Lucene search
+L

6 matches found

threatpost
threatpost
added 2022/07/21 12:59 p.m.70 views

Hackers for Hire: Adversaries Employ ‘Cyber Mercenaries’

A for-hire cybercriminal group is feeling the talent-drought in tech just like the rest of the sector and has resorted to recruiting so-called “cyber-mercenaries” to carry out specific illicit hacks that are part of larger criminal campaigns. Dubbed Atlas Intelligence Group A.I.G., the cybergang...

7AI score
Exploits0References9
threatpost
threatpost
added 2021/10/05 2:55 p.m.43 views

How to Build an Incident-Response Plan, Before Security Disaster Strikes

In a startling discovery, a recent report found that 98 percent of companies have experienced at least one cloud data breach in the past 18 months, compared to 79 percent last year. The same report disclosed that nearly 60 percent of the 200 CISOs and security decision-makers surveyed considered...

7.2AI score
Exploits0References2
openvas
openvas
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2017:0426-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.3AI score0.33199EPSS
Exploits16References14
schneier
schneier
added 2019/08/12 11:14 a.m.61 views

Evaluating the NSA's Telephony Metadata Program

Interesting analysis: "Examining the Anomalies, Explaining the Value: Should the USA FREEDOM Act's Metadata Program be Extended?" by Susan Landau and Asaf Lubin. Abstract: The telephony metadata program which was authorized under Section 215 of the PATRIOT Act, remains one of the most controversi...

0.6AI score
Exploits0
openvas
openvas
added 2016/02/18 12:0 a.m.26 views

BSI-TR-03116-4 Policy

The German Federal Office for Information Security published a guideline with specifications for the use of communication methods. This script checks the specifications for securing communication using TLS by testing if at least one of the mandatory cipher suites are enabled on the target: - TLS...

5.9AI score
Exploits0References3
threatpost
threatpost
added 2015/02/10 9:0 a.m.240 views

Researchers: PlugX More Prominent Than Ever

Existing in some form since 2008, the popular remote access tool PlugX has as notorious a history as any malware, but according to researchers the tool saw a spike of popularity in 2014 and is the go-to malware for many adversary groups. Many attacks, especially those occurring during the latter...

9.3CVSS7AI score0.99966EPSS
Exploits22References6
Rows per page
Query Builder