Vulnerabilities
North Korean APT Group Targets Academia via Malicious Chrome Extensions
Security researchers have uncovered an APT group with possible ties to North Korea that has targeted academic institutions since May. The group, dubbed Stolen Pencil by researchers from Netscout, send spear-phishing emails ...
Business Email Compromise Gang Targeted 50,000 Company Executives
A Nigerian gang with members based in the U.K. is perpetrating a business email compromise operation aimed squarely at executives at companies with locations worldwide. The gang has compiled a target list ...
Getting Creative with your Vulnerability Management Strategy
You don’t have to look hard to find organizations utilizing a small fraction of the capabilities of a vulnerability management tool. Often, that’s because the focus is on meeting a compliance obligation ...
Vulnerability Management Software – An Essential Piece of the Security Puzzle
No single security solution can make a network safe from all attacks. Firewalls and IPS can’t keep workstations free of viruses and malware. Antivirus can’t protect the data on a database server ...
What Type of Vulnerabilities Does a Penetration Test Look For?
Penetration testing is becoming increasingly popular as organizations are beginning to embrace the need for stronger cybersecurity. But there are still too many businesses that don’t fully understand the benefits of regular ...
Hackers Exploit UPnP in Routers to Expose Private Networks to Attacks
Hackers are exploiting insecure UPnP implementations in routers to expose millions of computers from inside private networks to SMB attacks. Universal Plug and Play (UPnP) is a service that allows devices to ...
Sennheiser Headset Software Could Allow Man-in-the-Middle SSL Attacks
Buyers of certain Sennheiser headset products may have inadvertantly installed a root certificate giving access to malicious actors ...
Cisco Takes Another Stab at Patching Recent WebEx Vulnerability
Cisco Systems has released a new patch for a remotely exploitable privilege escalation vulnerability after security researchers found that its previous fix was incomplete. The company first patched the vulnerability, known as ...
ECC Memory Not Safe from Rowhammer Attack
Researchers have proven for the first that that error-correcting code (ECC) memory can be affected by the same bit-flipping attack known as Rowhammer that plagues regular DRAM memory. Rowhammer is a memory defect ...
Make Sure Your Network Security Is Ready for the Holiday Shopping Season
The holiday shopping season kicks off tomorrow. There will be a notable spike in holiday shopping as people across the country rush to take advantage of the deals and bargains available on ...
