Blog - Cyber Security Informer

What Is Secure Remote Access?

Heimadal Security

JULY 28, 2023

Secure remote access is an effective approach to cybersecurity that combines multiple technologies, such as encryption, multifactor authentication (MFA), VPNs, and endpoint protection, among others, to safeguard an organization’s network, mission-critical systems, or sensitive data from unauthorized access.

Encryption

Encryption Authentication Technology Cybersecurity

Google Cybersecurity Action Team Threat Horizons Report #9 Is Out!

Anton on Security

FEBRUARY 7, 2024

This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our seventh Threat Horizons Report ( full version ) that we just released ( the official blog for #1 report , my unofficial blogs for #2 , #3 , #4 , #5 , #6 , #7 and #8 ).

Cybersecurity

Cybersecurity Ransomware Passwords Cryptocurrency

ConnectWise Quietly Patches Flaw That Helps Phishers

Krebs on Security

DECEMBER 1, 2022

ConnectWise , which offers a self-hosted, remote desktop software application that is widely used by Managed Service Providers (MSPs), is warning about an unusually sophisticated phishing attack that can let attackers take remote control over user systems when recipients click the included link.

Phishing

Phishing Architecture Passwords Accountability

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

SHARED INTEL Q&A: My thoughts and opinions about cyber threats — as discussed with OneRep

The Last Watchdog

OCTOBER 5, 2023

Here is Erin’s Q&A column, which originally went live on OneRep’s well-done blog.) For the first expert interview on our blog, we welcomed Pulitzer-winning investigative reporter Byron V. Byron is the founder and editor-in-chief of The Last Watchdog on Privacy & Security. What drew you to this field?

Cyber threats

Cyber threats Cyber Insurance Cybersecurity Threat Detection

What Is ZTNA? Zero Trust Network Access Explained.

Heimadal Security

MAY 26, 2023

In today’s fast-changing digital landscape, ensuring strong network security has become a top priority for companies of all sizes. Given the rise of remote work, cloud computing, and increasingly complex cyber threats, conventional network architectures and perimeter-based security measures are no longer enough.

Architecture

Architecture Cyber threats Network Security

No, I Won't Link to Your Spammy Article

Troy Hunt

APRIL 6, 2020

That email would have been a reply to one you originally sent to me that would have sounded something like this: Hi, I came across your blog on [thing] and I must admit, it was really nicely written. I also have an article on [thing] and I think it would be a great addition to your blog. On a popular blog. Just the title.

Advertising

Advertising VPN Internet Internet

How 1-Time Passcodes Became a Corporate Liability

Krebs on Security

AUGUST 30, 2022

Phishers are enjoying remarkable success using text messages to steal remote access credentials and one-time passcodes from employees at some of the world’s largest technology companies and customer support firms. Image: Cloudflare.com.

Mobile

Mobile Phishing Authentication Accountability

What Is a Remote Code Execution Attack? Definition, Risks, and Mitigation Measures

Heimadal Security

MAY 14, 2023

A remote code execution (RCE) attack consists of adversaries remotely running code on an enterprise`s assets. Threat actors remotely inject and execute code in the victim`s device or system by using local (LAN), or wide area networks (WAN). Threat actors use […] The post What Is a Remote Code Execution Attack?

Risk

Risk Ransomware Software

Watch out for tech support scams lurking in sponsored search results

Malwarebytes

MAY 2, 2024

This blog post was written based on research carried out by Jérôme Segura. The systems of the people that click one of these links are likely to assessed on what the most profitable follow-up is (using a method called fingerprinting). Perhaps you are even shocked and scared, and don’t really know what to do now.

Scams

Scams Advertising Identity Theft Passwords

Who Is Behind the Comeback of Emotet?

Heimadal Security

NOVEMBER 22, 2021

To get remote access to the affected PCs, the organization is usually utilizing phishing attempts to install the TrickBot and BazarLoader Trojans. What Happened? appeared first on Heimdal Security Blog. Emotet botnet has been reactivated by its previous operator, who was […].

Encryption

Encryption Phishing Ransomware Malware

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

Shortly after that disclosure, the security firm Group-IB published a report linking the attackers behind the Twilio intrusion to separate breaches at more than 130 organizations, including LastPass , DoorDash , Mailchimp , and Plex. Multiple security firms soon assigned the hacking group the nickname “ Scattered Spider.”

