New security technique could pinpoint supply chain compromises
Researchers at Splunk outline a technique that could detect malicious activity in the software supply chain, but with some limitations.
Stories by Lucian Constantin
-
-
Russian cyber spies target CSPs and resellers to abuse delegated access
A new Microsoft advisory claims Russia's Nobelium group is trying to gain long-term access to the technology supply chain and offers mitigation advice.
-
REvil ransomware explained: A widespread extortion operation
The REvil group, a.k.a. Sodinokibi, re-victimises its targets by threatening to release stolen data even after the initial ransom demand is paid.
-
Chinese APT group IronHusky exploits zero-day Windows Server privilege escalation
One of the vulnerabilities patched by Microsoft has been exploited by a Chinese cyber-espionage group since at least August.
-
APT29 targets Active Directory Federation Services with stealthy backdoor
The FoggyWeb post-exploitation backdoor is persistent and steals configuration databases and security token certificates.
-
Cyber criminals bypass 2FA and OTP with robocalling and Telegram bots
2FA has been widely adopted by online services and turning it on is probably the best thing users can do for their online account security.
-
Exchange Autodiscover feature can cause Outlook to leak credentials
A design issue in the Microsoft Exchange Autodiscover feature can cause Outlook to leak plaintext Windows domain credentials to external servers.
-
How data poisoning attacks corrupt machine learning models
Data poisoning involves tampering with and polluting a machine learning model's training data, impacting the ability to produce accurate predictions.
-
APT actors exploit flaw in ManageEngine single sign-on solution
Cyber-espionage groups are exploiting a critical vulnerability patched in ManageEngine ADSelfService Plus, which is a single sign-on solution.
-
How APTs become long-term lurkers: Tools and techniques of a targeted attack
A new McAfee report details the tools and techniques an APT group used to go undetected on a client network for over a year.
-
Critical flaw in Atlassian Confluence actively exploited
The remote code execution vulnerability was recently patched for affected versions of Atlassian Confluence Server and Data Centre; users are advised to apply the patch or upgrade.
-
How ransomware runs the underground economy
Ransomware gangs are adopting all the core elements of legitimate businesses—including defined staff roles, marketing plans, partner ecosystems, and even venture capital investments.
-
LockFile ransomware uses intermittent encryption to evade detection
This newly discovered ransomware works fast, has multiple ways to avoid detection, and preys on Windows systems with known vulnerabilities.
-
OnePercent ransomware group hits companies via IceID banking Trojan
This new, aggressive ransomware group also uses Cobalt Strike to move laterally across network.
-
IoT devices have serious security deficiencies due to bad random number generation
It's not the IoT vendors' fault. Lack of a cryptographically secure pseudo-random number generator subsystem for the internet of things devices will be vulnerable.
Events
ARN Innovation Awards 2022
Innovation Awards is the market-leading awards program for celebrating ecosystem innovation and excellence across the technology sector in Australia.
EDGE 2022
EDGE is the leading technology conference for business leaders in Australia and New Zealand, built on the foundations of collaboration, education and advancement.
Brand Post
Hybrid work is an ongoing opportunity of transformation for the channel: GoTo
Sponsored By
