SAP warns of malicious activity targeting unpatched systems

Credit to Author: Malwarebytes Labs| Date: Wed, 07 Apr 2021 14:44:34 +0000

A jointly-released report from Onapsis and SAP has warned that cybercriminals are taking advantage of a failure to patch.

Categories: Exploits and vulnerabilities

Tags:

(Read more…)

The post SAP warns of malicious activity targeting unpatched systems appeared first on Malwarebytes Labs.

Read more

Patching alone is not enough: Investigate your exposure windows

Credit to Author: Greg Iddon| Date: Thu, 25 Mar 2021 12:12:56 +0000

TL;DR Patching alone is not enough Timebox your exposure windows Search your exposure windows for indicators of compromise, misuse, and persistence Microsoft has published guidance for responders Sophos has also published guidance for responders Follow the Sophos Investigative Framework for observables If you are compromised and need assistance, call our Rapid Response team If you’re [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/FrZdlp1VvoM” height=”1″ width=”1″ alt=””/>

Read more

A week in security (January 11 – January 17)

Credit to Author: Malwarebytes Labs| Date: Mon, 18 Jan 2021 11:30:35 +0000

A roundup of the past week’s breaking security news, from January 11 to January 17th.

Categories: A week in security

Tags:

(Read more…)

The post A week in security (January 11 – January 17) appeared first on Malwarebytes Labs.

Read more

High-profile events are opportunities to determine security readiness

Credit to Author: Chester Wisniewski| Date: Wed, 15 Jan 2020 10:00:38 +0000

While the likelihood you might be targeted by a nation-state is low, preparing for such a circumstance might still be a useful strategy<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/mlgSNlflJNI” height=”1″ width=”1″ alt=””/>

Read more

Pulse VPN patched their vulnerability, but businesses are trailing behind

Credit to Author: Pieter Arntz| Date: Fri, 18 Oct 2019 16:36:36 +0000

After a vulnerability in a popular business VPN solutions was discussed at length and an easy to use exploit is availbale, organizations still fail to apply the patch. What’s up?

Categories:

Tags:

(Read more…)

The post Pulse VPN patched their vulnerability, but businesses are trailing behind appeared first on Malwarebytes Labs.

Read more

Microsoft pushes patch to prevent ‘WannaCry level’ vulnerability

Credit to Author: Malwarebytes Labs| Date: Wed, 15 May 2019 16:57:16 +0000

This month marks two years since the infamous WannaCry attack. Now a Remote Desktop Protocol (RDP) vulnerability has been discovered that could be used in a similar large-scale attack—though Microsoft has released a patch. Have you updated yet?

Categories:

Tags:

(Read more…)

The post Microsoft pushes patch to prevent ‘WannaCry level’ vulnerability appeared first on Malwarebytes Labs.

Read more

Microsoft pushes patch to prevent ‘WannaCry’ level vulnerability

Credit to Author: Malwarebytes Labs| Date: Wed, 15 May 2019 16:57:16 +0000

This month marks two years since the infamous WannaCry attack. Now a Remote Desktop Protocol (RDP) vulnerability has been discovered that could be used in a similar large-scale attack—though Microsoft has released a patch. Have you updated yet?

Categories:

Tags:

(Read more…)

The post Microsoft pushes patch to prevent ‘WannaCry’ level vulnerability appeared first on Malwarebytes Labs.

Read more