Lucene search
K

25 matches found

The Hacker News
The Hacker News
added 2026/05/18 1:0 p.m.14 views

How to Reduce Phishing Exposure Before It Turns into Business Disruption

What happens when a phishing email looks clean enough to pass through security, but dangerous enough to expose the business after one click? That is the gap many SOCs still struggle with: the attacks that leave teams unsure what was exposed, who else was targeted, and how far the risk has spread...

5.9AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-19898

Malicious code in bioql PyPI...

4.9CVSS6.3AI score0.00268EPSS
Exploits0References5
Veracode
Veracode
added 2025/07/04 5:58 a.m.4 views

Improper Authorization

n8n is vulnerable to improper authorization. The vulnerability is due to insufficient access control in the /rest/executions/:id/stop endpoint, which allows an attacker to stop workflow executions they do not own or have access to, potentially causing business disruption...

4.9CVSS6.2AI score0.00268EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2024/03/30 12:0 a.m.16 views

CVE-2024-28288

Ruijie RG-NBR700GW 10.34b12 router lacks cookie verification when resetting the password, resulting in an administrator password reset vulnerability. An attacker can use this vulnerability to log in to the device and disrupt the business of the enterprise...

6.9AI score0.00724EPSS
Exploits0References2
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/07/06 5:0 p.m.53 views

The five-day job: A BlackByte ransomware intrusion case study

As ransomware attacks continue to grow in number and sophistication, threat actors can quickly impact business operations if organizations are not well prepared. In a recent investigation by Microsoft Incident Response previously known as Microsoft Detection and Response Team – DART of an...

10CVSS8.1AI score0.99999EPSS
Exploits23
The Hacker News
The Hacker News
added 2023/03/28 11:54 a.m.40 views

Breaking the Mold: Pen Testing Solutions That Challenge the Status Quo

Malicious actors are constantly adapting their tactics, techniques, and procedures TTPs to adapt to political, technological, and regulatory changes quickly. A few emerging threats that organizations of all sizes should be aware of include the following: Increased use of Artificial Intelligence a...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/03/28 11:54 a.m.2 views

Breaking the Mold: Pen Testing Solutions That Challenge the Status Quo

Malicious actors are constantly adapting their tactics, techniques, and procedures TTPs to adapt to political, technological, and regulatory changes quickly. A few emerging threats that organizations of all sizes should be aware of include the following: Increased use of Artificial Intelligence a...

8AI score
Exploits0
The Hacker News
The Hacker News
added 2022/07/18 1:13 p.m.26 views

Mind the Gap – How to Ensure Your Vulnerability Detection Methods are up to Scratch — The Hacker News

With global cybercrime costs expected to reach $10.5 trillion annually by 2025, it comes as little surprise that the risk of attack is companies' biggest concern globally. To help businesses uncover and fix the vulnerabilities and misconfigurations affecting their systems, there is an overabundan...

0.1AI score
Exploits0
ThreatPost
ThreatPost
added 2022/01/18 8:21 p.m.150 views

The Log4j Vulnerability Puts Pressure on the Security World

It’s not my intention to be alarmist about the Log4j vulnerability CVE-2021-44228, known as Log4Shell, but this one is pretty bad. First of all, Log4j is a ubiquitous logging library that is very widely used by millions of computers. Second, the director of the U.S. Cybersecurity & Infrastructure...

10CVSS9.8AI score0.99999EPSS
Exploits351References9
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/09/27 5:0 p.m.29 views

A guide to combatting human-operated ransomware: Part 2

This blog is part two of a two-part series focused on how Microsoft DART helps customers with human-operated ransomware. For more guidance on human-operated ransomware and how to defend against these extortion-based attacks, refer to our human-operated ransomware docs page. In part one of this bl...

