Advertisement
More top stories
MoonBounce UEFI implant used by spy group brings firmware security into spotlight
The MoonBounce rootkit implants a malicious driver in the Windows kernel to provide persistence and stealthiness.
Attackers use public cloud providers to spread RATs
Cisco discovers malware campaign using Azure and AWS to spread Nanocore, Netwire and AsyncRATs.
McAfee, FireEye merger yields Trellix, a unified XDR security company
Trellix will build on existing McAfee and Fire Eye applications, machine learning and automation technology to create an XDR platform of interoperable of products for threat prevention, detection and response.
Advertisement
Cybersecurity Snippets
Security hygiene and posture management: A 2022 priority
Disjointed tools and manual processes provide an incomplete and unacceptable picture of cyber-risk.
New US CISO appointments, January 2022
Keep up with news of CSO, CISO, and other senior security executive appointments.
Biden memo aims to bolster cybersecurity in national security systems
A national security memorandum places new cybersecurity requirements for reporting and preventing security incidents involving sensitive national security systems.
What CISOs can learn about insider threats from Iran's human espionage tactics
Israel's arrest of four women recruited to spy for Iran reveals how an adversary might recruit an insider to act on its behalf.
BadUSB explained: How rogue USBs threaten your organization
The FBI has warned of an attack campaign that sends USB drives containing malicious software to employees. Here is what you need to know about BadUSB and mitigating its risks.
Arm’s vulnerability management program has legs
CISO Tim Fitzgerald’s vulnerability management program has delivered measured improvements and earned the security team recognition as a business-enablement function.
INTERPOL and Nigerian Police bust business email compromise ring, arrest 11
Operation Falcon II focused on malware skills and knowledge to track suspects thought to be members of the SilverTerrier BEC network that has harmed thousands of companies globally.
-
eBook
Sponsored -
Video/Webcast
Sponsored -
Research/Infographic
Sponsored -
Advertisement
Supply chain vulnerability allows attackers to manipulate SAP transport system
The vulnerability permits malicious interference in the SAP change management and software deployment processes. SAP issues patch to protect file system from exploitation.
The Prometheus traffic direction system is a major player in malware distribution
Newly discovered Prometheus uses a network of compromised websites and servers to direct victims to malware or scams.
Microsoft's Pluton security processor tackles hardware, firmware vulnerabilities
Pluton-equipped Windows 11 computers are now available, but the decision to purchase them depends on your threat model.
Russia-linked cyberattacks on Ukraine: A timeline
Cyber incidents are playing a central role in the Russia-Ukraine conflict. Here's how events are unfolding along with unanswered questions.
Russian cyberattacks on Ukraine raise IT security concerns
The destructive attacks follow a U.S. government warning for a "heightened state of awareness" and to follow state-sponsored threat mitigation advice.
From Our Advertisers
-
![cso sponsored background]()
Featured Sponsor AkamaiFuture of Life Challenge: Compete for a slice of $1M to scale your big idea. -
![why cyber resiliency has transitioned from a security initiati 1200x800]()
Sponsored by NetscoutWhy Your Business Strategy Needs to Include Cyber Resiliency in 2022 -
![istock 1270518089]()
Sponsored by SectigoA Guide to Certificate Lifecycle Management: Benefits and Use Cases -
![ExtraHop]()
Sponsored by ExtraHopDetect Log4j Attacks Hiding in Encrypted Traffic
