News
Russian DDoS attack on Lithuania was planned on Telegram, Flashpoint says
Russian cybercollective Killnet dropped evidence of possible collaboration with ransomware gang Conti in its hacking campaign against Lithuania on a Telegram channel, security company Flashpoint reports.
Microsoft's Defending Ukraine report offers fresh details on digital conflict and disinformation
Russia will use what it learned from its destructive cyber actions in Ukraine for other operations. "There is no going back to normal."
Security startup Cerby debuts with platform to manage shadow IT
The Cerby system automates and streamlines the detection and protection of "unmanageable" applications, providing a platform that centralizes application enrollment, access and monitoring.
5 years after NotPetya: Lessons learned
NotPetya vastly broadened the scope of damage that malware attacks could do and forced CISOs and security researchers to rethink their approach.
After business email compromise, tribunal forces ACT company to pay debt, again
As fraud surges, companies are reminded to tighten email filtering and financial controls to not find themselves in a situation where they have to pay twice for goods acquired only once.
Mitek launches MiVIP platform to fight identity theft
The Mitek Verified Identity Platform can leverage multiple authentication technologies to provide security across the transaction lifecycle.
Italian spyware firm is hacking into iOS and Android devices, Google says
RCS Lab spyware uses known exploits to install harmful payloads and steal private user data, according to a Google report.
![A hand controls a small marionette. [control / manipulation / social engineering]](https://images.idgesg.net/images/article/2020/09/hand_controls_small_marionette_puppet_control_manipulation_social_engineering_by_spiffyj_gettyimages-1182246224_2400x1600-100858607-small.3x2.jpg?auto=webp&quality=85,70)
5 social engineering assumptions that are wrong
Cybercriminals continue to launch creative social engineering attacks to trick users. Meanwhile, social engineering misconceptions are exacerbating the risks of falling victim.
Open-source software risks persist, according to new reports
Companies are still struggling to gain confidence in the security of their open-source projects, but shifting security earlier in the development process shows promise.
Kaseya closes $6.2 billion Datto deal, vows to cut prices
The IT services software provider promises lower costs for consumers, tight integration between the two companies’ products.
Cisco reports vulnerabilities in products including email and web manager
New vulnerabilities found in Cisco internal testing allow remote access and scripting that could lead to the loss of sensitive user data.
Palo Alto adds out-of-band web application security features to Prisma Cloud
Vendor says new updates will help organizations better monitor and secure web applications without impacting performance.
Dozens of insecure-by-design flaws found in OT products
The OT:ICEFALL report shows that makers of operational technology manufacturers have to improve the security of their devices.
Microsoft includes IoT devices under its Secured-core program
The Edge Secured-core, program is designed to validate IoT devices for specific security hardware technology, and ensure users that they are running an OS with built-in security technology.
![A multitude of arrows pierce a target. [numerous attacks / quantity / severity]](https://images.idgesg.net/images/article/2020/12/arrows_piercing_a_target_numerous_attacks_quantity_by_franck_v_cc0_via_unsplash-100869381-small.3x2.jpg?auto=webp&quality=85,70)
APT actor ToddyCat hits government and military targets in Europe and Asia
The previously undocumented APT group has been targeting high-profile organizations in Asia and Europe for over a year.
Cato Networks offers new capability for network-based ransomware protection
New machine learning algorithms scan server traffic to detect and eliminate ransomware attacks across Cato's customer network.
Space-based assets aren’t immune to cyberattacks
Russia's attack on Viasat satellites exposed how vulnerable space-based assets are and the potential for spillover damage.
![A hand controls a small marionette. [control / manipulation / social engineering]](https://images.idgesg.net/images/article/2020/09/hand_controls_small_marionette_puppet_control_manipulation_social_engineering_by_spiffyj_gettyimages-1182246224_2400x1600-100858607-medium.3x2.jpg?auto=webp&quality=85,70)