Rackspace ransomware attack was executed by using previously unknown security exploit
The MS Exchange exploit chain recently revealed by Crowdstrike researchers is how the Play ransomware gang breached the Rackspace Hosted Exchange email environment, the company confirmed last week. The exploit chains CVE-2022-41082, a RCE flaw, and C.....»»
How to choose secure, verifiable technologies?
The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) has published a guidance document titled Choosing Secure and Verifiable Technologies, compiled to assist organizations in making informed decisions when procuring.....»»
New infosec products of the week: December 6, 2024
Here’s a look at the most interesting products from the past week, featuring releases from Datadog, Fortinet, Radiant Logic, Sweet Security, Tenable, and Veza. FortiAppSec Cloud simplifies web application security management With FortiAppSec Cloud,.....»»
GenAI makes phishing attacks more believable and cost-effective
GenAI is a powerful tool that can be used by security teams to protect organizations, however, it can also be used by malicious actors, making phishing-related attacks a growing and concerning threat vector, according to Ivanti. Ivanti’s resear.....»»
Building a robust security posture with limited resources
In this Help Net Security interview, Gareth Lindahl-Wise, CISO at Ontinue, discusses how business leaders can align innovation with cybersecurity, tackle the risks posed by legacy systems, and build defenses for startups. Lindahl-Wise also highlights.....»»
Analysis method reveals unknown chemicals in human serum samples
In the past, chemicals like asbestos and lead caused widespread harm before their dangers were fully understood. Today, many unknown chemicals similarly pose potential risks. Recently, Chiba University researchers developed a new analysis method for.....»»
Four months of camera collar footage provide unprecedented insights into the lives of threatened Andean bears
A team of wildlife ecologists at Asociación para la Conservación de la Cuenca Amazónica, in Peru, working with a colleague from the Osa Conservation, in the U.S., has recorded four months of previously undocumented natural behaviors of Andean bear.....»»
This powerful Oura Ring feature knows if you’re getting sick
Previously part of its beta program, the Symptom Radar feature is now part of the Oura Ring's main app and recognizes early signs of illness......»»
Netography introduces AI-powered ransomware detection capabilities
Netography announced new ransomware detection capabilities that enable organizations to respond to malicious activity in real-time before it disrupts operations or threatens business continuity. These AI-powered enhancements enable Fusion customers t.....»»
Mitel MiCollab zero-day and PoC exploit unveiled
A zero-day vulnerability in the Mitel MiCollab enterprise collaboration suite can be exploited to read files containing sensitive data, watchTowr researcher Sonny Macdonald has disclosed, and followed up by releasing a proof-of-concept (PoC) exploit.....»»
Download: The Ultimate Guide to the CCSP
Even the brightest minds benefit from guidance on the journey to success. The Ultimate Guide to the CCSP covers everything you need to know about the world’s leading cloud security certification. Learn how CCSP – and ISC2 – can help you discove.....»»
8 US telcos compromised, FBI advises Americans to use encrypted communications
FBI and Cybersecurity and Infrastructure Security Agency (CISA) officials have advised Americans to use encrypted call and messaging apps to protect their communications from threat actors that have – and will – burrow into the networks a.....»»
Building trust in tokenized economies
As the tokenized economy expands, the digital landscape is reshaped by decentralized systems and new forms of asset ownership. In this Help Net Security video, Jeremy Bradley, COO of Zama, explores the emerging privacy-preserving technologies that ca.....»»
How the Shadowserver Foundation helps network defenders with free intelligence feeds
In this Help Net Security interview, Piotr Kijewski, CEO of The Shadowserver Foundation, discusses the organization’s mission to enhance internet security by exposing vulnerabilities, malicious activity, and emerging threats. Kijewski explains the.....»»
Preparing for Q-day: The essential role of cloud migration in securing enterprise data
As the era of quantum computing draws closer, businesses face a new and unprecedented threat to data security: “Q-day.” This looming turning point—when quantum machines can break traditional encryption with ease—has the potential to u.....»»
Scientists exploit photo-induced chirality in thin films to improve authentication tech
In today's world, the fight against counterfeiting is more critical than ever. Counterfeiting affects about 3% of global trade, posing significant risks to the economy and public safety. From fake pharmaceuticals to counterfeit currency, the need for.....»»
Solana’s popular web3.js library backdoored in supply chain compromise
A software supply chain attack has lead to the publication of malicious versions of Solana’s web3.js library on the npm registry. Just like the recent Lottie Player supply chain compromise, this attack was reportedly made possible due to compro.....»»
Microsoft reiterates “non-negotiable” TPM 2.0 requirement for Windows 11
Microsoft won't lower Windows 11's requirements to save older Windows 10 PCs. For most people, Windows 10 security updates are slated to stop on October 14, 2025, just over 10 mon.....»»
US recommends encrypted messaging as Chinese hackers linger in telecom networks
US official: "Impossible for us to predict when we'll have full eviction." A US government security official urged Americans to use encrypted messaging as major telecom companies.....»»
Recycling sewage is a sensible way to improve water security, but would you swallow it?
Our water supply is far from infinite. According to the UN, nearly 1.8 billion people are projected to live in areas with absolute water scarcity by 2025, and two-thirds of the world's population could be living under water-stressed conditions......»»
Scan your iPhone for Pegasus spyware using a $1 app
A newly-released app lets you regularly scan your iPhone for Pegasus spyware – which can access almost all the data on a phone – for a one-off cost of just one dollar. A mobile security firm created the app, which allows you to scan your iPho.....»»