7 matches found
SQL Injection Vulnerability in ASRock Terminal Security Management System
ASRock Terminal Security Management System is an integrated terminal security product solution for governmental and enterprise organizations. The product integrates anti-virus, terminal security control, terminal access, terminal audit, peripheral control, EDR and other functions, and is compatib...
Microsoft Office 365 Credentials Under Attack By Fax 'Alert' Emails
Researchers are warning of a coordinated phishing attack that targeted “numerous” enterprise organizations last week. The attackers behind the attack leveraged hundreds of compromised, legitimate email accounts in order to target organizations with emails, which pretended to be document delivery...
Newly-Identified BEC Cybergang Targets U.S. Enterprise Victims
LONDON, U.K. – Researchers have identified a highly-sophisticated Nigerian business email compromise gang targeting U.S enterprises and government institutions. The cybercrime group, dubbed Scattered Canary, has evolved over the past 10 years from a one-man shop working Craigslist scams into a...
5G Networks Spark Concerns For Enterprise Risks
THE HAGUE, Netherlands – The rise of 5G networks – and subsequent security risks – was the centerpiece issue discussed during the GSMA’s Mobile360 conference on 5G security this past week. While researchers warn that 5G security issues could literally be a matter of life or death for certain...
Threat Identity...The First Line of Defense
Last quarter, we discussed zero trust and identity in regard to remote application access. This focus was primarily looking at enterprise users seeking to gain access to applications on a network where there are no boundaries: The internet. In the concept of zero trust, the internet is considered...
Petya Ransomware Installs Mischa As Failsafe
The Petya ransomware strain signaled a new escalation for crypto-malware when it surfaced in March. For the first time, ransomware went beyond encrypting files on local and shared drives and instead set its sights on locking up the Master File Table on compromised machines. Petya did have its...
Novell GroupWise Messenger HTTP Response Handling Stack Overflow (CVE-2008-2703)
Novell GroupWise Messenger is a corporate instant messaging solution targeting toward medium to large enterprise organizations. It facilitates secure communications and policy-based management through Novell's eDirectory product suite. The product is based on a client-server model where messaging...