Author Archives: Derek B. Johnson

7 vulnerabilities in popular DNS forwarding software open door to range of attacks

Researchers at JSOF have discovered distinct spoofing and buffer overflow vulnerabilities associated with DNSMasq, used in networking devices to cache and forward Domain Name System requests.

The post 7 vulnerabilities in popular DNS forwarding software open door to range of attacks appeared first on SC Media.

Continue reading

Posted in Network Security, Security News, Threat intelligence, Vulnerabilities, Vulnerability Management | Comments Off on 7 vulnerabilities in popular DNS forwarding software open door to range of attacks

FIN11 e-crime group shifted to CL0P ransomware and big game hunting

FIN11 has increasingly factored CL0P ransomware into its operations, and its clear they also put a substantial amount of effort into each follow-up compromise.

The post FIN11 e-crime group shifted to CL0P ransomware and big game hunting appeared first on SC Media.

Continue reading

Posted in Cybercrime, Ransomware, Security News | Comments Off on FIN11 e-crime group shifted to CL0P ransomware and big game hunting

Early-stage cybersecurity investment flowing, despite pandemic

While most industries saw a significant dip in seed and Series A investments last year, cybersecurity investment remained resilient.

The post Early-stage cybersecurity investment flowing, despite pandemic appeared first on SC Media.

Continue reading

Posted in Cloud, Cloud Security, Featured, Innovation, Security News, Software and solutions | Comments Off on Early-stage cybersecurity investment flowing, despite pandemic

JumpCloud land $100 million in funding, as secure remote access market continues surge

Over the past two decades, businesses have piled a patchwork of different products and services – multi-factor authentication, single sign-on, identity governance and administration policies and others – on top of their directory. That introduces risk and complexity, says Jumpcloud CEO Rajat Bhargava.

The post JumpCloud land $100 million in funding, as secure remote access market continues surge appeared first on SC Media.

Continue reading

Posted in Cloud, Cloud Security, IAM, Security News, Software and solutions | Comments Off on JumpCloud land $100 million in funding, as secure remote access market continues surge

DarkSide decryptor unlocks systems without ransom payment – for now

The decryptor works for all current DarkSide infections, but that will likely change soon as the group reacts and adapts to the disclosure.

The post DarkSide decryptor unlocks systems without ransom payment – for now appeared first on SC Media.

Continue reading

Posted in Ransomware, Security News, Software and solutions | Comments Off on DarkSide decryptor unlocks systems without ransom payment – for now

Malware variant becomes world’s most popular, thanks to ransomware surge

Ransomware actors are laundering hundreds of millions of dollars through pseudo-legitimate cryptocurrency exchanges, while early-stage malware that is often used to facilitate their attacks have become the most popular forms of malware in the world.

The post Malware variant becomes world’s most popular, thanks to ransomware surge appeared first on SC Media.

Continue reading

Posted in Cryptocurrency, Ransomware, Security News | Comments Off on Malware variant becomes world’s most popular, thanks to ransomware surge

CISA discovers token abuse around SolarWinds hack, calls for full rebuild of affected networks

The agency has found evidence of authentication token abuse in networks infected with corrupted versions of Orion software and say restoring integrity will require a full network rebuild in certain cases.

The post CISA discovers token abuse around SolarWinds hack, calls for full rebuild of affected networks appeared first on SC Media.

Continue reading

Posted in Breach, Data Breach, Government, Government/Defense, Security News | Comments Off on CISA discovers token abuse around SolarWinds hack, calls for full rebuild of affected networks

After widespread hospital attacks, targeting of health care industry continues to rise

In the two months following a highly publicized series of ransomware attacks against UHS last year, cyber attacks of all stripes against healthcare facilities worldwide shot up 45%.

The post After widespread hospital attacks, targeting of health care industry continues to rise appeared first on SC Media.

Continue reading

Posted in Featured, Healthcare, Ransomware, Security News | Comments Off on After widespread hospital attacks, targeting of health care industry continues to rise

SolarWinds, top executives hit with class action lawsuit over Orion software breach

Stockholders who purchased company shares in 2020 are suing the IT management software company for materially misleading investors about their security practices.

The post SolarWinds, top executives hit with class action lawsuit over Orion software breach appeared first on SC Media.

Continue reading

Posted in Breach, Featured, Legal, Legal Action, Security News, SolarWinds hack, Third-party risk | Comments Off on SolarWinds, top executives hit with class action lawsuit over Orion software breach