Content Paint
Search
Sign in
Membership

Security

Security  | Nov 15, 2021
BitLocker used to attack servers in "intrusion with almost no malware"
BitLocker used to attack servers in "intrusion with almost no malware"

Hackers breached an organisation running on-premises Microsoft Exchange servers and after moving laterally proceeded to encrypt systems domain wide, using Microsoft's own BitLocker tool rather than malware associated with a Ransomware-as-a-Service group, analysts writing for The DFIR report said Monday. Dubbing it an "intrusion with almost no

Security  | Nov 15, 2021
FBI software vulnerability let hacker send thousands of emails from a federal domain
FBI software vulnerability let hacker send thousands of emails from a federal domain

FBI blames "software misconfiguration". It could have been a lot worse...

Security  | Nov 11, 2021
Critical pre-auth RCE revealed in Palo Alto Networks' GlobalProtect
Critical pre-auth RCE revealed in Palo Alto Networks' GlobalProtect

Wait, what? (Patch this one urgently...)

Software  | Nov 10, 2021
Consistently patch these AD updates or your unpatched Domain Controllers will fail
Consistently patch these AD updates or your unpatched Domain Controllers will fail

Patch carefully and promptly as ever.

Security  | Nov 08, 2021
How a devastating ransomware attack forced a radical security rethink
How a devastating ransomware attack forced a radical security rethink

"Like brain surgery without putting the victim to sleep"

Security  | Nov 08, 2021
REvil ransomware "affiliates" arrested, including alleged Kaseya hacker
REvil ransomware "affiliates" arrested, including alleged Kaseya hacker

Europol has announced the arrests of seven REvil/GandCrab ransomware group "affiliates". The arrests came as part of a global effort called operation "GoldDust" intended to take the fight to cybercriminals. This involved 17 different countries and cybersecurity companies BitDefender, KPN and McAfee Enterprises. The REvil

Security  | Nov 08, 2021
Security over the total application lifecycle: Understanding assets, threat models
Security over the total application lifecycle: Understanding assets, threat models

"In most cases, it’s easier and more efficient to have a pipeline run when a change is detected in a key component"

Security  | Nov 05, 2021
US Agencies given two weeks to patch 100+ exploited vulns -- but who's forcing compliance?
US Agencies given two weeks to patch 100+ exploited vulns -- but who's forcing compliance?

It took TWO YEARS for all agencies to meet an earlier 45 day deadline

Security  | Nov 03, 2021
Over 30,000 GitLab servers still vulnerable to CVSS 10, exploited pre-auth RCE bug
Over 30,000 GitLab servers still vulnerable to CVSS 10, exploited pre-auth RCE bug

Patch, patch, patch

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.