North Korea’s Lazarus Group Turns to Supply Chain Attacks
State-backed group is among a growing number of threat actors looking at supply chain companies as an entry point into…
SolarWinds Attacker Targets Cloud Service Providers in New Supply Chain Threat
Microsoft says the group has attacked more than 140 service providers, and compromised 14 of them, between May and October…
Popular NPM library hijacked to install password-stealers, miners
Hackers hijacked the popular UA-Parser-JS NPM library, with millions of downloads a week, to infect Linux and Windows devices with cryptominers…
Hacker sells the data for millions of Moscow drivers for $800
Hackers are selling a stolen database containing 50 million records of Moscow driver data on an underground forum for only…
US govt to ban export of hacking tools to authoritarian regimes
The Commerce Department's Bureau of Industry and Security (BIS) today announced export controls for software and hardware tools that could…
DDoS attacks against Russian firms have almost tripled in 2021
A report analyzing data from the start of the year concludes that distributed denial-of-service (DDoS) attacks on Russian companies have…
In Cyberwar, Attribution Can Be Impossible — and That’s OK
Instead of using a substantial proportion of resources to determine attribution, organizations should focus on defenses that will help them…
Is the Edge Really Secure?
By Chetan Venkatesh, CEO and Co-Founder of Macrometa The simplest answer is… No. But, if history has taught […] The…
The Week in Ransomware – October 15th 2021 – Disrupting ransoms
This week, senior officials from over thirty countries held virtual conferences on disrupting ransomware operations and attacks. [...]
‘Clumsy’ BlackByte Malware Reuses Crypto Keys, Worms Into Networks
Discovered during a recent incident response engagement, the malware avoids Russian computers and uses a single symmetric key for encrypting…