Network Security

Hot Topics

Introducing Goffloader: A Pure Go Implementation of an In-Memory COFFLoader and PE Loader
The Role of Digital Adoption in Email Deliverability & Security
Demystifying SOC 2 Compliance for Startups: A Simple Guide
Happy Canada Labour Day! / Bonne Fête du Travail Canadienne!
Happy United States Labor Day 2024 / Feliz Fin de Semana del Día del Trabajo de Estados Unidos 2024 / Joyeux Fin de Semaine de la Fête du Travail aux États-Unis 2024

China Cyberwar Coming? Versa’s Vice: Volt Typhoon’s Target

Richi Jennings | August 28, 2024 | CenturyLink, china, china espionage, China-linked Hackers, China-nexus cyber attacks, China-nexus cyber espionage, CVE-2024-39717, Lumen, Lumen Technologies, Peoples Republic of China, SB Blogwatch, Versa Director, Versa Neworks, VersaMem, Volt Typhoon

Xi whiz: Versa Networks criticized for swerving the blame ...

Security Boulevard

Facebook Whistleblower Fears Election Abuse

Jon Swartz | August 27, 2024 | amazon, Cybersecurity, Elections, facebook, Meta, Telegram

Frances Haugen, who famously blew the whistle on Facebook and its susceptibility to manipulation, has renewed concerns over the social-networking company. This time, she’s laser-focused on misinformation during the 2024 presidential election ...

Security Boulevard

Cyber Lingo: What is a firewall?

Ryan H. | August 26, 2024 | CISO Suite, Cyber Lingo, definition, Definitions, firewall, Home, Seed n soil posts

The post Cyber Lingo: What is a firewall? appeared first on Click Armor ...

Click Armor

event logging, CISA, living off the land

Event Logging Key to Detecting LOTL Attacks, Security Agencies Say

Jeffrey Burt | August 25, 2024 | cisa, event logging, living off the land

A report by CISA, the FBI, the NSA, and international agencies lay out the argument that event logging tools help enterprises better detect attacks that rely on LOTL techniques used by threat ...

Security Boulevard

Audit: FBI is Losing Track of Storage Devices Holding Sensitive Data

Jeffrey Burt | August 23, 2024 | DOJ (Department of Justice), FBI, Hard Drives, Insecure Data Storage

DOJ inspectors have found the FBI is not labeling hard drives and other storage devices holding sensitive that are slated for destruction, making them hard to track, and that boxes of them ...

Security Boulevard

Backdoor in RFID Cards for Offices, Hotels Can Lead to Instant Cloning

Jeffrey Burt | August 21, 2024 | Backdoor Exploit, contactless card fraud, RFID cards, supply chain attack

A backdoor found in millions of Chinese-made RFID cards that are used by hotels and other businesses around the world can let bad actors instantly clone the cards to gain unauthorized access ...

Security Boulevard

cloud security, extortion, Palo Alto, AWS

Extortion Group Exploits Cloud Misconfigurations, Targets 110,000 Domains

Jeffrey Burt | August 19, 2024 | Amazon Web Services (AWS), Cloud Security, data theft extortion

An unknown threat group leveraged publicly exposed environment variables in organizations' AWS accounts to exfiltrate sensitive data and demand ransoms in a wide-ranging extortion campaign that targeted 110,000 domains ...

Security Boulevard

Mandatory MFA is Coming to Microsoft Azure

Jeffrey Burt | August 19, 2024 | Cloud Security, Microsoft Azure Security, Multi-Factor Authentication (MFA)

Microsoft is making MFA mandatory for signing into Azure accounts, the latest step in the IT vendor's Secure Future Initiative that it expanded in May in the wake of two embarrassing breaches ...

Security Boulevard

0.0.0.0 Day: 18-Year-Old Browser Flaw Affects Linux and macOS

Rohan Timalsina | August 19, 2024 | 0.0.0.0 Day, Browser Exploits, Browser Security, browser security flaw, browser vulnerability, Chromium-Based Browsers, Cybersecurity, Google Chrome, Linux & Open Source News, linux security, localhost API exploitation, macOS vulnerability, Mozilla, Network Security, Private Network Access, Remote Code Execution, Safari, ShadowRay exploitation campaign

Oligo Security’s research team recently uncovered a critical vulnerability dubbed the “0.0.0.0 Day” affecting Chromium, Firefox, and Safari browsers on macOS and Linux systems. This vulnerability allows malicious websites to bypass standard ...

TuxCare

China, threats, scams, CISA TP-Link Volt Typhoon

Lawmakers Ask for Probe of Chinese Router Maker TP-Link

Jeffrey Burt | August 16, 2024 | china espionage, TP-LINK, Volt Typhoon

Two U.S. lawmakers are asking the Commerce Department to investigate whether the Wi-Fi routers built by Chinese company TP-Link could be used by Chinese-sponsored threat groups to infiltrate U.S. government and private ...

Security Boulevard