Since at least 2016, hacked websites have targeted zero-day flaws in current versions of Apple iOS to surreptitiously implant data-stealing and location-tracking malware, says Google's Project Zero team. Apple patched the latest vulnerabilities in February.
French police say they've disrupted the operations of the Retadup malware gang by subverting attackers' command-and-control infrastructure to delete the malicious code from 850,000 infected PCs and servers worldwide. The move came after police received a tip and technical assistance from security firm Avast.
Network detection and response, endpoint detection and response, and SIEM are the "visibility triad" of critical data sources for effective threat hunting and incident response, says Matt Cauthorn of Extrahop, who explains why.
Zero Trust is a security concept centered on the fact that organizations should not automatically trust anything outside or inside its perimeters - and instead must verify everything trying to connect to its systems prior to granting access. This extra layer of protection has been established to prevent data...
Within a month, the U.S. Department of Homeland Security hopes to launch a program to help states protect voter registration databases and systems in advance of the 2020 presidential election. Security experts say that in light of recent ransomware attacks against units of government, the effort is overdue.
Apple released a patch on Monday that fixes a bug it accidentally reintroduced in a previous patch update. The flaw allowed iOS enthusiasts to jailbreak their up-to-date devices, but also could have been put to malicious use by hackers.
Every industry is vulnerable to breaches - and more often than not, weak or stolen passwords are the culprit of confirmed data breaches. That shows that many attacks are relying on tried-and-true methods, but that isn't necessarily a good thing. Despite the growing capacity to detect known threats, user credentialing...
IT monitoring technology is moving forward rapidly, thanks in large part to machine learning and predictive analytics. If you're still getting by with a legacy IT solution, you're missing out on a lot more than a shiny object. The benefits of a New IT approach are being proven every day.
Download your complimentary...
From protecting customer experience to preserving lines of revenue, IT operations teams are faced with increasingly complex responsibilities while being required to prevent outages that could harm the organization. Splunk IT Service Intelligence (ITSI) utilizes AI powered by machine learning to deliver a predictive IT...
VMware is acquiring cloud security firm Carbon Black in a $2.1 billion cash deal to bolster the virtualization giant's security portfolio. It's also acquiring Pivotal, a company that focuses on helping its customers build applications in the cloud as well as through new technologies such as containers.
Ransomware-wielding attackers continue to target not just big businesses and large government agencies, but increasingly their smaller counterparts too. In Texas, officials say a campaign tied to a "single threat actor" infected 22 local government agencies on Friday.
Recently in the news, websites go down when a service provider has a problem.
Today's successful digital strategies should include a secondary DNS solution capable of providing your company and customers with:
Increased redundancy in the event of an outage
A separate DDoS protection strategy to defeat...
Finding a security framework comprehensive enough to serve the tactical needs of security operations teams can be difficult. MITRE ATT&CK is the first framework to meet these needs and provide a basis for real-time security operations improvements.
Download this white paper to learn more about:
The five essential...
Deception technology is attractive in that it offers - in theory - low false positives and critical clues to attackers' methodologies. But the benefits depend on its ability to fool attackers and whether organizations can spare the time to fine-tune it.
There is a key shift in the
threat landscape as attackers focus more on attacking
key endpoints and infrastructure. As a result, many
organizations are developing security blind spots.
Read this ebook to learn more about:
Shifts in threat activity;
Blind spots in cyber defenses & how to regain...