Blog - Cyber Security Informer

What is a Cloud Native Application Protection Platform (CNAPP)?

Security Boulevard

JANUARY 19, 2022

When I first joined DeepFactor, I set out to learn as much as I could about the relevant markets and technology categories to inform our go-to-market strategy. One of the first questions I asked myself was “What category does DeepFactor fit into and what are the trends that are shaping that category?”.

Marketing

Marketing Technology

Legit Security ASPM Platform Update: Accelerating AppSec Efficiency and Effectiveness

Security Boulevard

AUGUST 21, 2023

In the fast-paced world of modern development that is driven by the constant need for innovation and rapid delivery, security teams are facing an increasing challenge in ensuring secure application delivery.

Software

Software Risk

FISMA Compliance: A Complete Guide to Navigating Low, Moderate, and High Levels

Centraleyes

APRIL 22, 2024

The Federal Information Security Modernization Act (FISMA) establishes a comprehensive strategy for enhancing the cybersecurity posture of federal agencies. Department of Commerce responsible for developing and promoting standards and guidelines to enhance the security and interoperability of information systems.

Risk

Risk Information Security Encryption Cybersecurity

What Is FOSS Software? Definition, Usage, and Vulnerabilities

Heimadal Security

MARCH 25, 2022

Free Open-Source Software (FOSS) is a software category that incorporates computer programs that are freely licensed and open-source. This article will focus on the major differences between FOSS and OSS (Open-Source Software), applicability, and the various security vulnerabilities associated with this type of […].

Software

Software Education

Google announced its Mobile VRP (vulnerability rewards program)

Security Affairs

MAY 23, 2023

Google introduced Mobile VRP (vulnerability rewards program), a new bug bounty program for reporting vulnerabilities in its mobile applications. Google announced a new bug bounty program, named Mobile VRP (vulnerability rewards program), that covers its mobile applications. We are in the final!

Mobile

Mobile Hacking Accountability Cybersecurity

Three quick takes regarding the 2021 updates to the OWASP Top 10 list

Security Boulevard

DECEMBER 28, 2021

It’s been four years since OWASP updated its Top 10 list , but this year we got three brand new categories along with a reshuffling of the rest. With lists from years past, the specificity meant that they could be used (some would say misused) as a starting point for identifying vulnerabilities present in your application.

Software

Software Risk Authentication

Imperva is an Overall Leader in the 2023 KuppingerCole Leadership Compass Data Security Platforms Report

Security Boulevard

APRIL 17, 2023

Imperva is a leader in every category – Market, Innovation, and Product Imperva, Inc., (@Imperva) the cybersecurity leader that protects critical applications, APIs, and data, anywhere at scale, is an Overall Leader in the 2023 KuppingerCole Leadership Compass for Data Security Platforms.

Marketing

Marketing Cybersecurity

ERMAC 2.0 Android Banking Trojan targets over 400 apps

Security Affairs

MAY 27, 2022

can target an increasing number of applications, passing from 378 to 467 target applications to steal account credentials and crypto-wallets. ERMAC first determines what applications are installed on the host device and then sends the information to the C2 server. RECORD_AUDIO Allows an application to record audio??

Banking

Banking Malware Cybercrime Phishing

A critical flaw in Citrix Application Delivery Management allows resetting admin passwords

Security Affairs

JUNE 15, 2022

Citrix fixed a critical flaw in Citrix Application Delivery Management (ADM), tracked as CVE-2022-27511, that can allow attackers to reset admin passwords. Citrix fixed a critical vulnerability in Citrix Application Delivery Management (ADM), tracked as CVE-2022-27511, that can be exploited by attackers to reset admin passwords.

Passwords

Passwords Hacking Cybersecurity Information Security

GUEST ESSAY: Stolen logons, brute force hacking get used the most to breach web, email servers

The Last Watchdog

AUGUST 29, 2022

Web application attacks directed at organizations’ web and mail servers continue to take the lead in cybersecurity incidents. Poor password practices are responsible for most incidents involving web applications and data breaches since 2009. We’ve shared some helpful guidance on password security at Zigrin Security blog.

