Category Security

January 19, 2023Rabbi LakshmananCloud Security / Data Security A new critical remote code execution (RCE) flaw that was discovered affecting multiple services related to Microsoft Azure could be exploited by malicious actors to gain complete control over the targeted application.…

Ransomware payments will drop by more than 40% in 2022 compared to 2021, and victim organizations are becoming increasingly reluctant to pay extortionists, according to new findings from Chainalysis. In the ransomware section of the 2023 Crypto Crime Report, a…

An organization’s sensitive information is under constant threat. Identifying these security risks is critical to protecting that information. But some risks are greater than others. Some mitigation options are more expensive than others. How do you make the right decisions?…

Industrial control system (ICS) operators are disappointed with their vendors after a new study reveals that 35% of CVEs published in the second half of 2022 still do not have patches available. Synsaber’s ICS vulnerabilities In our 2H22 report, we…

Security researchers found over 400 malicious packages on the popular open source registry npm in December, and dozens more on PyPI. In a blog post, Sonatype explained that its AI tool uncovered 422 malicious npm packages, mostly focused on data…

January 19, 2023Rabbi LakshmananEmail Security / Security Breach Mailchimp, a popular email marketing and newsletter service, has revealed yet another security breach that allowed threat actors to access internal support and account management tools to obtain information about 133 customers.…

Some 94% of European organizations struggle to find skilled practitioners for critical privacy-related roles, according to a new survey by professional association ISACA. The IT audit and governance body surveyed 375 privacy professionals across the region in Q4 2022 as…

China’s Advanced Persistent Threat (APT) known as vixen panda is linked to a new series of attacks targeting the Iranian government between July and December 2022. This claim comes from the following cybersecurity researchers: Palo Alto NetworksUnit 42 who shared…

Carol is in bed, and Graham is put in charge of the excellent ship Smashing Security, navigating a choppy sea of ​​credential stuffing and keeping the swirling waters of apps from getting sloppy with sensitive information. For more information, check…

If cybercrime were a state, it would be the world’s third-largest economy after the United States and China, estimated at $10.5 trillion, up from $3 trillion in 2015. At his 2023 World Economic Forum (WEF) in Davos, Switzerland on January…