Colonial Pipeline attack expected to trigger imminent hardening of cybersecurity rules for federal agencies

Credit to Author: David Ruiz| Date: Tue, 11 May 2021 21:22:31 +0000

Colonial Pipeline’s ransomware attack caused the White House to possibly refine a planned Executive Order on cybersecurity.

Categories: Government

Tags:

(Read more…)

The post Colonial Pipeline attack expected to trigger imminent hardening of cybersecurity rules for federal agencies appeared first on Malwarebytes Labs.

Read more

SUPERNOVA malware discovered on SolarWinds Orion server

Credit to Author: Pieter Arntz| Date: Fri, 23 Apr 2021 14:00:12 +0000

During an incident response investigation CISA found SUPERNOVA malware hidden on a server running SolarWinds Orion.

Categories: Reports

Tags:

(Read more…)

The post SUPERNOVA malware discovered on SolarWinds Orion server appeared first on Malwarebytes Labs.

Read more

CodeCov supply-chain compromise likened to SolarWinds attack

Credit to Author: Malwarebytes Labs| Date: Tue, 20 Apr 2021 20:13:24 +0000

A sophisticated supply-chain attack on CodeCov appears to have given attackers access to “hundreds” of the company’s clients, and their codebases.

Categories: Awareness

Tags:

(Read more…)

The post CodeCov supply-chain compromise likened to SolarWinds attack appeared first on Malwarebytes Labs.

Read more

Patch now! NSA, CISA, and FBI warn of Russian intelligence exploiting 5 vulnerabilities

Credit to Author: Malwarebytes Labs| Date: Fri, 16 Apr 2021 14:59:38 +0000

US intelligence and law enforcement agencies have issued a joint advisory listing 5 specific vulnerabilities being used by the SVR against the US and its allies.

Categories: Malwarebytes news

Tags:

(Read more…)

The post Patch now! NSA, CISA, and FBI warn of Russian intelligence exploiting 5 vulnerabilities appeared first on Malwarebytes Labs.

Read more

A week in security (March 29 – April 4)

Credit to Author: Malwarebytes Labs| Date: Mon, 05 Apr 2021 16:08:09 +0000

A roundup of the previous week’s security news, from March 29 to April 4.

Categories: A week in security

Tags:

(Read more…)

The post A week in security (March 29 – April 4) appeared first on Malwarebytes Labs.

Read more

Report goes “behind enemy lines” to reveal SilverFish cyber-espionage group

Credit to Author: Pieter Arntz| Date: Mon, 22 Mar 2021 11:42:16 +0000

PRODRAFT researchers have uncovered a sophisticated cyber-espionage group with links to SolarWinds and EvilCorps.

Categories: Reports

Tags:

(Read more…)

The post Report goes “behind enemy lines” to reveal SilverFish cyber-espionage group appeared first on Malwarebytes Labs.

Read more

Intercept X’s new secret weapon: Dynamic Shellcode Protection

Credit to Author: Seth Geftic| Date: Tue, 09 Mar 2021 14:05:30 +0000

To achieve true defense in depth, endpoint protection needs to be able to detect all types of attack tools and techniques, not just malware. Attackers increasingly rely on non-malware, or fileless, attack techniques to gain remote access to victim networks. These remote access agents have been notoriously hard to detect and block due to their [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/mekJOZaEc2E” height=”1″ width=”1″ alt=””/>

Read more

A week in security (March 1 – 7)

Credit to Author: Malwarebytes Labs| Date: Mon, 08 Mar 2021 13:04:31 +0000

A roundup of cybersecurity news from March 1 – 7, including Ryuk going worm, Exchange servers under attack, stolen VPN data, and more.

Categories: A week in security

Tags:

(Read more…)

The post A week in security (March 1 – 7) appeared first on Malwarebytes Labs.

Read more