hacked
Aircraft maker Embraer admits hackers breached its systems and stole data
Embraer, a Brazilian manufacturer of aircraft, has disclosed that hackers managed to breach its computer systems, and steal data. Although Embraer may not be a household name, it is the world’s third-largest ...
What to Expect When You’re Expecting … To Be Hacked
If you interview the IT and security staff of a company that has had a breach, very few of them would say they were expecting to get hacked. These “survivors” are often ...
Minneapolis Police Website Hacked, Zoom Encryption, eBay Port Scanning
In episode 124 for June 8th 2020: Details on how the Minneapolis Police website may have been hacked, Zoom’s plan to implement end-to-end encryption, and why eBay and other sites may be ...
Remote Code Execution Deserialization Vulnerability Blocked by Contrast
On May 20, 2020, the National Vulnerability Database (NVD) published a new CVE—CVE-2020-9484. The vulnerability associated with CVE-2020-9484 allows any anonymous attacker with internet access to submit a malicious request to a ...
Examining the Open-source Python Application CVEs That Led to the Cisco Server Breach
Hackers recently exploited two critical vulnerabilities (CVEs) in SaltStack’s "Salt" management framework in order to compromise a handful of servers at Cisco. As defined by the National Vulnerability Database (NVD), the specific ...
Videoconferencing Is Being Weaponized, Tips on Making Your Meetings More Secure
Zoom, the videoconferencing application that has grown from 10 million users in December to over 200 million today (an increase of 1,900%), is easily the most popular virtual meeting service for businesses, ...
How Hackers Are Exploiting COVID-19 and What Organizations Can Do About It
Now that many people are working from home due to the coronavirus disease (COVID-19), businesses are facing unprecedented cybersecurity challenges. Unfortunately, among many challenges, hackers are poised to capitalize on the crisis ...
You’ve Been Hacked! Now What?
In episode 110: Tyler Hudak, Incident Response Practice Lead at TrustedSec, joins us to talk about what you should do (and more importantly what you shouldn’t do) if you find out you’ve ...
Public WiFi is actually still pretty dangerous
I wanted to write a short response to an article EFF posted, Why Public Wi-Fi is a Lot Safer Than You Think. It's no secret transport layer security has vastly improved over ...
Using Contrast to prevent the Weblogic Remote Code Execution (RCE) Deserialization Vulnerability – CVE-2019-2725
On April 17, 2019, Oracle released a Critical Patch Advisory with 254 patches. One of the vulnerabilities addressed was for CVE-2019-2725. The vulnerability associated with CVE-2019-2725 allows any anonymous attacker with internet ...