Social Engineering

Social Engineering Mobile Cybercrime Passwords

GUEST ESSAY: Leveraging ‘zero trust’ and ‘remote access’ strategies to mitigate ransomware risks

The Last Watchdog

MAY 5, 2022

What an outstanding response! Let’s walk through some practical steps organizations can take today, implementing zero trust and remote access strategies to help reduce ransomware risks: •Obvious, but difficult – get end users to stop clicking unknown links and visiting random websites that they know little about, an educational challenge.

Ransomware

Ransomware Risk Internet Internet

What is ZuoRAT?

Security Boulevard

JULY 6, 2022

ZuoRAT is a remote access trojan (RAT) that attacks small office/home office (SOHO) routers. The post What is ZuoRAT? The post What is ZuoRAT? appeared first on Allot's Network Security & IoT Blog for CSPs & Enterprises. The post What is ZuoRAT? appeared first on Security Boulevard.

IoT

IoT Network Security Technology Cybersecurity

Amazon and Azure Cloud Services Abused in a Malicious Trio RAT Campaign

Heimadal Security

JANUARY 13, 2022

Researchers have identified a malicious campaign leveraging a trio of remote access trojans that target Amazon Web Services (AWS) along with Azure Cloud Services. The threat actors’ goal is to steal victims’ data and carry out RCE (remote code execution). What RATs Are Leveraged in This Triad?

Cybersecurity

Why BYOD Is the Favored Ransomware Backdoor

eSecurity Planet

JANUARY 11, 2024

When remote workers connect bring-your-own-device (BYOD) laptops, desktops, tablets, and phones to corporate assets, risk dramatically increases. Ransomware remains just one of many different threats and as security teams eliminate key vectors of attack, adversaries will shift tactics. How does remote encryption work?

Ransomware

Ransomware Encryption IoT VPN

GUEST ESSAY: How to secure ‘Digital Twins’ to optimize asset use, while reducing exposures

The Last Watchdog

AUGUST 8, 2022

One might operate a plant and then use the digital twin of that plant to plan maintenance and optimization and see what would happen before they execute in reality. For example, what if a bad actor accesses a digital twin of a major dam or some other critical piece of infrastructure? Access security challenges.

Artificial Intelligence

Artificial Intelligence Cyber Insurance Risk Telecommunications

What Is Remote Desktop Protocol (RDP)?

Heimadal Security

NOVEMBER 4, 2021

When talking about Remote Desktop Protocol (RDP) we are referring to the technical standard used to safely and remotely access a desktop computer. Remote Desktop Protocol (RDP) is the protocol that controls the operation of a personal computer from a remote location. The post What Is Remote Desktop Protocol (RDP)?

Cybersecurity

Microsoft Patch Tuesday, December 2022 Edition

Krebs on Security

DECEMBER 14, 2022

Microsoft has released its final monthly batch of security updates for 2022, fixing more than four dozen security holes in its various Windows operating systems and related software. The security updates include patches for Azure , Microsoft Edge, Office , SharePoint Server , SysInternals , and the.NET framework.

Social Engineering

Social Engineering Ransomware Software Engineering

What Is CARTA? Continuous Adaptive Risk and Trust Assessment Explained

Heimadal Security

DECEMBER 15, 2022

With more employees bringing unmanaged devices to the office, business networks can be accessed by many more people. Plus, remote work means that an organization’s IT perimeter is no longer restricted within its walls. The post What Is CARTA? Continuous Adaptive Risk and Trust Assessment (CARTA) is an […].

Risk

Guest Blog: TalkingTrust. What’s driving the security of IoT?

Thales Cloud Protection & Licensing

MARCH 10, 2021

Guest Blog: TalkingTrust. What’s driving the security of IoT? The Urgency for Security in a Connected World. Additionally, many auto manufacturers now have the ability to remotely update software to fix vulnerabilities or even upgrade functionality. Device Security is Hard. Thu, 03/11/2021 - 07:39.

IoT

IoT Firmware Manufacturing Encryption

BazarBackdoor Malware Distributed via Corporate Website Contact Forms

Heimadal Security

MARCH 11, 2022

This helps them bypass security software detection. What Is BazarBackdoor? BazarBackdoor is malware that lets hackers achieve remote access to an internal device. The post BazarBackdoor Malware Distributed via Corporate Website Contact Forms appeared first on Heimdal Security Blog.

