Lucene search
K

17 matches found

Wired Threat Level
Wired Threat Level
added 2023/04/28 6:1 p.m.17 views

DOJ Detected SolarWinds Breach Months Before Public Disclosure

In May 2020, the US Department of Justice noticed Russian hackers in its network but did not realize the significance of what it had found for six months...

6.9AI score
Exploits0
Qualys Blog
Qualys Blog
added 2021/11/22 3:54 p.m.17 views

Euronet Worldwide: Speedy, Global Response to Threats Reduces Risk

After years of using manual processes and systems to manage its IT inventory and track vulnerabilities, racking up costs, and increasing the complexity of asset and vulnerability management, Euronet Worldwide needed a way to get a single, accurate and timely view of risk exposure at the group...

6.8AI score
Exploits0
Akamai Blog
Akamai Blog
added 2021/06/07 4:0 a.m.14 views

Trusting Locations Bites Us Yet Again

Recently, Microsoft announced the discovery of yet another attack being launched by the now infamous Nobelium group, which has been responsible for numerous successful attacks, including the widespread SolarWinds breach in 2020...

2.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/06/02 6:0 p.m.201 views

odix and Microsoft: Protecting users against malware attacks with free FileWall license

This blog post is part of the Microsoft Intelligent Security Association MISA guest blog series. Learn more about MISA. The fight against malware has become the epic battle of our generation, placing businesses of all sizes against a never-ending stream of hackers and zero-day attacks bent on...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2021/05/27 12:0 p.m.47 views

Biden’s Cybersecurity EO: The Wrong Issues

It’s no secret that foreign adversaries are making a concerted effort to target U.S. government agencies and companies. As technology advances and foreign superpowers gain influence, the game is shifting beneath our feet here in the U.S. Motivated in part by the extent and consequences of the...

7.3AI score
Exploits0References4
Rapid7 Blog
Rapid7 Blog
added 2021/04/09 2:19 p.m.62 views

What’s New in InsightIDR: Q1 2021 in Review

Back at the start of the year, we reflected on some of our 2020 InsightIDR product investments and took a look at what was ahead in 2021 see the blog here. As the first quarter of the year comes to a close, we wanted to offer a closer look at some of the recent updates and releases in InsightIDR,...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2021/04/07 5:57 p.m.57 views

Crossing the Line: When Cyberattacks Become Acts of War

The Cold War concept isn’t outdated. In the decades since the fall of the Soviet Union, the battleground has simply shifted from conflicts between ideological proxy governments to cyberspace. And the opponents have grown from a few primary nations into a broad range of sovereign threat actors. Th...

0.1AI score
Exploits0References3
Imperva Blog
Imperva Blog
added 2021/03/09 7:39 p.m.95 views

Protecting Your Data from Cyber Extortion: Lessons from the Latest Mega-hack

At the end of last year, enterprise firewall company Accellion was the victim of a two-phase SQL injection attack that resulted in significant sensitive data breaches over the last number of months. This attack is important for several reasons. It underscores the rise in frequency of incidents...

10CVSS0.5AI score0.56686EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/01/27 4:28 a.m.6 views

In the Wake of the SolarWinds Hack, Here's How Businesses Should Respond

Throughout 2020, businesses, in general, have had their hands full with IT challenges. They had to rush to accommodate a sudden shift to remote work. Then they had to navigate a rapid adoption of automation technologies. And as the year came to a close, more businesses began trying to assemble th...

5.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/01/19 5:14 p.m.38 views

Malwarebytes targeted by Nation State Actor implicated in SolarWinds breach. Evidence suggests abuse of privileged access to Microsoft Office 365 and Azure environments

A nation state attack leveraging software from SolarWinds has caused a ripple effect throughout the security industry, impacting multiple organizations. We first reported on the event in our December 14 blog and notified our business customers using SolarWinds asking them to take precautionary...

1.4AI score
Exploits0
Imperva Blog
Imperva Blog
added 2021/01/05 4:48 p.m.44 views

2020 Ends With A Bang

December 2020 was an eventful month in cyber security. This blog recaps three of the major security events we saw towards the end of last year. December began with FireEye’s breach announcement that included a leak of its red team tools arsenal. Quickly after this announcement, Imperva Threat...

0.1AI score
Exploits0
Schneier on Security
Schneier on Security
added 2021/01/05 12:42 p.m.57 views

Latest on the SVR’s SolarWinds Hack

The New York Times has an in-depth article on the latest information about the SolarWinds hack not a great name, since its much more far-reaching than that. Interviews with key players investigating what intelligence agencies believe to be an operation by Russia’s S.V.R. intelligence service...

1.2AI score
Exploits0
Qualys Blog
Qualys Blog
added 2021/01/04 7:24 p.m.47 views

Technical Deep Dive Into SolarWinds Breach

Many organizations have been compromised by the recent SolarWinds breach, which seems to be a targeted attack against both government and private agencies. The complete scale of this attack is still unknown, but what is known is that the hackers gained access to victims’ systems via malicious...

0.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/01/04 3:52 p.m.35 views

A week in security (December 28 – January 3)

First off we would like to wish all our readers a happy and secure 2021! Last week on Malwarebytes Labs we presented an overview of developments in the SearchDimension hijackers, we looked at the most enticing cyberattacks of 2020, and we also looked back at the strangest cybersecurity events of...

0.7AI score
Exploits0
The Hacker News
The Hacker News
added 2020/12/22 9:14 a.m.46 views

A Second Hacker Group May Have Also Breached SolarWinds, Microsoft Says

As the probe into the SolarWinds supply chain attack continues, new digital forensic evidence has brought to light that a separate threat actor may have been abusing the IT infrastructure provider's Orion software to drop a similar persistent backdoor on target systems. "The investigation of the...

8AI score
Exploits0
The Coalfire Blog
The Coalfire Blog
added 2020/12/18 7:31 p.m.30 views

The Edge of a Storm?

The SolarWinds element of this breach is likely just the tip of the iceberg as many more businesses leveraging their management tools are exposed to this compromise. Not necessarily from the nation state actor believed to have triggered it, but from the potential sell off of those points of acces...

0.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2020/12/17 8:18 p.m.27 views

More on the SolarWinds Breach

The New York Times has more details. About 18,000 private and government users downloaded a Russian tainted software update -­ a Trojan horse of sorts ­- that gave its hackers a foothold into victims systems, according to SolarWinds, the company whose software was compromised. Among those who use...

0.3AI score
Exploits0
Rows per page
Query Builder