By Ofer Israeli, CEO and founder, Illusive Networks Despite the myriad cybersecurity solutions out there, breaches, attacks and exploitations continue. The old approach isn’t working; cybersecurity teams need to move from a passive approach to one that’s more active. And MITRE’s introduction of Shield addresses this directly. MITRE, the federally funded not-for-profit, has made it clear that active defense, rather than the standard whack-a-mole responsive defense, is paramount in the fight against cybercrime. With the…

Originally posted on emadyounis.com  This post provides an overview of Azure VMware Solution, its components, and resources to help customers get started. The general availability (GA) for the next evolution of Azure VMware Solution (AVS) was announced yesterday during the Microsoft Ignite 2020 virtual conference. This is a joint partnership between Microsoft and VMware, where Azure VMware Solution is a Microsoft managed service built on Azure bare metal infrastructure and cloud verified by VMware. The initial launch of the Azure…

China-linked cyber espionage group APT31 is believed to be behind an attack on the Parliament of Finland that took place in 2020. China-linked cyber espionage group APT31 is believed to be behind an attack on the Parliament of Finland that took place in 2020. According to the government experts, the hackers breached some parliament email accounts in December 2020. “Last year, the Security Police has identified a state cyber espionage operation against Parliament, which tried…

Scammers are taking advantage of a shortage of Sony PlayStation 5 consoles to try to hoodwink people eager to snag one, says Kaspersky. Image: Sony Cybercriminals behind phishing campaigns have a knack for knowing which trends and topics will catch the eye of potential victims. Sony’s new PS5 is one topic ripe for exploitation, especially since the new console is in short supply due to a scarcity of semiconductor chips. A Friday report from security…

A Swiss software developer has been indicted by the US government for allegedly stealing source code and proprietary data and publishing it online. On March 18, a grand jury indicted 21-year-old Till Kottman for identity and data theft and computer-intrusion crimes spanning 2019 to the present.   Lucerne resident Kottman, also known as “deletescape” and “tillie crimew,” allegedly conspired with others to hack into multiple companies and government entities and publish the private data of more than 100 entities on…

By Gus Evangelakos, Director Field Engineering, XM Cyber Cybersecurity is an asymmetric battle — and one in which attackers hold an unfair advantage. Adversaries maintain the initiative and can attack from novel and unexpected angles, while defenders are forced into a reactive role. The asymmetric nature of cybersecurity isn’t the sole reason data breaches continue to rise every year, of course. The popularity of cloud computing and constant expansion of the attack surface also present…

Jack Wallen introduces you to three semanage commands that will help make dealing with SELinux considerably easier. Image: iStock/iBrave I get it–SELinux is challenging, and when your applications or services are prevented by the security layer, your first inclination is to set it to either Disabled or Permissive. In a time when security is at a premium, you can’t afford to make that change, else you risk the security of your entire system or your…

An advanced persistent threat group (APT) with links to the Chinese government has been blamed for a cyber-espionage attack on Finland’s parliament.  The Finnish Security and Intelligence Service (Supo) announced on Thursday that APT31 was behind a cyber-espionage campaign that targeted the Finnish parliament last fall.  Security companies including Checkpoint and FireEye have linked APT31’s activities with the state cyber-operations of the People’s Republic of China.  “Supo identified a state-run cyber espionage operation targeted last year against the parliament with the…