Tenable

APRIL 26, 2024

1 - New version of MITRE ATT&CK adds guidance on generative AI, cloud threats Information about malicious use of generative AI tools. The attack caused a major, nationwide disruption for patients, hospitals, doctors and pharmacies in areas such as billing, payments processing, patient care and prescription fulfillment. And much more!

Security 54

Security Cloud Artificial Inteligence Generative AI 54

Tenable

AUGUST 25, 2023

Time to start prepping for the quantum computing threat? Also, find out why ransomware attacks surged in July. As attackers salivate at the future prospect of weaponizing powerful quantum computers, the U.S. CISA thinks so. Plus, why security leaders are prioritizing security prevention tools. And much more!

Malware 98

Malware Artificial Inteligence Open Source Artificial Intelligence 98

Lacework

FEBRUARY 7, 2024

Developers are building systems and applications faster than ever, but this creates more risks and vulnerabilities for hackers to exploit. With limited time and resources, companies face a dilemma — should they invest in risk mitigation to build stronger defenses, or focus on threat detection to quickly address breaches?

Weak Development Team 109

Weak Development Team Malware Cloud Internet 109

Tenable

JUNE 16, 2023

Frequently asked questions relating to vulnerabilities in MOVEit Transfer, including one that was exploited by the prolific CL0P ransomware gang. Background The Tenable Security Response Team has put together this blog to answer frequently Asked Questions (FAQ) regarding the MOVEit Transfer vulnerabilities and the CL0P ransomware gang.

Windows 98

Windows SMB Groups Software 98

Palo Alto Networks

OCTOBER 25, 2023

As we celebrate the 20th anniversary of Cybersecurity Awareness Month (CAM), it’s clear that the threat landscape we face today is unlike anything we’ve seen in years past. With the prominence of artificial intelligence and the reliance on cloud networks in our world today, the cybersecurity tools of the past, are no longer enough.

Artificial Intelligence 86

Artificial Intelligence Artificial Inteligence Education Government 86

Tenable

FEBRUARY 24, 2022

Government agencies publish warnings and guidance for organizations to defend themselves against advanced persistent threat groups. The tactical information shared in this blog is designed to help you prepare your digital response to these rapidly unfolding events. Both the U.K. Critical Infrastructure.” Description. CVE-2018-13379.

Government 145

Government Malware Groups Telecommunications 145

Tenable

DECEMBER 22, 2023

Learn how the cyber world changed in areas including artificial intelligence, CNAPP, IAM security, government oversight and OT security. Here’s a small sampling of advice and recommendations issued in 2023: ISACA’s “ Considerations for Implementing a Generative Artificial Intelligence Policy ” McKinsey & Co.’s

Artificial Inteligence 76

Artificial Inteligence Technical Review Cloud Artificial Intelligence 76

Tenable

JULY 11, 2023

Microsoft’s July 2023 Patch Tuesday Addresses 130 CVEs (CVE-2023-36884) Microsoft addresses 130 CVEs including five that were exploited in the wild as zero-day vulnerabilities and guidance on the malicious use of Microsoft signed drivers. and has been exploited in the wild as a zero-day. and was exploited in the wild as a zero-day.

Windows 98

Windows Software Review Systems Review Authentication 98

Tenable

FEBRUARY 9, 2024

Plus, ransomware gangs netted $1 billion-plus in 2023. In addition, new group tasked with addressing the quantum computing threat draws big tech names. The PRC cyber threat is not theoretical,” Jen Easterly, Director of the U.S. And enterprises go full steam ahead with generative AI, despite challenges managing its risks.

Weak Development Team 67

Weak Development Team Infrastructure Generative AI Artificial Inteligence 67

Palo Alto Networks

MAY 16, 2023

While digitization has simplified many organizational tasks, it has simultaneously made other facets of business more complex, including an ever-growing attack surface. Depending on the company size, systems on the attack surface are responsible for creating millions or even billions of dollars in revenue.

Systems Review 108

Systems Review Software Review Internet Cloud 108

Palo Alto Networks

MARCH 17, 2021

Five years ago, our Unit 42 global threat intelligence team released a threat report warning that ransomware was quickly becoming one of the greatest cyberthreats facing organizations. Today, we released the 2021 Unit 42 Ransomware Threat Report. How the Ransomware Threat Grew. What happened?

Technical Review 96

Technical Review Systems Review Report Malware 96

Tenable

OCTOBER 6, 2023

(Source: SANS Institute’s “SANS ICS/OT Cybersecurity Survey: 2023’s Challenges and Tomorrow’s Defenses,” September 2023) Ironically, as budgets fell, the number of organizations that rated threats to ICS/OT systems as “severe” (25%) or “high” (44%) increased. Security Spotlight - The Ransomware Ecosystem Tenable.ot

Budget 65

Budget Report Survey Open Source 65

Tenable

OCTOBER 28, 2021

A flurry of ransomware operators are now targeting Active Directory (AD) as a core step in the attack path. Over the past several months, a number of ransomware operators have concentrated their focus on Active Directory (AD) as a core step in their attack path. Starting with LockBit 2.0 A deep-dive into AD tactics.

