Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
CompuCom shares information on the cost of recovering from a cybersecurity incident, including loss of revenue and major service disruptions. [Read More]
The Black Kingdom/Pydomer ransomware operators join other threat actors targeting unpatched Microsoft Exchange servers. [Read More]
Hades ransomware operators adopt a double-extortion tactic, but they are often slow to respond to requests for payment instructions. [Read More]
Apple ships an urgent security update to fix a major security flaw affecting iPhone, iPad and Apple Watch devices and warned that the vulnerability is being actively exploited in the wild. [Read More]
Reuters is reporting that a draft executive order would set new rules on data breach disclosure and use of multi-factor authentication and encryption in federal agencies. [Read More]
Kaspersky says ransomware attacks on ICS devices decreased globally in the second half of 2020, but increased in developed countries. [Read More]
Researchers flag a critical security hole in the official Facebook for WordPress plugin and warn it could be abused for remote code execution attacks. [Read More]
Solarwinds has shipped a major security update to fix at least four documented security vulnerabilities, including a pair of bugs that be exploited for remote code execution attacks. [Read More]
Slack rushed to take action on Wednesday after customers raised security-related concerns regarding a new feature that allows users to send direct messages to anyone. [Read More]
The FBI warns that the Mamba ransomware is now weaponizing DiskCryptor to encrypt entire drives, including the operating system. [Read More]
FEATURES, INSIGHTS // Malware
To reduce exposure to malware, security teams need to learn the DevOps techniques that are being adopted across the rest of the IT organization.
The early indicators of the WannaCry attack were evident, but it spread too quickly for human security teams to react before it spread across the world like wildfire.
If the WannaCry incident taught us anything, it’s that global, widespread ransomware can and will impact organizations without any notice. The time to prepare is now.
Investigating nefarious actors online can be dangerous, as the places hunters go are likely to be full of malware and people actively monitoring for outsiders.
When implemented in series, common malware analysis environments allow security teams to handle the vast majority of threats automatically, freeing up team resources to actively hunt more advanced threats.
When implemented as part of a natively-engineered security platform, these malware identification and prevention practices can reduce the operational burden put on security teams.
Identifying malicious software by recognizing that it just damaged the system or exfiltrated some amount of information is no longer defense, but detection.
While malicious actors demanding ransoms is not new, the surge of organizations being targeted with fake extortion demands and empty threats is. Let’s look at how extortion campaigns are carried out through the “avenue of approach” lens.
Protection against the effects of ransomware starts with a clear understanding of all of the means that attackers will use to implant that first malicious package.
Attackers have developed anti-VM analysis techniques to allow the malware to recognize when it is being run on a virtual machine and fail to execute, meaning the system or threat analytics cannot make a verdict determination or extract intelligence from the sample.
Get the Daily Briefing
- Vulnerabilities in OpENer Stack Expose Industrial Devices to Attacks
- How the Kremlin Provides a Safe Harbor for Ransomware
- Critical Vulnerability Can Allow Attackers to Hijack or Disrupt Juniper Devices
- Industry Reactions to FBI Cleaning Up Hacked Exchange Servers: Feedback Friday
- More Countries Officially Blame Russia for SolarWinds Attack
- Sanctioned Russian IT Firm Was Partner With Microsoft, IBM
- Google Project Zero Announces 2021 Updates to Vulnerability Disclosure Policy
- Google Broke Australian Law Over Location Data Collection: Court
- Codecov Bash Uploader Dev Tool Compromised in Supply Chain Hack
- Cloud Forensics Firm Cado Security Raises $10 Million in Series A Funding
Copyright © 2021 Wired Business Media. All Rights Reserved. Privacy Policy