Hewlett Packard Enterprise (HPE) has disclosed a zero-day flaw in the latest versions of its proprietary HPE Systems Insight Manager (SIM) software for Windows and Linux.
Of the 88 domain names publicly attributed to APT1, 28 remain active in the Domain Name System as of 4 December 2020. Of the remaining 23 APT1 domain IoCs, 19 were cited as “malicious” by VirusTotal.
Infosec consultancy Pen Test Partners said it took all of 90 minutes to discover enough problems with Dualog Connection Suite to submit six CVE number requests for the discovered flaws.
GDPR was enacted in 2018, but the Twitter case is the first using a new dispute resolution system under which one lead national regulator makes a decision before consulting with other EU regulators.
Newly discovered Windows info-stealing malware linked to an active threat group tracked as AridViper shows signs that it might be used to infect computers running Linux and macOS.
The Ransomware-as-a-Service (RaaS) and affiliate program deploy MountLocker widely across corporate networks, seeking multimillion-dollar payments for decryption services.
The operators behind Operation StealthyTrident have launched supply-chain attacks against hundreds of Mongolian government agencies by exploiting a legitimate software called Able Desktop.
The campaign has targeted consulting, technology, telecom, and other entities such as multiple federal government agencies, including the US Treasury and Commerce departments.
The hack began as early as March when malicious code was snuck into updates to the popular SolarWinds Orion software that monitors computer networks of businesses and governments.
Among all the ways COVID-19 has affected the cybersecurity world, perhaps nothing is more impossible than live hacking events, which were once a staple of the security industry.