Malware

Malware Phishing Software Cybersecurity

GUEST ESSAY: Improved ‘data governance’ can help companies meet today’s security challenges

The Last Watchdog

MARCH 10, 2022

Therefore, it’s essential to understand some of the most significant challenges and what can be done to counter them. We don’t keep track of what is coming in or where it’s being stored. And the first step is knowing what to protect. Related: Biden issues much needed cybersecurity exec order. Protecting data.

Government

Government eCommerce Data breaches Retail

A Clear and Present Need: Bolster Your Identity Security with Threat Detection and Response

Duo's Security Blog

NOVEMBER 20, 2023

What gives? One hypothesis is that identity suffers from lack of resources or prioritization and is typically bucketed as an IT function rather than a security one. First, IT teams must ensure that their Identity Security program is built on a strong foundation with the right tools.

Threat Detection

Threat Detection Authentication Accountability Data breaches

GUEST ESSAY: Top 5 cyber exposures tied to the rising use of international remote workforces

The Last Watchdog

AUGUST 23, 2021

With many employees now working remotely, securing company data isn’t as straightforward as it used to be. Things get even more complicated if you have an international remote workforce. Since then, as remote work has become more popular and accessible, that figure has likely only increased. Slow Communication.

Internet

Internet Internet Government Risk

North Korean APT Kimsuky Uses Commodity RATs with Custom Gold Dragon Backdoor

Heimadal Security

FEBRUARY 9, 2022

Security experts in South Korea have discovered a new wave of activity from the Kimsuky threat actors, which includes the use of commodity open-source remote access tools delivered with their tailored malware, Gold Dragon. What Is Kimsuky?

Cybercrime

Cybercrime Malware Cybersecurity

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

The Last Watchdog

APRIL 5, 2022

China has enclosed its national internet servers within what is colloquially called ‘the Great Firewall.’ In a recent statement , the Foreign Correspondents Club of China (FCCC) commented, “Covering China is increasingly becoming an exercise in remote reporting, as China cuts off new visas and expels journalists.”

Hacking

Hacking Passwords Firewall Internet

FatalRAT in Full Play: the New Trojan that Targets Telegram

Heimadal Security

AUGUST 3, 2021

AT&T Alien Labs has released a report detailing a new remote access trojan (RAT) that is circulating online. What Is a RAT? According to our glossary, a RAT is a trojan that chooses a victim and gains access to their privileged […].

Malware

Malware Cybersecurity

GUEST ESSAY: Data loss prevention beccomes paramount — expecially in the wake of layoffs

The Last Watchdog

FEBRUARY 13, 2023

In 2020, Forbes reported that pandemic layoffs and remote work served to increase the risk of company data loss. That same employee might use that spreadsheet as a bargaining chip in securing a new job with your competitor. Consolidated visibility Eisdorfer The first step is to know what you have.

Artificial Intelligence

Artificial Intelligence Technology Education Risk

Legacy Authentication Protocols: Why RADIUS Is (Still) Important

Duo's Security Blog

MAY 23, 2024

When reading the title of this blog, you might be wondering to yourself why RADIUS is being highlighted as a subject — especially amidst all of the advancements of modern authentication we see taking place recently. What is RADIUS? First, let's level-set on what we are talking about.

Authentication

Authentication Wireless Passwords Encryption

McAfee Enterprise Defender Blog | OMIGOD Vulnerability Opening the Door to Mirai Botnet

McAfee

SEPTEMBER 22, 2021

While many of these vulnerabilities are important and should be patched as soon as possible, there is one critical vulnerability that McAfee Enterprise wants to immediately bring to your attention due to the simplicity of what is required to exploit, and evidence that possible exploitation is already being attempted. Source: MVISION Insights.

Firewall

Firewall Software DDOS Internet

RSA 2023: Not Under the GenAI Influence Yet!

Anton on Security

MAY 5, 2023

Security business is booming! Stop Glorifying Threat Actors, People! :-) In my traditional post-RSA manner, let’s go through the topic areas I care about (translation: not pre/post/in/on/through/over quantum) Security operations Let’s look at my favorite topic: security operations / detection and response. Is XDR finally over?

