+84949482065
Microsoft has released a blog on NOBELIUM attacks on cloud services and other technologies. CISA urges users and administrators to review [NOBELIUM targeting delegated administrative privileges to facilitate broader attacks]…
The U.S. Department of State is offering a reward of up to $10 million for information leading to the identification or location of the leaders behind the DarkSide ransomware. The…
Although AWS architecture is designed to be safe, it is up to users to secure their respective cloud environments. Let’s look at the most disruptive security incidents associated with AWS…
The DBIR is not in the business of prediction, but it can go a long way to help you shape your response strategy in the face of an uncertain future.…
The addresses are trading on “hacking forums,” haveibeenpwned reported. CoinMarketCap acknowledges “correlation” with its subscriber base but maintains its servers weren’t breached. Ref https://finance.yahoo.com/news/over-3-million-coinmarketcap-email-012917781.html?guccounter=1
As Zero-Trust gains popularity, organizations have to fully understand its concept and steer clear of the misconceptions surrounding it in order to deploy the best frameworks and strategies. Ref https://gcn.com/articles/2021/11/01/zero-trust-misconceptions.aspx?m=1
CISA will update this catalog with additional exploited vulnerabilities as they become known, subject to an executive level CISA review and when they satisfy the following thresholds: The vulnerability has…
Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these vulnerabilities to take control of an affected system. Ref https://www.mozilla.org/en-US/security/advisories/mfsa2021-48/
The US said the four companies had "developed and supplied spyware" and other hacking tools that they sold to the foreign government using them to attack civilians and businesses. Positive…
Splunk provides a one stop shop for SIEM and Endpoint detections that are all mapped to MITRE ATT&CK techniques. This is a great resource for defenders. Excellent work here
