Email attacks skyrocket 293%
Email attacks have surged by 293% in the first half of 2024 compared to the same period in 2023, according to Acronis. The number of ransomware detections was also on the rise, increasing 32% from Q4 2023 to Q1 2024. Ransomware remains a top threat f.....»»
70% of open-source components are poorly or no longer maintained
The geographic distribution of open-source contributions introduces geopolitical risks that organizations must urgently consider, especially with rising nation-state attacks, according to Lineaje. Open-source code risks rise with anonymous contributi.....»»
SafeLine: Open-source web application firewall (WAF)
SafeLine is an open-source and self-hosted Web Application Firewall (WAF) that protects websites from cyber attacks. “SafeLine WAF was created to protect web applications for small and medium-sized enterprises from cyber threats by monitoring a.....»»
N2WS platform enhancements improve restore time for enterprises and MSPs
N2WS has unveiled new enhancements to its cloud-native backup and disaster recovery (BDR) platform. These updates empower enterprises and managed service providers (MSPs) to address the growing threats of ransomware and other malicious attacks while.....»»
Phishers send corrupted documents to bypass email security
Phishers have come up with a new trick for bypassing email security systems: corrupted MS Office documents. The spam campaign Malware hunting service Any.Run has warned last week about email campaigns luring users with promises of payments, benefits.....»»
AWS offers incident response service
Amazon Web Services (AWS) has launched a new service to help organizations prepare for and recover from ransomware attacks, account takeovers, data breaches, and other security events: AWS Security Incident Response (SIR). Creating a case (Source: AW.....»»
The threats of USB-based attacks for critical infrastructure
The threats of USB-based attacks for critical infrastructure.....»»
RomCom hackers chained Firefox and Windows zero-days to deliver backdoor
Russia-aligned APT group RomCom was behind attacks that leveraged CVE-2024-9680, a remote code execution flaw in Firefox, and CVE-2024-49039, an elevation of privilege vulnerability in Windows Task Scheduler, as zero-days earlier this year. “Ch.....»»
Microsoft Outlook and Teams are down — and might be for a while
Microsoft 365 apps have been experiencing an outage since early this morning that is mostly affecting email and calendar services on Exchange, Outlook, and Teams......»»
Brace yourself for PC hardware to get insanely expensive next year
PC hardware is already expensive, but proposed tariffs that could go into effect next year might cause prices to skyrocket......»»
Microsoft president asks Trump to “push harder” against Russian hacks
Brad Smith wants US to take a tougher approach to state-sponsored cyberattacks. Microsoft’s president has called on Donald Trump to “push harder” against cyber attacks from.....»»
2024 saw a surge in malicious free VPN apps
Cybercriminals increasingly use fake VPN apps to spread malware and launch other attacks. This is what's at stake......»»
Some older D-Link routers are vulnerable to attack
Older D-Link routers suffer a security flaw that exposes users to threats such as malware, DoS attacks, and more. See the reason why there is no fix......»»
5 charged in “Scattered Spider,” one of the most profitable phishing scams ever
Phishing attacks were so well-orchestrated that they fooled some of the best in the business. Federal prosecutors have charged five men with running an extensive phishing scheme t.....»»
2,000 Palo Alto Networks devices compromised in latest attacks
Attackers have compromised around 2,000 Palo Alto Networks firewalls by leveraging the two recently patched zero-days (CVE-2024-0012 and CVE-2024-9474), Shadowserver Foundation’s internet-wide scanning has revealed. Compromised devices are pred.....»»
HP Enterprise Security Edition protects PC hardware and firmware from physical attacks
HP announced HP Enterprise Security Edition, a suite of security capabilities designed to enhance the physical security of HP business class PCs. HP Enterprise Security Edition includes multilayered safeguards to protect PC hardware and firmware from.....»»
Hornetsecurity DMARC Manager protects against fraud and phishing attacks
Hornetsecurity launched DMARC Manager, an advanced tool addresses the complex challenges organisations face in managing DMARC, DKIM, and SPF configurations, especially for those operating across multiple domains. As email threats such as fraud and im.....»»
Open-source and free Android password managers that prioritize your privacy
We’re often told to use strong, unique passwords, especially for important accounts like email, banking, and social media. However, managing different passwords for numerous accounts can be challenging. Password managers simplify this by securely s.....»»
Why AI alone can’t protect you from sophisticated email threats
In this Help Net Security interview, Riaz Lakhani, CISO at Barracuda Networks, discusses the effectiveness of AI-based behavioural analysis in combating sophisticated email threats like BEC and VEC. Lakhani also explains how AI tools help detect mali.....»»
Security Bite: Why email security is still so bad
It’s a little-known fact that before emails reach your inbox, they pass through a buffer designed to scan and block malicious content. However, over time, email providers—especially Gmail—have shifted their focus to just adding “warning label.....»»
Ranchers again ask Colorado wildlife officials to delay release of next round of wolves
Colorado ranchers are renewing their demand for state wildlife officials to delay the release of more wolves until they finalize more programs to prevent attacks on livestock......»»