Artificial Intelligence

Artificial Intelligence Threat Detection Marketing Cybersecurity

Ransomware gangs are exploiting CVE-2022-26134 RCE in Atlassian Confluence servers

Security Affairs

JUNE 12, 2022

Ransomware gangs are actively exploiting CVE-2022-26134 remote code execution (RCE) flaw in Atlassian Confluence Server and Data Center. Multiple ransomware groups are actively exploiting the recently disclosed remote code execution (RCE) vulnerability, tracked as CVE-2022-26134 , affecting Atlassian Confluence Server and Data Center.

Ransomware

Ransomware Encryption Malware Hacking

Smart TV Scams: How to Avoid the Growing Threat

Identity IQ

SEPTEMBER 21, 2023

This blog sheds light on what smart TV scams are, how they work, and how you can help protect yourself from falling victim to them. This blog sheds light on what smart TV scams are, how they work, and how you can help protect yourself from falling victim to them. What are Smart TV Scams? Remote access.

Scams

Scams Identity Theft Phishing Software

Understanding Brute Force Attacks: The Persistent Threat in Cybersecurity

Webroot

APRIL 2, 2024

Whether it’s Remote Desktop Protocol (RDP), or direct finance theft, brute force attacks are a prime tactic in the current cybersecurity landscape. What is a Brute Force Attack? Direct Financial Theft In some cases, attackers aim to gain unauthorized access to financial systems or payment platforms.

Cybersecurity

Cybersecurity Passwords VPN Authentication

Google Cybersecurity Action Team Threat Horizons Report #9 Is Out!

Security Boulevard

FEBRUARY 7, 2024

This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our seventh Threat Horizons Report ( full version ) that we just released ( the official blog for #1 report , my unofficial blogs for #2 , #3 , #4 , #5 , #6 , #7 and #8 ).

Cybersecurity

Cybersecurity Ransomware Passwords Cryptocurrency

Resilience lies with security: Securing remote access for your business

Webroot

OCTOBER 22, 2021

Remote access has helped us become more interconnected than ever before. The growth of remote access allowed individuals to work with organizations and teams they don’t physically see or meet. However, the demand for remote access has critical implications for security. What is secure remote access?

VPN

VPN Penetration Testing Education Security Awareness

A Fake Kaseya Security Update Is ‘Backdooring’ Networks Using Cobalt Strike

Heimadal Security

JULY 8, 2021

Threat actors are trying to capitalize on the Kaseya ransomware attack by targeting potential victims in spam campaigns that are pushing Cobalt Strike payloads disguised as Kaseya VSA security updates in what seems to be a Kaseya malspam campaign.

Ransomware

Ransomware Software Phishing Cybersecurity

What is a Remote Access Trojan (RAT)?

Heimadal Security

MARCH 5, 2021

A Remote Access Trojan (RAT) is a type of malware that provides the attacker with full remote control over your system. The post What is a Remote Access Trojan (RAT)? appeared first on Heimdal Security Blog.

Malware

Malware Account Security Accountability Education

The ‘Groove’ Ransomware Gang Was a Hoax

Krebs on Security

NOVEMBER 2, 2021

It now appears that Groove was all a big hoax designed to toy with security firms and journalists. ” In the first week of September, Groove posted on its darknet blog nearly 500,000 login credentials for customers of Fortinet VPN products, usernames and passwords that could be used to remotely connect to vulnerable systems. .”

Ransomware

Ransomware Cybercrime VPN Media

Microsoft Patch Tuesday, November 2021 Edition

Krebs on Security

NOVEMBER 9, 2021

today released updates to quash at least 55 security bugs in its Windows operating systems and other software. Microsoft’s revised, more sparse security advisories don’t offer much detail on what exactly is being bypassed in Excel with this flaw. Microsoft Corp.

Backups

Backups Authentication Passwords Internet

Unlocking Success: Safeguarding Your Business with Cloud-Based Solutions

Jane Frankland

OCTOBER 10, 2023

We all know the feeling: ensuring that your business is secure and running efficiently can feel overwhelming. It’s a hard balancing act between protecting valuable data, increasing productivity, controlling costs – especially when technology often seems to be outpacing security measures.

