SEARCH
All Articles
VMware Fixes Critical Authentication Bypass in Carbon Black App Control
VMware has released a patch for a critical authentication bypass flaw in its Carbon Black App Control product.
LV Ransomware Group Repurposed REvil Binary, Researchers Find
Secureworks researchers found that the LV ransomware group is using a repurposed, slightly modified version of the REvil ransomware binary.
Google Patches Zero Day in Chrome
Google has fixed a zero day in Chrome 91 that \has been used in active attacks.
Reworked Data Protection Act Hits Senate
The Data Protection Act of 2021 introduced by Sen. Kirsten Gillibrand would create a new Data Protection Agency.
Ukrainian Police Arrest Suspected Cl0p Ransomware Operators
Police in Ukraine have arrested six people they allege are involved in operating the Cl0p ransomware.
Decipher Podcast: Derek Manky
Lindsey O'Donnell-Welch talks to Derek Manky of Fortinet about the breakdown of barriers between private firms and public sector agencies, law enforcement and the security industry.
Microsoft Disrupts Broad Cloud-Based BEC Campaign
Microsoft researchers have disrupted a phishing and business email compromise campaign that used several separate cloud platforms to disguise its operations.
Google Gives Enterprises Control of Workspace Encryption Keys
Google Workspace's new client-side encryption feature allows enterprises to control their own keys.
Law Enforcement Agencies Disrupt Slilpp Underground Marketplace
The FBI and international law enforcement agencies have disrupted Slilpp, allegedly the largest online marketplace for stolen credentials.
JBS Paid $11 Million Ransom
Food producer JBS USA said it paid an $11 million ransom to resolve the ransomware attack that hit the company on May 30.
Microsoft Fixes Six Zero Days Used in Attacks
Microsoft's June Patch Tuesday includes fixes for six vulnerabilities that have been used in attacks in the wild.
Colonial Pipeline CEO Says Ransom Payment ‘Right Thing to Do’ For Country
The shutdown of the Colonial Pipeline and the payment of the ransom to restore the company's network was the right thing to do to recover from the DarkSide ransomware attack, the company's CEO said.
Attacks Target Critical VMware vCenter Flaw
Mass scanning and exploit attempts are targeting the VMware vCenter vulnerability (CVE-2021-21985) are ongoing, with thousands of unpatched servers still online.
U.S. Seizes $2.3 Million From DarkSide Actors Who Targeted Colonial Pipeline
The Department of Justice seized $2.3 million in Bitcoin that was part of the ransom that Colonial Pipeline paid to DarkSide ransomware actors in May.
Finding Badness in AWS With Patrolaroid
A new tool called Patrolaroid scans AWS instances and S3 buckets for malware by taking snapshots rather than using an agent to scan production workloads.