Attackers Exploit Log4j Flaws in Hands-on-Keyboard Attacks to Drop Reverse Shells
Microsoft says vulnerabilities present a "real and present" danger, citing high volume of scanning and attack activity targeting the widely…
The Week in Ransomware – December 24th 2021 – No rest for the weary
The holiday season is here, but there is no rest for our weary admins as ransomware gangs are still conducting…
Blackmagic fixes critical DaVinci Resolve code execution flaws
Blackmagic Software has recently addressed two security vulnerabilities in the highly popular DaVinci Resolve software that would allow attackers to gain…
Stealthy BLISTER malware slips in unnoticed on Windows systems
Security researchers have uncovered a malicious campaign that relies on a valid code-signing certificate to disguise malicious code as legitimate…
Nearly 50% of People Will Abandon Sites Prohibiting Password Reuse
A new study investigating consumer password use found 25% of online shoppers would abandon their carts of $100 if prompted…
Log4j Reveals Cybersecurity’s Dirty Little Secret
Once the dust settles on Log4j, many IT teams will brush aside the need for the fundamental, not-exciting need for…
TellYouThePass ransomware revived in Linux, Windows Log4j attacks
Threat actors have revived an old and relatively inactive ransomware family known as TellYouThePass, deploying it in attacks against Windows…
Facebook disrupts operations of seven surveillance-for-hire firms
Facebook has disrupted the operations of seven different spyware-making companies, blocking their Internet infrastructure, sending cease and desist letters, and…
Dept. of Homeland Security Launches ‘Hack DHS’ Program
A new bug bounty program aims to find potential security flaws within certain DHS systems and strengthen the department's security…
Dell driver fix still allows Windows Kernel-level attacks
Dell's driver fix of the CVE-2021-21551 vulnerability leaves margin for catastrophic BYOVD attacks resulting in Windows kernel driver code execution.…