SentinelLabs found AWS vulnerabilities that put millions at risk
SentinelLabs claims responsibility for finding a severe vulnerability in multiple cloud services, including popular services from AWS. As the threats have since been patched, the researcher goes public with a technical report.
SentinelLabs is an extension of SentinelOne. Year-round, the organiza... Read more
Barracuda Networks updates email protection portfolio
Barracuda Networks has updated its portfolio of email protection subscriptions. Available in three categories, the subscriptions focus on providing detection and remediation for Office 365 users.
With the new subscriptions, Barracuda Networks says Office 365 users will have more options for dete... Read more
‘SolarWinds hack group Nobelium still has huge attack potential’
Nobelium, the hack group held responsible for the infamous SolarWinds attack, still has a large arsenal of advanced hacking capabilities at its disposal. This is the conclusion of Mandiant security specialists in a recent study. The full potential of the alleged state-sponsored collective has not y... Read more
A foot in the door is increasingly marketable: initial access grows
The market for initial access is growing at an alarming rate. A side effect of the ransomware explosion of the past year, Group-IB concludes based on a new study.
The initial access market entails trade in ready-to-use vulnerabilities for access to corporate environments. Group-IB research shows... Read more
‘Ubiquiti hit by inside-job hack attack’
The U.S. Department of Justice has indicted an employee of Ubiquiti for the ransomware attack the company faced this year.
Earlier this year, WiFi and network specialist Ubiquiti was hit by a hacking attack. The suspected hackers gained access to all Ubiquiti's AWS accounts, including S3 data bu... Read more
Dell introduces ‘air-gapped’ anti-ransomware service for AWS
Dell Technologies makes its Dell EMC PowerProtect Cyber Recovery anti-ransomware service available via AWS. Thereby, AWS customers gain access to an 'air-gapped' cyber vault in which they can protect their most critical data from ransomware.
By making the Dell EMC PowerProtect Cyber Recovery ser... Read more
VMware’s Carbon Black offers assistance in countering attacks
VMware’s Carbon Black analysts assist security teams in identifying threats and respond to them promptly. This feature is a courtesy of the new Managed Detection and Response solution.
VMware is introducing an increase in the endpoint security business to accommodate cloud-based managed detect... Read more
A dumb ‘smart contract’ bug allowed a hacker to steal $31 million
MonoX Finance, a blockchain startup, announced on Wednesday that a hacker siphoned off $31 million in digital coin by exploiting a bug present in the software the startup uses to draft smart contracts. The company leverages a decentralized finance protocol called MonoX that allows users to trade di... Read more
Hackers gained undiscovered access to a Panasonic server
Hackers gained undiscovered access to a server of the Japanese tech group Panasonic for a significant amount of time. This was discovered by the Japanese public broadcaster NHK. Specifically, the event involved an attack by hackers on a server in which a lot of confidential information was stored.
... Read more
Google Play apps with 300,000 downloads stole user credentials
Researchers say they've found a batch of apps on the Google Play Store downloaded more than 300,000 times before they were shown to have trojans that siphoned passwords, 2FA (two-factor authentication) codes, took screenshots, and logged keystrokes.
The apps pose as PDF scanners, cryptocurrency ... Read more