Security Week

Officials: Washington Being Targeted by Phishing Campaign

Washington state is among those being targeted by a “large-scale, highly sophisticated” nationwide phishing campaign, the office of Gov. Jay Inslee said at a press conference Thursday.

Pandemic Leads to Rise in Industrial Systems Targeted Via RDP: Report

Kaspersky’s report on the industrial threat landscape for the first half of 2020 reveals that the number of attacks aimed at RDP on industrial computers increased steadily between February and May.
September 24, 2020

New Zebrocy Campaign Suggests Russia Continues Attacks on NATO

While some researchers see Zebrocy as a separate adversary, others point at connections between various threat actors operating out of Russia, including a link between GreyEnergy and Zebrocy attacks.

Google Patches Privilege Escalation Vulnerability in Cloud Service

Google patched a privilege escalation flaw in OS Config, a Google Cloud Platform service for Compute Engine that is designed for managing operating systems running on virtual machine instances.

CrowdStrike Pushes Zero Trust With $96 Million Acquisition of Preempt Security

CrowdStrike on Wednesday announced that it has agreed to acquire Preempt Security, a provider of Zero Trust and access control technology, in a deal valued at roughly $96 million.

Samba Issues Patches for Zerologon Vulnerability

The Samba team has released patches for a critical-severity elevation of privilege vulnerability impacting the Microsoft Windows Netlogon Remote Protocol (MS-NRPC).

Airbnb Accounts Exposed to Hijacking Due to Phone Number Recycling

A cybersecurity enthusiast learned recently that Airbnb accounts can be easily hijacked by creating a new account on Airbnb with a phone number that in the past belonged to another customer.

Microsoft Explains How It Processes Vulnerability Reports

Microsoft has detailed the steps involved in the processing of vulnerability reports, so that reporting researchers know what to expect when submitting information on a bug.

German Experts See Russian Link in Deadly Hospital Hacking

German authorities probing a cyber attack on a hospital's IT system that led to a fatal delay in treatment for a critically ill woman believe the software used can be traced back to Russian hackers.

NSA Issues Cybersecurity Guidance for Remote Workers, System Admins

The NSA has published two cybersecurity information sheets (CSIs) with recommendations for NSS and DoD workers and system admins on securing networks and responding to incidents during the WFH period.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags