Author: Admin

You consider yourself a responsible person when it comes to taking care of your physical possessions. You’ve never left your wallet in a taxi or lost an expensive ring down the drain. You never let your smartphone out of your sight, yet one day you notice it’s acting oddly.   Did you know that your device can fall into cybercriminals’ hands without ever leaving yours? SIM swapping is a method that allows criminals to take control of your smartphone and break into your online accounts.  Don’t worry:…

Tripwire’s November 2021 Patch Priority Index (PPI) brings together important vulnerabilities for open-source software components and Microsoft. First on the patch priority list this month are patches for Open Management Infrastructure (CVE-2021-38648, CVE-2021-38647), Eclipse Jetty (CVE-2021-28164), and ExifTool (CVE-2021-22204). Exploits for these vulnerabilities have been recently added to the Metasploit Exploit Framework. These systems should be patched as soon as possible. Up next is a patch for Microsoft Edge (Chromium-based) and Windows Scripting that resolves…

Three APT hacking groups from India, Russia, and China, were observed using a novel RTF (rich text format) template injection technique in their recent phishing campaigns. This technique is a simple yet effective method to retrieve malicious content from a remote URL, and threat analysts expect it to reach a wider audience of threat actors soon. Researchers at Proofpoint spotted the first cases of weaponized RTF template injection in March 2021, and since then, actors…

News Detail PALO ALTO, Calif.–(BUSINESS WIRE)– VMware, Inc. (NYSE: VMW), a leading innovator in enterprise software, today announced it has been positioned as a leader in the IDC MarketScape: Worldwide SD-WAN Infrastructure 2021 Vendor Assessment (November 2021, IDC #US47279821). The solution, VMware SD-WAN, is a cloud-delivered solution that optimizes application performance over any WAN link, … Wed, 01 Dec 2021 00:00:00 PALO ALTO, Calif.–(BUSINESS WIRE)– VMware, Inc. (NYSE: VMW), a leading innovator in enterprise software,…

Organizations are presenting their attackers with an open goal because of tool bloat, a lack of visibility into key assets, and misplaced confidence in their security controls, according to Panaseer. The security vendor polled 1,200 US and UK enterprise security decision-makers from various industries to compile its Panaseer 2022 Security Leaders Peer Report. It found that the shift to cloud and remote working has driven a 19% increase over the past two years in the number of…

Security researchers have discovered two vulnerabilities in multi-function printers (MFPs) which impacted 150 product models. F-Secure security consultants Timo Hirvonen and Alexander Bolshev have written up their findings in a detailed report, Printing Shellz. Specifically, they found a physical access port vulnerability (CVE-2021-39237) and a font parsing bug (CVE-2021-39238) in HP’s MFP M725z device. They turned out to affect scores more products in the FutureSmart line dating back to 2013. CVE-2021-3928 is the more dangerous of the two…

First established in 1852, The Hanover Insurance Group is one of the oldest property and casualty insurance holding companies in existence. These days, the company is applying digital tools to streamline every aspect of the property and casualty (P&C) insurance value chain, from underwriting to claims. They’re even exploring the use of drones for risk management. Recently, I spoke with Hanover’s CIO Will Lee about how he and his team are driving these cutting-edge initiatives….