SEARCH
All Articles
U.S. Sanctions Three Chinese Nationals for Alleged Connection to 911 S5 Botnet
The Office of Foreign Asset Control has sanctioned three Chinese citizens for their alleged operation of the 911 S5 botnet.
Decipher Podcast: Sarah Powazek
Sarah Powazek, the Program Director of Public Interest Cybersecurity at the UC Berkeley Center for Long-Term Cybersecurity, joins Dennis Fisher to talk about her work in setting up Cybersecurity Clinics at high education institutions around the country to help bring knowledge and skills to underserved organizations.
North Korean Threat Actor Deploys New, Custom Ransomware
A new North Korean threat group called Moonstone Sleet relies on trojanized, legitimate software, deploys custom ransomware and creates fake companies to further trick victims in its campaigns.
Google Fixes Another Chrome Zero Day
Google has patched yet another Chrome zero day, this one a type confusion flaw in V8 (CVE-2024-5274).
Backdoor Found in Courtroom Recording Software Installer
Researchers are warning of an apparent supply chain attack via a specific version of JAVS Viewer, audio-visual recording software used for courtrooms.
Privacy, Security Concerns Mount Over Microsoft Recall Feature
Privacy experts are criticizing a new Microsoft screenshot feature called Recall on its recently announced Copilot Plus PCs.
Intercontinental Exchange Faces $10M Penalty Over Delayed Disclosure
The SEC has hit the owner of the New York Stock Exchange with a $10 million penalty, saying its subsidiaries failed to notify the commission in a timely manner of a cyber intrusion discovered in 2021.
Decipher Podcast: Caitlin Condon on the Attack Intelligence Report
Caitlin Condon of Rapid7 joins Dennis Fisher to dive into the juicy tidbits from the Rapid7 Attack iNtelligence Report, including the rise in attacks on zero days, ransomware proliferation, and why network edge devices remain a major problem.
Decipher Podcast: Chris Langford
Chris Langford, Director of Network, Infrastructure, and Cyber Security at the Lewisville Independent School District, talks about how having experience in the classroom has helped him from a cybersecurity perspective, and how we can best educate the next generation of students on cybersecurity best practices.
Kimsuky APT Using Newly Discovered Gomir Linux Backdoor
The North Korean Kimsuky APT group has been using a new Linux backdoor called Gomir in attacks on South Korean targets.
AI Security ‘Is a Software Problem’
Securing AI systems and LLMs seems like a daunting task, but experts say the same principles that apply to software security can be used to build safe AI systems.
Rather Than Measuring Risk, Fix an Interesting Problem
Measuring risk is a notoriously hard task, so Andy Ellis suggests teams focus on fixing the problems in fornt of them instead of trying to measure what could happen.
RSA Conference 2024: What We Wish People Were Talking About
It's hard to separate the signal from the noise at the RSA Conference, so we asked a group of experts which topics they wish people were discussing more, including security metrics, applying engineering concepts to security, and more.
F5 Fixes Critical RCE Bugs in BIG-IP Next Central Manager
F5 has patched two vulnerabilities (CVE-2024-26026 and CVE-2024-21793) in its BIG-IP Next Central Manager console that can grant full admin control of the target application.
How CISA is Preparing For the Influx of CIRCIA Reports
CIRCIA will mark a fundamental shift for CISA in the scale and scope of reported incidents that it receives from critical infrastructure entities.