Hacking

Hacking Passwords Password Management Data breaches

Kent RO sees 50% faster MTTR with Applications Manager

Security Boulevard

SEPTEMBER 16, 2021

Kent RO is an Indian multinational healthcare product company and a leader in the reverse osmosis (RO) water purifier category. The post Kent RO sees 50% faster MTTR with Applications Manager appeared first on ManageEngine Blog. Founded in 1999, Kent RO pioneered and brought the revolutionary RO technology to India.

Healthcare

Healthcare Technology

Android pre-installed apps are affected by high-severity vulnerabilities

Security Affairs

MAY 27, 2022

The researchers discovered the flaws in September 2021 and reported them to mce Systems and affected mobile service providers through Coordinated Vulnerability Disclosure (CVD) via Microsoft Security Vulnerability Research (MSVR). Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g.

Mobile

Mobile Hacking Cybersecurity Information Security

BRATA Android Malware evolves and targets the UK, Spain, and Italy

Security Affairs

JUNE 20, 2022

The malware was first spotted in 2019 by security experts at Kaspersky, the name BRAT comes from ‘Brazilian RAT Android,’ because at the time it was used to spy on Brazilian users. During the last months, a new variant has been observed targeting entities in EU territory posing as specific bank applications. Pierluigi Paganini.

Malware

Malware Banking Antivirus Phishing

CTEM: The First Proactive Security Innovation in 20 Years

NopSec

FEBRUARY 13, 2024

Brad LaPort , a veteran Gartner analyst and I were on a content project, talking about why the market was missing out on a new category to encapsulate the disparate exposure data and derive actionable insights. We were debating about what we should call this new category. Is it Cyber Exposure Management? Threat Exposure Management?

Marketing

Marketing Risk Digital transformation Software

Malicious apps continue to spread through the Google Play Store

Security Affairs

JUNE 16, 2022

Magnifier Flashlight , a flashlight application with 10,000 downloads. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. To nominate, please visit:?.

Adware

Adware Antivirus Malware Software

GitHub: Nearly 100,000 NPM Users’ credentials stolen in the April OAuth token attack

Security Affairs

MAY 28, 2022

The experts first detected the intrusion on April 12 when the company’s security team identified unauthorized access to their npm production infrastructure using a compromised AWS API key. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. Pierluigi Paganini.

Backups

Backups Passwords Hacking Cybersecurity

Experts released PoC exploit code for critical VMware CVE-2022-22972 flaw

Security Affairs

MAY 26, 2022

Security researchers released PoC exploit code for the critical authentication bypass vulnerability CVE-2022-22972 affecting multiple VMware products. The company acknowledged Bruno López of Innotec Security for the discovery of the flaw. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g.

Authentication

Authentication Healthcare Education Cybersecurity

Microsoft shared workarounds for the Microsoft Office zero-day dubbed Follina

Security Affairs

MAY 31, 2022

. “A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. doc”) that was uploaded to VirusTotal from Belarus. Pierluigi Paganini.

Cybersecurity

Cybersecurity Hacking Accountability Information Security

MaliBot Android Banking Trojan targets Spain and Italy

Security Affairs

JUNE 18, 2022

“In fact, any application which makes use of WebView is liable to having the users’ credentials and cookies stolen.” ” Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. ” concludes the report. To nominate, please visit:?. Pierluigi Paganini.

Banking

Banking Cryptocurrency Malware Mobile

Second malware strain primed to attack Apple’s new M1 chip identified

SC Magazine

FEBRUARY 18, 2021

Noted Mac security researcher Patrick Wardle published a blog Feb. Along with the Pirrit Mac adware, researchers from Red Canary posted a blog Thursday about a different malware strain – Silver Sparrow – that differs from the one found by Wardle.

Malware

Malware Adware VPN Architecture

Symbiote, a nearly-impossible-to-detect Linux malware?

Security Affairs

JUNE 9, 2022

Joint research conducted by security firms Intezer and BlackBerry uncovered a new Linux threat dubbed Symbiote. For this reason, security researchers defined this threat as nearly impossible to detect. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS.

Malware

Malware DNS Antivirus Passwords

Russia-linked Turla APT targets Austria, Estonia, and NATO platform

Security Affairs

MAY 23, 2022

“Thanks to the HTTP request done by the document to its own controlled server, the attacker can get the version and the type of Word application used by the victim – which can be an interesting info to send a tailored exploit for the specific Microsoft Word version. .” reads the analysis published by the experts.

Government

Government Hacking Cybersecurity Information Security

Experts spotted a new variant of the Cuba Ransomware with optimized infection techniques

Security Affairs

JUNE 10, 2022

” The new variant is able to terminate a larger number of processes and services, to prevent that applications could lock them and interfere with the encryption process. ” Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. Pierluigi Paganini.

Ransomware

Ransomware Malware Encryption Hacking

LuoYu APT delivers WinDealer malware via man-on-the-side attacks

Security Affairs

JUNE 3, 2022

In the past, the LuoYu group used watering-hole attacks to deliver their malware, since 2020 the WinDealer malware was delivered through an automatic update mechanism of select legitimate applications. ” A man-on-the-side attack is a form of active attack in computer security similar to a man-in-the-middle attack.

Malware

Malware Telecommunications Internet Internet

Do not use Tails OS until a flaw in the bundled Tor Browser will be fixed

Security Affairs

MAY 26, 2022

Tails is a security and privacy-oriented Linux distribution, it is a portable operating system that protects against surveillance and censorship. The CVE-2022-1802 vulnerability can allow an attacker to set up a rogue website to bypass some of the security built in Tor Browser and access information from other websites.

Surveillance

Surveillance Passwords Hacking Encryption

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

The Last Watchdog

JANUARY 27, 2022

Such consolidation across markets is good news for customers and vendors alike in terms of market growth and maximizing security investments. Throughout this period, the risk level of the acquirer is much higher than the acquired company, creating a major cybersecurity gap as they merge their tech stack and security tools together.

Marketing

Marketing Data privacy Risk Accountability

Security Affairs newsletter Round 370 by Pierluigi Paganini

Security Affairs

JUNE 20, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. To nominate, please visit:?. Pierluigi Paganini.

Spyware

Spyware DNS Surveillance Ransomware

6 of the Spookiest Vulnerabilities from 2023

NetSpi Executives

OCTOBER 31, 2023

It’s time to go back to the basics, and revisit the most common vulnerabilities across attack surfaces according to NetSPI’s 2023 Offensive Security Vision Report. For a more comprehensive look at the most common vulnerabilities, access NetSPI’s 2023 Offensive Security Vision Report. Paul Ryan, Director, Application Pentesting 2.

Mobile

Mobile Penetration Testing Social Engineering Authentication

China-linked TA413 group actively exploits Microsoft Follina zero-day flaw

Security Affairs

JUNE 1, 2022

Waiting for a security patch, Microsoft recommends disabling the MSDT URL Protocol as workarounds, below are the instructions included in the guidance: To disable the MSDT URL Protocol. Troubleshooters can still be accessed using the Get Help application and in system settings as other or additional troubleshooters.

Malware

Malware Phishing Hacking Cybersecurity

0Patch released unofficial security patch for new DogWalk Windows zero-day

Security Affairs

JUNE 8, 2022

0patch researchers released an unofficial security patch for a Windows zero-day vulnerability dubbed DogWalk. 0patch released an unofficial security patch for a new Windows zero-day vulnerability in the Microsoft Support Diagnostic Tool (MSDT) dubbed DogWalk. Many applications do that; MSDT, unfortunately, does not.”

Internet

Internet Internet Hacking Cybersecurity

How SAST and Mayhem Work Together for Comprehensive Application Security Testing

ForAllSecure

DECEMBER 20, 2022

Software application vulnerabilities fall into three different risk categories : Known Known : Known Knowns are identifiable risks that are known to lead to compromise. For the purpose of this blog post, we will focus on how SAST and Mayhem work together to identify both known-unknown and unknown-unknown risks.

