BACKGROUND: Researchers found that nearly half of all malware is being hidden within TLS-encrypted traffic in order to evade detection from security tools.
It has recently been reported that the Mozilla Foundation fixed a flaw in its Firefox browser that allowed spoofing of the HTTPS secure communications icon, displayed as a padlock in the browser address window. Successful exploitation of the flaw could have allowed a rogue website to intercept browser communications. The patch was part of the […]
CISA’s alert – Exploitation of Pulse Connect Secure Vulnerabilities – confirms that attackers breached US government agencies and other critical organizations by exploiting vulnerabilities in Pulse Secure products. “Since March 31, 2021, CISA assisted multiple entities whose vulnerable Pulse Connect Secure products have been exploited by a cyber threat actor.” The CISO of Shared Assessments, the […]
News broke recently that the Bank of England is setting up a task force to assess the possibility of a central bank digital currency.
Following news today that Apple was targeted in a ransomware attack carried out by REvil – with a key Apple supplier in Taiwan being sent threats around stolen blueprints of new iPads and iMacs – please find below commentary from security expert.
It has been reported that a misconfiguration error has exposed personal data belonging to customers of New England’s largest energy provider. On March 16, Eversource discovered that one of its cloud data storage folders had erroneously been set to open access rather than to restricted access. The company serves more than 3.6 million electric and natural gas customers in […]
New Bloomberg Report Finds Cybersecurity Spending Is Heading For $200 Billion A Year Due To Cloud Switch
Spending on network and endpoints security will be the big winners from cloud expansion, BI says Spending on cybersecurity is set to exceed $200 billion a year by 2024 as the market switches to cloud-based security with the network and endpoint security sectors likely to see the fastest growth, a new report from Bloomberg Intelligence […]
Critical vulnerabilities have been identified with company trio Pulse Secure VPN devices, Juniper, and cybersecurity firm SonicWall.
Following media reports that, according to a private cybersecurity firm, Chinese government hackers are believed to have compromised dozens of US government agencies, defense contractors, financial institutions, and other critical sectors, cyber defense experts commented below.