IBM Aspera Faspex servers are being targeted by ransomware gangs
A vulnerability in IBM Aspera Faspex servers is being actively exploited by ransomware criminals, researchers warn.
Hackers are exploiting a critical vulnerability in an IBM file-exchange application. According to security researchers, the criminals are using the flaw to install ransomware on se... Read more
Acronis integrates Intel TDT technology for greater CPU efficiency
Acronis has integrated Intel Threat Detection Technology into several solutions. With this, this security vendor's platform offers better protection against new and more developed forms of malware.
According to Acronis, malware is becoming increasingly sophisticated. Consider the rapid rise of s... Read more
Exchange Online to block emails from “vulnerable” on-prem servers
Microsoft is enabling a new security feature to protect users from on-premise servers that have not updated their security.
Microsoft is enabling a new system for Exchange Online that will automatically start throttling and blocking emails sent from "persistently vulnerable Exchange servers" tha... Read more
As fear of cyber threats rises, organizations have to review their security strategy
“Frankly, I live in terror of a ransomware attack and state-sponsored intrusions.”
This quote from a business professional comes from the 2023 SonicWall Cyber Threat Report. It perfectly captures what organisations are currently very concerned about. Ransomware has been keeping organisations... Read more
Pwn2Own event yields 27 zero-days
Security researchers managed to discover as many as 27 zero-days in major enterprise software during the three days of the Pwn2Own Vancouver 2023 event. Zero-days were found in Windows 11, Ubuntu and macOS, among others, as well as in Oracle and VMware products and Tesla's firmware.
The various ... Read more
What are Passkeys? Removing the human element from authentication
For the longest time, the technology industry has been developing a future with password-free (passwordless) authentication. That future is now, with passkeys. But what are passkeys?
The FIDO Alliance was established with the goal of lessening the dependence on passwords almost ten years ago. An... Read more
Hackers gain access to UK Pension Protection Fund data
The UK's Pension Protection Fund, which manages a massive £39 billion in assets for nearly 300,000 members, has been hit by hackers who gained access to some employee data.
The intruders exploited a vulnerability in the third-party data transfer service Go Anywhere, which the fund uses for secu... Read more
WordPress to force-install a security update to thousands of websites
To ensure the security of online stores, Automattic, the company that manages WordPress, has announced the forced installation of a security update on hundreds of thousands of websites that use WooCommerce Payments, one of the most popular online store payment gateways.
This update was released ... Read more
Log4Shell still a big problem after nearly a year and a half
According to Arctic Wolf research, the Log4Shell vulnerability is still being massively abused a year after it was identified.
Arctic Wolf collected data on global threats, malware, digital forensics and incident response (IR) cases. This to determine the key threat trends of 2022. "Arctic Wolf ... Read more
Zero trust in complex environments: how to ensure secure access to apps?
Many companies have seen their infrastructure and application landscape become more complex. This, in turn, creates new challenges. After all, how do you properly set up identity and access management? The basic zero trust component is essential for authentication and access to protect users, apps ... Read more