RSS_Virtulization

By CISO T.J. Minichillo Ransomware is a global epidemic from which no organization — small, medium or large — is immune. Cyber criminals launch a new ransomware attack every 11 seconds, regardless of the industry sector or the depth of security defenses behind its firewalls. From small businesses to hospitals, food suppliers, energy companies and critical national infrastructure, the odds of becoming the next ransomware victim are already sky high and getting worse. The average ransom paid…

At Docker we’re all about our community, so we listened to your excitement about Docker Hub support for IPv6 on the public roadmap, and now we are pleased to be introducing beta IPv6 support for the Docker Hub Registry! This means if you’re on an IPv6 only network, you can now opt in to use the registry directly with no NAT64 gateway. Internet Protocol version 4 (IPv4), in use since the 1980s, can no longer…

Russia-linked Nobelium APT group has breached at least 14 managed service providers (MSPs) and cloud service providers since May 2021. The SolarWinds security breach was not isolated, Russia-linked Nobelium APT group has targeted140 managed service providers (MSPs) and cloud service providers and successfully breached 14 of them since May 2021. The NOBELIUM APT (APT29, Cozy Bear, and The Dukes) is the threat actor that conducted supply chain attack against SolarWinds, which involved multiple families of implants, including the SUNBURST backdoor, TEARDROP…

The International Council of Electronic Commerce Consultants (EC-Council) has launched its first-ever MOOC certification series. A MOOC, or massive open online course, is a training program that offers free education in an online environment, with no limit placed upon class size. The EC-Council’s MOOC, which has been named the Essentials Series, is devoted to cybersecurity, and will offer certifications in network defense, ethical hacking, and digital forensics. Students will have access to eCourseware, video lectures, and…

The cybercrime group behind the SolarWinds hack remains focused on the global IT supply chain, says Microsoft, with 140 resellers and service providers targeted since May. Image: iStock/stuartmiles99 The Russian-backed hacking group responsible for the SolarWinds attack has been targeting more companies with the goal of disrupting the worldwide IT supply chain. In a blog post published Monday, Microsoft cautioned of new attacks by Nobelium, revealing that it notified 140 resellers and technology service providers…

Supply chain security is something that has been increasingly important to all of us in the last few years. Almost as important as the global supply chains that are having problems distributing goods around the world! There have been many attacks via the supply chain. This is where some piece of software that you use turns out to be compromised or to contain vulnerabilities that in turn compromises your production environment. We have written about…

Tenable®, Inc., the Cyber Exposure Company, today announced that Tenable.ot™ has been added to the Continuous Diagnostics and Mitigation (CDM) Program Approved Product List (APL), allowing federal agencies and departments to purchase Tenable.ot through the CDM Program using the General Services Administration (GSA) Multiple Award Schedule.  In the midst of growing attacks on high-value and mission-critical OT, having unified visibility across these complex networks is imperative. With advanced threat detection, configuration control and risk-based vulnerability…

Proofpoint has uncovered a new, “highly active” threat group that is impersonating the Philippine government and businesses to spread Trojan malware.  On Wednesday, researchers Selena Larson and Joe Wise said the threat actors, dubbed “Balikbayan Foxes” and tracked as TA2722, are concentrated in the Philippines but are targeting the shipping, logistics, manufacturing, pharmaceutical, business, and energy sectors across the US, Europe, and Asia.  Balikbayan Foxes has conducted campaigns over 2021 in which the group sent…