Google Cloud adds agentless threat detection to virtual machine workloads
Virtual Machine Threat Detection at first will target cryptominers running on virtual servers. Detecting ransomware, Trojans, and other malware is coming.
Stories by Lucian Constantin
-
-
Iranian APT group uses previously undocumented Trojan for destructive access to organisations
The Moses Staff group's main target is Israel, but has recently launched attacks on organisations in other countries including India, Germany and the U.S.
-
How ransomware negotiations work
Here's what experienced negotiators say organisations should expect if it ever needs to pay a ransomware demand.
-
Serious PwnKit flaw in default Linux installations requires urgent patching
Attackers could gain root privileges by compromising any regular user account. Workarounds are available, patches on their way.
-
MoonBounce UEFI implant used by spy group brings firmware security into spotlight
The MoonBounce rootkit implants a malicious driver in the Windows kernel to provide persistence and stealthiness.
-
The Prometheus traffic direction system is a major player in malware distribution
Cyber crime is fueled by a complex ecosystem of criminal groups that specialise on different pieces of the final attack chains experienced by victims.
-
Thousands of enterprise servers are running vulnerable BMCs, researchers find
According to an analysis by firmware security firm Eclypsium, 7,799 HPE iLO (HPE's Integrated Lights-Out) server BMCs are exposed to the internet.
-
Cyber crime group Elephant Beetle lurks inside networks for months
Elephant Beetle specialises in stealing money from financial and commerce firms over an extended period of time while remaining undetected.
-
How to properly mitigate the Log4j vulnerabilities
A sure-fire way to prevent exploitation of Log4j vulnerabilities has yet to appear, but these actions are your best bet for reducing risk.
-
Researchers warn about continuous abuse of unpatched MikroTik routers
Attackers are still exploiting unaddressed vulnerabilities in an estimated 300,000 MikroTik routers. A new tool will detect compromised devices.
-
Apache Log4j vulnerability actively exploited, impacting millions of Java-based apps
The vulnerability affects not only Java-based applications and services that use the library directly, but also many other popular Java components.
-
Google disrupts major malware distribution network Glupteba
The botnet take-down is believed to be temporary as the criminal group has a back-up command-and-control mechanism based on Bitcoin blockchain.
-
Critical flaw in ManageEngine MSP tool exploited in the wild
Each of two flaws allow attackers to bypass authentication, leaving customers of MSPs that use ManageEngine at risk. Patches are available.
-
New HP MFP vulnerabilities show why users should update and isolate printers
Researchers have discovered two dangerous vulnerabilities in HP multifunction printers that use its FutureSmart firmware, including one that is exploitable remotely.
-
Explaining Void Balaur, a stealthy cyber mercenary group that spies on thousands
Void Balaur will target individuals and organisations in Russian-speaking countries with an intimate knowledge of telecom systems.
Events
ARN Innovation Awards 2022
Innovation Awards is the market-leading awards program for celebrating ecosystem innovation and excellence across the technology sector in Australia.
EDGE 2022
EDGE is the leading technology conference for business leaders in Australia and New Zealand, built on the foundations of collaboration, education and advancement.
Brand Post
Hybrid work is an ongoing opportunity of transformation for the channel: GoTo
Sponsored By
