This Week in Malware – Fileless Linux Cryptominer, 100 Packages

This week in malware we discovered and analyzed nearly 100 packages flagged as malicious, suspicious, or dependency confusion attacks.Notably, we uncovered a PyPI package that drops fileless Linux malware directly in memory ...
Cisco Pwned by ‘Russian’ Gang — Data Leaked, Egg on Face

Cisco Pwned by ‘Russian’ Gang — Data Leaked, Egg on Face

Cisco got hacked by a ransomware gang—a broker for the UNC2447 threat actor, which has “a nexus to Russia.” ...
Security Boulevard

Excessive Data Exposure: What It Is, How We Can Help

No. 3 on the OWASP API Top 10 vulnerabilities list is excessive data exposure (after BOLA and broken user authentication). OWASP says of this vulnerability, “Looking forward to generic implementations, developers tend ...
cyberinsurance claim cyberinsurance contractor

Lowering Cyberinsurance Premiums with Managed Security Services

A range of factors, driven in part by the COVID-19 pandemic, accelerated by the work-from-home (WFH) trend and exacerbated by the Russia-Ukraine conflict, has caused midmarket organizations to grapple with a high ...
Security Boulevard

Supply Chain Cybersecurity – the importance of everyone

This week, I spoke with a new client who told me all about how they are looking forward to addressing a number of internal issues surrounding their IT systems. They explained that ...
It Might Be Our Data, But It’s Not Our Breach

It Might Be Our Data, But It’s Not Our Breach

A cybersecurity firm says it has intercepted a large, unique stolen data set containing the names, addresses, email addresses, phone numbers, Social Security Numbers and dates of birth on nearly 23 million ...
Prevent Card Fraud With High-Risk Merchants Data: Common Point of Purchase Analysis Made Easy 

Prevent Card Fraud With High-Risk Merchants Data: Common Point of Purchase Analysis Made Easy 

Flashpoint takes CPP analysis and risky merchants off your plate, with our new High-risk Merchant data built into our Card Fraud Mitigation solution.  The post Prevent Card Fraud With High-Risk Merchants Data: ...

Why is Cybersecurity Essential for Small Businesses?

Cybersecurity is a common term for every business but how seriously is it taken? Small businesses often have no budget set aside for cybersecurity which means no security team or vendors. It’s ...
Patch Tuesday Advisory – August 2022

Patch Tuesday Advisory – August 2022

Fixes for 17 critical CVEs and 2 zero-days including DogWalk For August, the number of patched threats announced by Microsoft totals 121, including 17 deemed as Critical and two zero-days. The headline ...
Cloud Security Horror Stories

Anti-Vax Dating App Offers Up Admin Privileges

Reading Time: 3 minutes Recently, a dating app dedicated to pairing up anti-vaccination individuals experienced massive data exposure due to an alleged ‘hasty set-up’ and absence of basic security protocols. The dating ...