Risk

Risk Software

Why You Need a Control Plane for Machine Identity Management

Security Boulevard

JUNE 16, 2022

Every aspect of human life is influenced and changed by software applications, which are a type of machine—from visiting the doctor, to purchasing online, to accessing bank accounts, to flying on an airplane. This is the essence of security: allowing access to that which is authorized and blocking access to that which is not. .

Digital transformation

Digital transformation Authentication Banking Software

Pwn2Own Miami hacking contest awarded $400,000 for 26 unique ICS exploits

Security Affairs

APRIL 22, 2022

The Pwn2Own Miami 2022 is a hacking contest organized by Trend Micro’s Zero Day Initiative (ZDI) that focuses on demonstrating exploits for ICS systems belonging to the following categories: the OPC UA Server, Control Server, Human Machine Interface, and Data Gateway. The payout for DoS ICS exploits was $5,000. To nominate, please visit:?

Hacking

Hacking Cybersecurity Information Security

API Security Best Practices

Security Affairs

JUNE 14, 2022

Organizations are rapidly opening their ecosystem through Application Programming Interfaces (API) by ensuring seamless access to data and interaction with external software components and services. APIs are the gateway to providing the high security of data in an organization. Prioritize Security.

Authentication

Authentication Encryption Software Hacking

Another nation-state actor exploits Microsoft Follina to attack European and US entities

Security Affairs

JUNE 6, 2022

“A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. — Threat Insight (@threatinsight) June 3, 2022. Pierluigi Paganini.

Phishing

Phishing Government Cybersecurity Hacking

Red TIM Research discovers a Command Injection with a 9,8 score on Resi

Security Affairs

JUNE 6, 2022

Due to the lack of user input validation, an attacker can ignore the syntax provided by the software and inject arbitrary system commands with the user privileges of the application. concatenate `&|;r commands) and inject arbitrary system commands with the privileges of the application user. RESI S.p.A. CVE-2022-29538 – RESI S.p.A.

Software

Software Architecture Technology Engineering

Researchers disclosed a remote code execution flaw in Fastjson Library

Security Affairs

JUNE 16, 2022

Cybersecurity researchers from JFrog disclosed details of a now patched high-severity security vulnerability in the popular Fastjson library that could be potentially exploited to achieve remote code execution. The impact of this flaw is huge, it affects all Java applications that rely on Fastjson versions 1.2.80 Pierluigi Paganini.

Hacking

Hacking Cybersecurity Information Security

Seven Microservices Identity Questions to Secure your Data

Thales Cloud Protection & Licensing

MAY 30, 2019

As I noted in my last blog post , containers, which are now pervasive in enterprises, are ephemeral, and microservices frameworks like Kubernetes treat them as such. Data security is a complex subject, and, unfortunately, microservices only add to the complexity. Data security. Network security. And now some questions.

Authentication

Authentication Software Network Security

Microsoft warns of new highly evasive web skimming campaigns

Security Affairs

MAY 24, 2022

Microsoft security researchers recently observed web skimming campaigns that used multiple obfuscation techniques to avoid detection. The experts also observed compromised web applications injected with malicious JavaScript masquerading as Google Analytics and Meta Pixel (formerly Facebook Pixel) scripts. Pierluigi Paganini.

Hacking

Hacking eCommerce Cybersecurity Information Security

Fixing CRLF Injection Logging Issues in Python

Veracode Security

DECEMBER 21, 2020

This article addresses one of the top finding categories found in Python, CWE 117 (also known as CRLF Injection), and shows how to use a custom log formatter to address the issue. s worth noting that not every application has a strong requirement for log integrity ??? For the purposes of this blog, we???ll

Accountability

HIPAA Compliance for Healthcare Apps

Security Boulevard

NOVEMBER 2, 2021

What Application Developers Need to Know About HIPAA Compliance. Increasingly, patients want to access their healthcare information using mobile applications or web applications. As healthcare providers increased their use of technology during the COVID pandemic, securing health applications is more important than ever.