Software Review 104

Software Review Windows SMB Systems Review 104

Palo Alto Networks

OCTOBER 19, 2023

Malicious actors persistently discover new methods to target and exploit organizations, while defenders continuously innovate to counteract and address these threats. However, the present landscape of threats is undergoing a distinct transformation. This gives them the chance to profit from sophisticated exploits.

Artificial Inteligence 98

Artificial Inteligence Artificial Intelligence Wireless Generative AI 98

Ivanti

AUGUST 2, 2021

A few years ago, ransomware was just a nuisance. If that’s how you’re still treating it, this blog is for you. Ransomware started making more headlines in 2016, but it was treated largely as a nuisance – not a tangible, resource-worthy threat. But this rising threat can’t be entirely blamed on the pandemic.

Weak Development Team 98

Weak Development Team Healthcare Resources Education 98

Tenable

AUGUST 4, 2022

On August 4, the Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint cybersecurity advisory regarding the top malware strains observed being exploited throughout 2021. Windows Background Intelligent Transfer Service elevation of privilege. CVE-2018-0802.

Malware 75

Malware Windows SMB Groups 75

Tenable

OCTOBER 29, 2021

Are you leaving treats on the table for attackers? The threat landscape is like a bowl of candy, full of options for ghouls and goblins to pick. Attackers have many treats from which to choose when targeting organizations. Attackers have a cornucopia of options from which to choose to gain that first step into target networks.

SMB 98

SMB Software Review Minimum Viable Product Systems Review 98

Tenable

AUGUST 9, 2021

Attackers are searching for vulnerable instances to exploit. Last week at the Black Hat USA and DEF CON security conferences, DEVCORE researcher Orange Tsai presented a talk titled “ProxyLogon is Just the Tip of the Iceberg: A New Attack Surface on Microsoft Exchange Server!” Background. CVE-2021-31207 was patched in May.

Research 101

Research Conference Report Analysis 101

Kaseya

OCTOBER 3, 2023

Endpoint detection and response (EDR) is among the latest breed of security software designed to keep emerging and sophisticated cyberthreats like ransomware at bay. Our blog provides all the information you need about EDR. How does an EDR stop ransomware and other threats of that kind? Give it a read. What is EDR?

Malware 52

Malware Software Review Systems Review Technical Review 52

Tenable

OCTOBER 12, 2020

Government agencies issue joint cybersecurity advisory cautioning that advanced threat groups are chaining vulnerabilities together to gain entry into government networks and elevate privileges. This blog post was published on October 12 and reflects VPR at that time. Post exploitation elevation of privilege using Zerologon.

WAN 115

WAN Authentication Government Network 115

Tenable

DECEMBER 15, 2023

Plus, MITRE plans to release a threat model for embedded devices used in critical infrastructure. NCSC) 3 - MITRE preps threat model for embedded devices in critical infrastructure Are you involved with making or securing embedded devices used in critical infrastructure environments? And much more! Fill out this form.

Groups 72

Groups Industry Hardware Software Review 72

Tenable

MARCH 17, 2023

Learn about CISA’s new program to help critical infrastructure organizations stamp out vulnerabilities associated with ransomware attacks. 1 - CISA program detects ransomware vulnerabilities in critical infrastructure The U.S. However, the number of ransomware incidents and their financial impact were likely much higher.

Infrastructure 52

Infrastructure Groups ChatGPT Generative AI 52

Tenable

FEBRUARY 16, 2023

South Korean and American Agencies Release Joint Advisory on North Korean Ransomware Several South Korean and American agencies have released a joint cybersecurity advisory on North Korean state-sponsored ransomware operators. A week after that CSA was released, Microsoft attributed the use of H0lyGh0st ransomware to the same actor.

Malware 53

Malware Systems Review Technical Review Healthcare 53

Lacework

FEBRUARY 15, 2024

This blog features some content from our new eBook: 4 keys to cloud security for financial services. With rising costs and more sophisticated attacks, it sure seems like the time is now for organizations in the financial services organizations to evaluate better ways to protect their most valuable asset: customer trust. Let’s face it.

eBook 62

eBook Artificial Intelligence Artificial Inteligence Healthcare 62

Tenable

JUNE 23, 2023

Learn all about the DOJ’s reward for CL0P ransomware leads. Plus, check out ransomware incident response recommendations. Department of Justice announced a reward of up to $10 million for information on the group – or on any attackers targeting U.S. Items to assess include known ransomware signatures and anomalous I/O activity.

