Cybersecurity Articles Archives

Vice Society ransomware gang targets manufacturing firms

Cybersecurity Articles, Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / February 1, 2023 / FiveHands, Hello Kitty, PrintNightmare, Ransomware, Vice Society, Zeppelin

Vice Society ransomware gang has been targeting manufacturing firms in Brazil, Argentina, Switzerland, and Israel, with their own custom-built ransomware.

Microsoft report highlights Mac ransomware threats and techniques

Cybersecurity Articles, Cybersecurity Attacks, Malware / By Frank Crast / January 7, 2023 / Defender, encryption, EvilQuest, FileCoder, KeRanger, macOS, MacRansom, malware, Microsoft, OSX, Ransomware

Microsoft has released new details on Mac ransomware threats, techniques and provided guidance on how to protect networks and systems from ransomware attacks.

Cuba ransomware attacks on the rise with new exploits

Cybersecurity Articles, Malware, Ransomware, Vulnerabilities & Exploits / By Frank Crast / December 4, 2022 / C2, CISA, Cuba, CVE-2020-1472, CVE-2022-24521, FBI, H0lyGh0st, KerberCache, Kerberoasting, LockBit, malware, Ransomware, RomCom, Spy Marketplace, Zeppelin

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have released a joint Cybersecurity Advisory (CSA) with new details regarding Cuba Ransomware attacks.

Microsoft: Attackers are increasingly using token theft in cyberattacks to bypass MFA

Authentication, Cloud Security, Cybersecurity Articles, Cybersecurity Attacks, Identity & Access Management / By Frank Crast / November 22, 2022 / AitM, Azure, credentials, Microsoft, pass-the-cookie, phishing

The Microsoft Detection and Response Team (DART) has spotted an increase in attackers using token theft in the cloud to compromise corporate systems while bypassing multi-factor authentication (MFA) and other authentication controls.

Palo Alto Networks: Network Security Trends report highlights common RCE vulnerability exploits against web apps

Cybersecurity Articles, Cybersecurity Attacks, Vulnerabilities & Exploits / By Frank Crast / August 20, 2022 / CVE-2021-20166, CVE-2021-20167, CVE-2021-21881, CVE-2021-24762, CVE-2021-28169, CVE-2021-31589, CVE-2021-39226, CVE-2021-4045, CVE-2021-43711, CVE-2022-21371, CVE-2022-21662, CVE-2022-22536, CVE-2022-22947, CVE-2022-22954, CVE-2022-22963, CVE-2022-22965, CVE-2022-24112, CVE-2022-24260, CVE-2022-25060, CVE-2022-25075, CVE-2022-25134, CVE-2022-27226, CVE-2022-29464, Palo Alto Networks, SAP, Spring, Unit 42, VMware, WordPress

Palo Alto Networks Unit 42 researchers released a new report “Network Security Trends” that highlights how attackers are exploiting remote code execution (RCE), cross-site scripting (XSS), traversal and information disclosure vulnerabilities in multiple vendor products.

cyber security, internet, hacking-3400555.jpg

DevSecOps best practices to secure cloud-native and microservices-based applications

Application Security, Cloud Security, Configuration Management, Cybersecurity Articles, Vulnerabilities & Exploits / By Frank Crast / March 12, 2022 / CI/CD, Cloud, Cybersecurity Threat Center, DevOps, DevSecOps, NIST, Service Mesh, SP 800-204C

The National Institute of Standards and Technology (NIST) has issued the NIST SP 800-204C “Implementation of DevSecOps for a Microservices-based Application with Service Mesh.” The guidelines include many best practices on how organizations and secure their CI/CD pipeline and enhance the software delivery processes.

Cybersecurity Articles

Vice Society ransomware gang targets manufacturing firms

Microsoft report highlights Mac ransomware threats and techniques

Cuba ransomware attacks on the rise with new exploits

Palo Alto Networks: Network Security Trends report highlights common RCE vulnerability exploits against web apps

NSA and CISA release guidance on securing remote access VPNs

Microsoft: New analysis of Exchange Server vulnerabilities and cyberattacks

3 good examples of how to apply the Zero Trust Security Model

NSA issues new guidance on encrypted DNS