SEARCH
All Articles
ProxyShell, Log4J Among Most Commonly Exploited Bugs in 2021
The ProxyShell, Log4J, and Zerologon bugs were among the most commonly exploited ones in 2021, according to a new advisory from the NSA and other agencies.
Decipher Podcast: Don Smith
Don Smith of the Secureworks CTU joins Dennis Fisher to discuss the effects of the Conti leaks, the ransomware landscape, and how law enforcement and researchers are countering attackers' ploys.
APT Groups Exploit Known VMware RCE Flaw
Sophisticated threat groups started closing in on the VMware remote code execution flaw a week after a patch was deployed.
Microsoft Uncovers ‘Nimbuspwn’ Flaws in Linux Service
Microsoft researchers found a group of vulnerabilities dubbed Nimbuspwn in a Linux service named networkd-dispatcher that can lead to root privileges.
Emotet ‘Test’ Campaign Leverages OneDrive, XLL Files
A recent Emotet campaign with significant TTP changes reveal that attackers may be moving away from macros-based attacks given Microsoft’s recent plans to block VBA macros by default.
Novel BlackCat Ransomware Tactic Speeds Up Encryption Process
A March 17 BlackCat ransomware incident revealed how the attackers are working to speed up the process of encryption using a new communication protocol.
Okta Ends Investigation Into Lapsus$ Breach
Identity provider Okta has finished the investigation into a January breach by hacking group Lapsus$ at one of its third-party providers and says it affected far fewer customers than initially feared.
Decipher Podcast: Source Code 4/22
This week's Source Code podcast by Decipher takes a look behind the scenes at top news with input from our sources.
Lemon Duck Botnet Targets Exposed Docker APIs
The prolific botnet, which previously targeted vulnerable Microsoft Exchange servers, is now gaining initial access via exposed Docker APIs.
Chinese Cyber Espionage APTs Refocus Strategy
A recent report shows how a smaller set of Chinese APT actors have emerged in the past few years with 'more focused, professionalized, and sophisticated attacks.'
Java Crypto Bug Allows Forging of Signatures, Certificates
A critical bug in Java's implementation of ECDSA (CVE-2022-21449) can allow an attacker to forge a signature or certificate to deliver virtually any payload.
FBI Seeks Further Info on BlackCat Amid Ransomware Attacks
Since its emergence in November, the BlackCat ransomware group has racked up at least 60 victims worldwide.
CISA: Lazarus APT Targeting Blockchain Orgs With TraderTraitor Malware
The Lazarus APT group is targeting cryptocurrency and blockchain organizations with malware called TraderTraitor, warns the U.S. government.
Lenovo Releases Fixes For UEFI Firmware Flaws
Lenovo has released security advisories addressing a trio of flaws that impact dozens of laptop models.
Decipher Podcast: Justine Bone
The medical industry is still facing an array of security challenges, but hospitals and healthcare providers are becoming more aware of the risks inherent in their environments.