Security

ransomware | Feb 07, 2024

Ransomware earns scumbags $1 billion in 2023

"Invest in, understand and test your entire recovery strategy"

Security | Feb 02, 2024

AnyDesk confirms production systems were breached

"We can confirm that the situation is under control" is not the world's greatest incident response report we've seen.

Security | Feb 02, 2024

Cloudflare says hackers stole source code, breached Atlassian and AWS environments

Incident forces huge hygiene effort, as Cloudflare rotates 5,000 credentials, triages 4,893 systems, reimages and reboots every machine after compromise.

Ivanti | Feb 02, 2024

Ivanti 0day fest continues with fresh bugs, attacks, as CISA tells federal agencies "just disconnect"

"Threat actors have recently developed workarounds to current mitigations and detection methods and have been able to exploit weaknesses, move laterally, and escalate privileges without detection..."

Security | Jan 31, 2024

Gen AI-powered cybersecurity? Maybe get identity management fixed first

Sysdig research shows companies still not getting it right when shifting left

Security | Jan 30, 2024

Hack back: US disconnects Volt Typhoon

"This actor is not doing the quiet intelligence collection and theft of secrets... they can disrupt major services if, and when, the order comes down,"

Security | Jan 30, 2024

SolarWinds howls back at SEC, accuses agency of "revictimization"

Software firm calls for dismissal of SEC action

patch | Jan 30, 2024

Patch now: Critical Jenkins exploits released

POCs validated, over 45,000 instances still publicly exposed after critical Jenkins vulnerability disclosed.

Security | Jan 30, 2024

US commodities market regulator wants traders to ratchet up resilience

Just how do you make trading places more secure

document.currentScript.parentNode.innerHTML = (parseInt(document.currentScript.closest('.iteration-container').dataset.length)).toString();