Cloud 53

Cloud Systems Review Data Disaster Recovery 53

Tenable

MARCH 18, 2021

As organizations continue to respond to a flurry of attacks by HAFNIUM and other threat actors leveraging Proxylogon (CVE-2021-26855) and related vulnerabilities (CVE-2021-26857, CVE-2021-26858, CVE-2021-27065), Tenable has released a plugin to help you identify potentially compromised assets. Background. and also as DearCry.

Systems Review 101

Systems Review How To System Authentication 101

Tenable

OCTOBER 27, 2023

Check out how organizations’ enthusiasm over generative AI is fueling artificial intelligence adoption for cybersecurity. Respondents’ top concerns are the growing number of hackers; data privacy; generative AI use by cybercriminals; and the scale and variety of attacks. Plus, how CISA plans to revamp the U.S.

Artificial Inteligence 64

Artificial Inteligence Artificial Intelligence Technical Review Backup 64

Palo Alto Networks

OCTOBER 12, 2021

Ransomware as a service (RaaS) is a business model designed for criminals, by criminals that lowers the technical barrier for entry into cybercrime. Keeping attackers out – and limiting what they can do if they do get in – is a great place to start. Attack Surface Reduction. Authentication.

Technical Review 82

Technical Review Authentication Systems Review Network 82

Palo Alto Networks

APRIL 20, 2021

What if your most trusted source of threat intelligence was also your most trusted security advisor? What if this advisor could assist you with every element of security, giving you the intelligence, advice, tools and assistance needed to protect your organization holistically?

Research 95

Research Network Organization Groups 95

Tenable

NOVEMBER 8, 2022

Microsoft’s November 2022 Patch Tuesday Addresses 62 CVEs (CVE-2022-41073) Microsoft addresses 62 CVEs including four zero-day vulnerabilities that were exploited in the wild. CVE-2022-41091 has been exploited in the wild and for which exploit code is publicly available. and has not been observed to be exploited.

Windows 101

Windows Azure Open Source Policies 101

Tenable

MARCH 24, 2022

Private messages between Conti members uncover invaluable information about how the infamous ransomware group hijacks victims’ systems. The ContiLeaks began on February 27 – the work of an alleged member of the Conti ransomware group. It’s also gained notoriety for attacks against the healthcare sector, including at least 16 U.S.

Windows 101

Windows Groups Healthcare Report 101

Newgen Software

FEBRUARY 21, 2024

Their responsibilities are diverse and multifaceted, from fortifying defenses against ever-evolving cyber threats to integrating cutting-edge solutions into traditional legacy systems for better customer experience. In this blog, I will delve deeper into the challenges CIOs are poised to encounter this year and the solutions to tackle them.

Artificial Inteligence 52

Artificial Inteligence How To Budget Survey 52

Ivanti

SEPTEMBER 9, 2021

Within the initial blog in this series , we discussed ransomware attacks and their remediation on Android mobile devices. Part 2 addresses potential ransomware exploits and their remediation on iOS, iPadOS mobile devices and macOS desktops. iOS and iPadOS Exploits. macOS Exploits. iCloud Exploits.

Malware 76

Malware Backup Artificial Inteligence Mobile 76

Tenable

MARCH 1, 2024

APT29, also known as the Dukes, CozyBear and Nobelium/Midnight Blizzard, was responsible for the SolarWinds supply chain attack and other high-profile hacks against targets including Microsoft and Hewlett-Packard Enterprise. Watch the on-demand webinar “ Securing Identities Across Your Entire Attack Surface.” and the U.S.

Artificial Inteligence 74

Artificial Inteligence Malware Generative AI Government 74

Tenable

NOVEMBER 25, 2022

Get the latest on the Hive RaaS threat; the importance of metrics and risk analysis; cloud security’s top threats; supply chain security advice for software buyers; and more! . 1 - Ransomware attackers pocket over $100M with Hive. Defending against Hive ransomware: It’s time to use the attackers’ tools ” (The Stack).

Metrics 52

Metrics Cloud Backup Software Review 52

Lacework

SEPTEMBER 6, 2022

To determine which sector is most vulnerable to an attack, it’s important to understand exactly what critical infrastructure is and what it means for something to be vulnerable. . That’s why it is a prime target for attackers and why it must be protected. . When cyber threats became physical. What is a vulnerability? .

Infrastructure 52

Infrastructure Industry Transportation Malware 52

Tenable

MARCH 12, 2020

IBM’s X-Force team compiled some indicators of compromise on January 29 and published a summary blog post on February 5. Emotet is part of a chain of three malware strains dubbed the Triple Threat by researchers at Cybereason. Microsoft Security Intelligence (@MsftSecIntel) March 10, 2020. Image source: Proofpoint blog.

Malware 112

Malware Research Windows Report 112