Best of 2021 – Combating COMB: 3.2 billion credentials leaked in breach compilation
2021 has barely begun and we have already witnessed what appears to be the biggest compilation of breached credentials in our lifetime. The Compilation of Many Breaches (COMB) was recently made available via an online forum, as broken by CyberNews, and contains over 3.2 billion credentials built up of unique ... Read More
Outpost24 acquires threat intelligence solution Blueliv to create advanced cyber threat landscape monitoring offering
STOCKHOLM, July 13, 2021 – Outpost24, an innovator in full stack cybersecurity assessment, today announced the acquisition of Blueliv, a leading cyberthreat intelligence company in Barcelona, Spain. This combination will create one of the largest cybersecurity providers in Europe and provide the most advanced threat landscape monitoring solution to help ... Read More
The State of Ransomware in 2021
Rising to new levels of notoriety in 2020 as criminals sought to take advantage of the global chaos brought about by the COVID-19 pandemic, ransomware has continued to grow in maturity throughout the first half of 2021. Looking to further benefit from ransomware, many groups are now offering it ‘as ... Read More
Massive Kaseya attack demands up to $70 million ransom from more than 200 US businesses
Florida-based IT company Kaseya has been targeted in a ‘colossal’ ransomware attack, believed to be at the hands of the Russia-linked REvil group taking advantage of an existing vulnerability in its servers. The attack happened on Friday 2nd July, as businesses across the US wound down for the long Independence ... Read More
The most critical vulnerabilities right now
We may not yet be at the halfway point of 2021 but, over the course of the past 4 and a half months, Blueliv has already observed over 4,900 critical CVEs spanning widely used products from global vendors such as Panasonic, Cisco, Microsoft, and of course SolarWinds. It is clear ... Read More
Credential Theft: Over One Million Clubhouse User Records Leaked
This week saw the breach of the popular social media application Clubhouse when 1.3 million user records were scraped from an SQL database and leaked online via a popular hacker forum. This is the latest in a series of successful social media breaches in 2021, happening just days after Facebook ... Read More
Vulnerable Microsoft Exchange servers leave thousands of organizations compromised
This week it was reported that tens of thousands of organizations around the world were compromised using several Microsoft Exchange 0-days. Since then attackers have been busy targeting the compromised organizations in what is now presumed to be a more devastating attack than 2020’s SolarWinds incident. In the days since ... Read More
Threat intelligence vs. future data breaches
Data breaches are increasingly common as organizations across the globe continue to wake up to the reality that it’s a question of when, not if, they will fall victim. In a 2020 report on cyber security breaches, the UK government revealed that nearly half (46%) of businesses experienced a breach ... Read More
Everything we know about the SolarWinds Orion app vulnerability
The story so far In December 2020 the widely used business software application Orion, a product of the popular IT management company SolarWinds, was reported to have been tainted with nation-state malware that affected versions 2019.4 through to 2020.2.1 of the application released between March and June 2020. This trojanized ... Read More
Threat actors’ dangerous and rising interest in the global energy industry
The energy sector is no stranger to digital transformation. Like so many industries before it, energy is currently in the midst of significant digital growth, thanks to developments in artificial intelligence (AI), the Internet of Things (IOT), blockchain, and big data. The result is a global energy sector that’s more ... Read More