Browsing: Threat Intelligence

The Murdoc Botnet: Reinventing Mirai to Exploit IoT Vulnerabilities

Kirsten DoyleJanuary 22, 20255 Mins Read

In a new and ongoing large-scale cyber campaign, Qualys researchers have uncovered a variant of the infamous Mirai botnet called…

Ivanti Warns of Active Exploitation of a Vulnerability in Connect Secure

Kirsten DoyleJanuary 9, 20252 Mins Read

Organizations are urged to act swiftly to address vulnerabilities impacting Ivanti Connect Secure, Policy Secure, and ZTA Gateways by sticking…

High-Severity Vulnerability Discovered in Nuclei: What You Need to Know

Kirsten DoyleJanuary 6, 20254 Mins Read

An engineering team from Wiz has discovered a critical vulnerability in Nuclei, a popular open-source security tool developed by ProjectDiscovery.…

Diving into Azure Lateral Movement with Pass-the-PRT

Adi MorJanuary 3, 20257 Mins Read

One of the most concerning attack methods I’ve come across recently is ‘Pass-the-PRT.’ It’s not the most likely of cyberattacks,…

2024 Year in Review (Part 2)

Bob CovelloJanuary 3, 20258 Mins Read

July AT&T announced (in a financial filing) the discovery of a data breach dating back to 2023 that affects almost…

Navigating the Cybersecurity Landscape: Insights on AI, FTC Safeguards, and Building Resilient Cyber Cultures

Joe PettitJanuary 2, 20259 Mins Read

With the rise of sophisticated cyber threats and the growing complexity of the digital landscape, entities are in a desperate…

2024 Year in Review (Part 1)

Bob CovelloJanuary 2, 202514 Mins Read

As 2023 came to a close, it was easy to predict that breaches would continue to dominate the cybersecurity news.…

How to Defend Against High Cyberthreat Activity During the Holidays

Ilia SotnikovDecember 12, 20245 Mins Read

Imagine if Santa’s workshop were brought down by a ransomware attack in December — children around the world would be…

Cybersecurity in the Digital Frontier: Reimagining Organizational Resilience

Igboanugo David UgochukwuDecember 11, 20243 Mins Read

The digital landscape has become treacherous, and organizations must constantly reinvent their defensive strategies. Gone are the days of simple…

Critical Vulnerabilities Found in Veeam Service Provider Console

Kirsten DoyleDecember 5, 20243 Mins Read

Two critical vulnerabilities (CVE-2024-42448 and CVE-2024-42449) have been identified in Veeam Service Provider Console (VSPC), prompting an urgent call for…

Information Security Buzz is an independent resource that provides the experts’ comments, analysis, and opinion on the latest Cybersecurity news and topics