experienced a Cyberattack
Three in four say they were impacted financially as a result, losing more than $700 on average.
3 Must-Know Technologies to Protect Your Hybrid Workforce
Zero-trust, SASE, and XDR have similar goals, but they differ in their approaches to protecting businesses and users.
Moses Staff hackers wreak havoc on Israeli orgs with ransomless encryptions
A new hacker group named Moses Staff has recently claimed responsibility for numerous attacks against Israeli entities, which appear politically…
The Week in Ransomware – November 12th 2021 – Targeting REvil
This week, law enforcement struck a massive blow against the REvil ransomware operation, with multiple arrests announced and the seizure…