Healthcare

Healthcare Insurance Technology Software

Introduction to SAST

CyberSecurity Insiders

SEPTEMBER 30, 2021

This blog was written by an independent guest blogger. The DevSecOps process is impossible without securing the source code. In this article, I would like to talk about Static Application Security Testing (SAST). About 90% of security incidents occur because of malicious exploitation of software bugs. What is SAST?

Marketing

Marketing Software Risk Technology

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Security Affairs

JUNE 17, 2022

The malware samples analyzed impersonated the applications of telecommunications companies or smartphone manufacturers. One of the Tykelab job postings for a security engineer we found spells out desired skills that would have direct application to surveillance of mobile networks and devices.” To nominate, please visit:?.

Spyware

Spyware Surveillance Telecommunications Mobile

Bots – The Good, The Bad and The Even Worse

SiteLock

AUGUST 27, 2021

A bot is a software application that runs automated tasks over the Internet. Bots can be put into two categories, “good” and “bad.” If you spend time reading blogs, you’ve probably spent some time perusing the comment section. Blocking Bad Bots with Website Security. Bots represent over 60 percent of all website traffic.

DDOS

DDOS Firewall Engineering Internet

What is a Cloud Native Application Protection Platform (CNAPP)?

Legit Security ASPM Platform Update: Accelerating AppSec Efficiency and Effectiveness

Trending Sources

FISMA Compliance: A Complete Guide to Navigating Low, Moderate, and High Levels

What Is FOSS Software? Definition, Usage, and Vulnerabilities

Google announced its Mobile VRP (vulnerability rewards program)

Three quick takes regarding the 2021 updates to the OWASP Top 10 list

Imperva is an Overall Leader in the 2023 KuppingerCole Leadership Compass Data Security Platforms Report

ERMAC 2.0 Android Banking Trojan targets over 400 apps

A critical flaw in Citrix Application Delivery Management allows resetting admin passwords

GUEST ESSAY: Stolen logons, brute force hacking get used the most to breach web, email servers

Kent RO sees 50% faster MTTR with Applications Manager

Android pre-installed apps are affected by high-severity vulnerabilities

BRATA Android Malware evolves and targets the UK, Spain, and Italy

CTEM: The First Proactive Security Innovation in 20 Years

Malicious apps continue to spread through the Google Play Store

GitHub: Nearly 100,000 NPM Users’ credentials stolen in the April OAuth token attack

Experts released PoC exploit code for critical VMware CVE-2022-22972 flaw

Microsoft shared workarounds for the Microsoft Office zero-day dubbed Follina

MaliBot Android Banking Trojan targets Spain and Italy

Second malware strain primed to attack Apple’s new M1 chip identified

Symbiote, a nearly-impossible-to-detect Linux malware?

Russia-linked Turla APT targets Austria, Estonia, and NATO platform

Experts spotted a new variant of the Cuba Ransomware with optimized infection techniques

LuoYu APT delivers WinDealer malware via man-on-the-side attacks

Do not use Tails OS until a flaw in the bundled Tor Browser will be fixed

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

Security Affairs newsletter Round 370 by Pierluigi Paganini

6 of the Spookiest Vulnerabilities from 2023

China-linked TA413 group actively exploits Microsoft Follina zero-day flaw

0Patch released unofficial security patch for new DogWalk Windows zero-day

How SAST and Mayhem Work Together for Comprehensive Application Security Testing

Why You Need a Control Plane for Machine Identity Management

Pwn2Own Miami hacking contest awarded $400,000 for 26 unique ICS exploits

API Security Best Practices

Another nation-state actor exploits Microsoft Follina to attack European and US entities

Red TIM Research discovers a Command Injection with a 9,8 score on Resi

Researchers disclosed a remote code execution flaw in Fastjson Library

Seven Microservices Identity Questions to Secure your Data

Microsoft warns of new highly evasive web skimming campaigns

Fixing CRLF Injection Logging Issues in Python

HIPAA Compliance for Healthcare Apps

Introduction to SAST

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Bots – The Good, The Bad and The Even Worse

Stay Connected