RSS_Virtulization

Authored by: Carolyn Crandall, Chief Security Advocate, Attivo Networks When it comes to predicting the future, the science fiction genre has taken some big swings over the years. Unfortunately, it’s whiffed on quite a few of them. 2001: A Space Odyssey thought we’d be traveling to Jupiter by, well, 2001. Back to the Future thought we would have hoverboards and flying cars by 2015. And Blade Runner theorized that we would have murderous robots indistinguishable…

One of the most daunting problems in cybersecurity has always been security metrics. In business, practically nothing matters in the absence of the ability to measure actionable results. Profit and loss are the drivers of all businesses. Even non-profit based businesses use metrics to plot their mission and meet their goals. The problem with security metrics is that most times, they are not measured in what was achieved but rather what was prevented. Often, prevention is unverifiable. Can you measure…

When was the last time you thought about all of the devices running on your network? Think of your home network and how deceptively simple it appears. A full inventory of that network would probably surprise you, as it would show all of the devices that you may have forgotten about as well as a few of the neighbor’s devices that are piggy-backing off of your Wi-Fi. This visibility is often shocking to many people. Now, think…

The United States has imprisoned a woman for her role in a child sexual abuse material (CSAM) subscription service that produced millions of images and videos of sexualized minors.  Patrice Eileen Wilowski-Mevorah of Tampa, Florida, was one of four people charged in August in connection with the Newstar Websites operated by Newstar Enterprise, out of Florida. Since then, two more defendants have been charged. According to court documents, Newstar purported to own and operate modeling sites hosted on servers in…

The retailer SPAR has been forced to close some of its convenience stores in the UK after a cyber-attack on its IT systems. The digital assault occurred on Sunday and is being investigated by Lancashire Police.  SPAR has around 2,600 stores located across the UK. Because of the incident, 330 SPAR shops in the north of England were left unable to process payments made using credit or debit cards.  The cyber-attack also prevented the stores from using…

ZoHo has released patches for an authentication bypass vulnerability that could lead to remote code execution and has been exploited in the wild. Background On December 3, ZoHo issued a security advisory and patches for CVE-2021-44515, an authentication bypass vulnerability in its ManageEngine Desktop Central product that has been exploited in the wild. In addition, a patch was released for CVE-2021-44526, another authentication bypass vulnerability in ServiceDesk Plus, a help desk and asset management application….

Crypto-currency worth at least $150m has been stolen from crypto-currency exchange BitMart. Blockchain security company Peckshield shared news of the theft on Saturday night on social media, claiming that digital currency worth $196m was stolen in the incident.  Peckshield alleged that a hacker pumped crypto-currency worth $96m out of the Binance smart chain and kenneled $100m worth of crypto-currencies from the Ethereum blockchain. It reported that a mix of more than 20 tokens, including Binance, Safemoon, and Shiba Inu, was stolen in…