Author: Asad Yaseen

The Russian government has issued cybersecurity guidance to businesses in the country after claiming they are at risk of US reprisals for the recent SolarWinds attacks. The alert came late last week from the National Coordination Center for Computer Incidents (NKTsKI), an agency created in 2018 by KGB successor the Federal Security Service (FSB). It claimed the Biden administration had threatened to carry out retaliatory attacks on Russian critical infrastructure following the large-scale cyber-espionage campaign…

Intel was forced to issue its financial results earlier than expected last week after an internal error made public some of the information before it was due to be released, the firm has confirmed. Originally, Intel CFO, George Davis claimed a “hacker” had got hold of an infographic detailing the earnings, which was waiting to be published on the firm’s PR Newsroom site. An Intel spokesperson told the Financial Times at the time: “We were notified…

Here at The State of Security, we cover everything from breaking stories about new cyberthreats to step-by-step guides on passing your next compliance audit. But today we’d like to offer a straight-forward roundup of the Tripwire product suite. Get to know the basics of Tripwire’s core solutions for FIM, SCM, VM and more. Without further ado: Tripwire’s flagship product is the industry standard for integrity monitoring and security configuration management. It provides fully-integrated solutions for…

Security vendor SonicWall has warned its customers that threat actors may have found zero-day vulnerabilities in some of its remote access products. An initial post on the vendor’s knowledgebase pages on Friday claimed that the NetExtender VPN client version 10.x and the SMB-focused SMA 100 series were at risk. However, an update over the weekend clarified that impacted products were confined to its Secure Mobile Access (SMA) version 10.x offering running on SMA 200, SMA…

The coronavirus pandemic has produced a ripe environment for text message phishing attacks. Such scams are socially engineered to exploit people’s vulnerable impulses, experts say, and sharply rose in 2020. Many Americans sign up for text message notifications and reminders, from health care providers to shipping services, but as SMS phishing becomes more widespread, consumers will have to exercise more vigilance with texts of unknown origins. According to the security firm Proofpoint, mobile phishing attempts…

With employees likely to remain remote for the first half of 2021 (and likely beyond that in many cases), cybercriminals and fraudsters have already adjusted their tactics and techniques to launch fresh waves of phishing campaigns and other attacks designed to steal credentials, compromise personal information, and spread malware. For the past year, threat actors have consistently tailored their phishing campaigns, as well as business email compromise scams, around the COVID-19 pandemic. Phishing emails can easily…