Risk

Risk Technology Cybersecurity Encryption

GUEST ESSAY: The Top 5 online privacy and data security threats faced by the elderly

The Last Watchdog

JUNE 9, 2022

What is it about the elderly that makes them such attractive targets for cybercriminals? That said, here are what I consider to be the Top 5 online threats seniors face today: •Computer tech support scams. Once they get remote access, fraudsters hack confidential details of older adults and scam them.

Identity Theft

Identity Theft Scams Insurance Internet

Modernizing Secure Remote Access: A VPN-less Future for Hybrid Work

Duo's Security Blog

JUNE 22, 2022

Employees deserve safe and easy access to on-premises applications so they can stay productive, no matter where they are working from – an office, a dentist office, coffee shop, home, or any other place with a reliable Internet connection. Cyber threats can come from anywhere – they don’t just originate from “outside” corporate perimeters.

VPN

VPN Architecture Authentication Cyber threats

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Krebs on Security

NOVEMBER 21, 2020

And in May of this year, GoDaddy disclosed that 28,000 of its customers’ web hosting accounts were compromised following a security incident in Oct. In due course, the malicious actor was able to partially compromise our infrastructure, and gain access to document storage.” ” In the early morning hours of Nov.

Cryptocurrency

Cryptocurrency VPN Scams Social Engineering

What Is Secure Remote Access?

Google Cybersecurity Action Team Threat Horizons Report #9 Is Out!

Webinars

Trending Sources

ConnectWise Quietly Patches Flaw That Helps Phishers

Webinars

SHARED INTEL Q&A: My thoughts and opinions about cyber threats — as discussed with OneRep

What Is ZTNA? Zero Trust Network Access Explained.

No, I Won't Link to Your Spammy Article

How 1-Time Passcodes Became a Corporate Liability

What Is a Remote Code Execution Attack? Definition, Risks, and Mitigation Measures

Watch out for tech support scams lurking in sponsored search results

Who Is Behind the Comeback of Emotet?

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

GUEST ESSAY: Leveraging ‘zero trust’ and ‘remote access’ strategies to mitigate ransomware risks

What is ZuoRAT?

Amazon and Azure Cloud Services Abused in a Malicious Trio RAT Campaign

Why BYOD Is the Favored Ransomware Backdoor

GUEST ESSAY: How to secure ‘Digital Twins’ to optimize asset use, while reducing exposures

What Is Remote Desktop Protocol (RDP)?

Microsoft Patch Tuesday, December 2022 Edition

What Is CARTA? Continuous Adaptive Risk and Trust Assessment Explained

Guest Blog: TalkingTrust. What’s driving the security of IoT?

BazarBackdoor Malware Distributed via Corporate Website Contact Forms

GUEST ESSAY: Improved ‘data governance’ can help companies meet today’s security challenges

A Clear and Present Need: Bolster Your Identity Security with Threat Detection and Response

GUEST ESSAY: Top 5 cyber exposures tied to the rising use of international remote workforces

North Korean APT Kimsuky Uses Commodity RATs with Custom Gold Dragon Backdoor

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

FatalRAT in Full Play: the New Trojan that Targets Telegram

GUEST ESSAY: Data loss prevention beccomes paramount — expecially in the wake of layoffs

Legacy Authentication Protocols: Why RADIUS Is (Still) Important

McAfee Enterprise Defender Blog | OMIGOD Vulnerability Opening the Door to Mirai Botnet

RSA 2023: Not Under the GenAI Influence Yet!

Ransomware gangs are exploiting CVE-2022-26134 RCE in Atlassian Confluence servers

Smart TV Scams: How to Avoid the Growing Threat

Understanding Brute Force Attacks: The Persistent Threat in Cybersecurity

Google Cybersecurity Action Team Threat Horizons Report #9 Is Out!

Resilience lies with security: Securing remote access for your business

A Fake Kaseya Security Update Is ‘Backdooring’ Networks Using Cobalt Strike

What is a Remote Access Trojan (RAT)?

The ‘Groove’ Ransomware Gang Was a Hoax

Microsoft Patch Tuesday, November 2021 Edition

Unlocking Success: Safeguarding Your Business with Cloud-Based Solutions

GUEST ESSAY: The Top 5 online privacy and data security threats faced by the elderly

Modernizing Secure Remote Access: A VPN-less Future for Hybrid Work

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Stay Connected