7.1AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/09/27 5:0 p.m.27 views

A guide to combatting human-operated ransomware: Part 2

This blog is part two of a two-part series focused on how Microsoft DART helps customers with human-operated ransomware. For more guidance on human-operated ransomware and how to defend against these extortion-based attacks, refer to our human-operated ransomware docs page. In part one of this bl...

7.1AI score
Exploits0
ICS
ICS
added 2021/07/08 12:0 p.m.49 views

DarkSide Ransomware: Best Practices for Preventing Business Disruption from Ransomware Attacks

Summary This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge ATT &CK® framework, Version 9. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques. The Cybersecurity and Infrastructure Security Agency CISA and the Federal Bureau of...

9.4AI score
Exploits0References84
Malwarebytes
Malwarebytes
added 2021/04/07 2:44 p.m.88 views

SAP warns of malicious activity targeting unpatched systems

A timely warning to keep systems patched has appeared, via a jointly-released report from Onapsis and SAP. The report details how threat actors are “targeting and potentially exploiting unprotected mission-critical SAP applications”. Some of the vulnerabilities used were weaponised fewer than 72...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2020/10/23 12:38 p.m.97 views

Ransomware Takes Down Network of French IT Giant

French IT giant Sopra Steria was hit with a cyber attack this week that disrupted the business of the firm and is widely believed to be the work of the threat actors behind Ryuk ransomware. The company revealed the attack in a brief press statement released Oct. 22, two days after officials said...

1.1AI score
Exploits0References9
ThreatPost
ThreatPost
added 2019/10/15 12:4 p.m.82 views

Pitney Bowes Hit with Ransomware Attack

Shipping services company Pitney Bowes was hit with a ransomware attack that disrupted customer access to key services, the company said Monday. The attack comes on the heels of an FBI advisory on Oct. 2 that U.S. companies should be on alert for ransomware attacks, which are increasing in...

0.4AI score
Exploits0References11
CNVD
CNVD
added 2018/12/07 12:0 a.m.2 views

Weak Password Vulnerability in Various Security Products of Tiantai Networks

Shanghai Tiantai Network Technology Co., Ltd. is a professional manufacturer and supplier of WEB security and website protection. A weak password vulnerability exists in a number of Tiantai network security products. An attacker can exploit this vulnerability to control security devices, resultin...

7AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2018/11/29 2:0 p.m.53 views

Partner Perspectives: Notes from the Field: Extending Carbon Black Visibility to Undetected Malware

Daniel LaVoie is a Senior Solutions Specialist at ReversingLabs. On a recent customer visit, I asked the company’s Director of Security Operations how ReversingLabs came to be deployed as a part of their SOC tool set. The answer was quite interesting, and one that I wanted to share with our blog...

0.7AI score
Exploits0
ThreatPost
ThreatPost
added 2018/08/08 5:24 p.m.14 views

Threatlist: Manufacturing, a Top Target for Espionage

When it comes to cyberattack-related reconnaissance and lateral movement activity, the manufacturing industry exhibits higher than normal rates. That’s according to Vectra’s 2018 Spotlight Report on Manufacturing, which crunched data from more than 4 million devices and workloads from customer...

0.9AI score
Exploits0References5
Microsoft Secure
Microsoft Secure
added 2018/07/02 4:0 p.m.58 views

Perspectives of a former CISO: Disrupted security in digitalization

My passion is the connection of security to the business objectives, and it has been a part of my work with many CISOs across industries as well as my experience as a CISO. This blog series a compilation of my learnings as a CISO, as well as learnings from peers and customers who are actively...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2018/03/09 9:1 a.m.11 views

Vulnerability in Robots Can Lead To Costly Ransomware Attacks

CANCUN, Mexico – A vulnerability in Softbank Robotics’ NAO and Pepper robots can lead to costly ransomware attacks that could cause robots deployed in businesses to stop working, curse at customers, or even perform violent movements. The vulnerability was disclosed at Kaspersky Lab’s Security...

0.7AI score
Exploits0References2
Rows per page
Query Builder