Secure Access Service Edge (SASE), Zero Trust Network Access (ZTNA), and Extended Detection and Response (XDR) are market trends that had started well before the year 2020. But last year they were both accelerated and catalyzed at warp speed to fundamentally overhaul the security industry. Some observers say as much as a decade’s worth of digital transformation occurred across … [Read more...] about SASE, ZTNA and XDR market trends must work together for simplified security
New Bugs Could Let Hackers Bypass Spectre Attack Mitigations On Linux Systems
Cybersecurity researchers on Monday disclosed two new vulnerabilities in Linux-based operating systems that, if successfully exploited, could let attackers circumvent mitigations for speculative attacks such as Spectre and obtain sensitive information from kernel memory. Discovered by Piotr Krysiuk of Symantec's Threat Hunter team, the flaws — tracked as CVE-2020-27170 and … [Read more...] about New Bugs Could Let Hackers Bypass Spectre Attack Mitigations On Linux Systems
Future Focused: A Safer Way to Expose Private Server Names
Shrink the DNS attack surface with Auth-DoH Imagine you could keep your building location private by making employees invisible as they traveled from home to office. (My inspiration: Loki, the Marvel superhero.) Nobody can see the employee’s destination. There’s a hitch, though. Before opening the door, you’ll need to make sure the person is authorized to enter—not some random … [Read more...] about Future Focused: A Safer Way to Expose Private Server Names
Watch Out! That Android System Update May Contain A Powerful Spyware
Researchers have discovered a new information-stealing trojan, which targets Android devices with an onslaught of data-exfiltration capabilities — from collecting browser searches to recording audio and phone calls. While malware on Android has previously taken the guise of copycat apps, which go under names similar to legitimate pieces of software, this sophisticated new … [Read more...] about Watch Out! That Android System Update May Contain A Powerful Spyware
Apple Issues Urgent Patch Update for Another Zero‑Day Under Attack
Merely weeks after releasing out-of-band patches for iOS, iPadOS, macOS and watchOS, Apple has issued yet another security update for iPhone, iPad, and Apple Watch to fix a critical zero-day weakness that it says is being actively exploited in the wild. Tracked as CVE-2021-1879, the vulnerability relates to a WebKit flaw that could enable adversaries to process maliciously … [Read more...] about Apple Issues Urgent Patch Update for Another Zero‑Day Under Attack
Threat Roundup for March 19 to March 26
Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between March 19 and March 26. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavioral characteristics, indicators of compromise, and discussing how our customers are automatically … [Read more...] about Threat Roundup for March 19 to March 26
2021 Security Outcomes Study: Timely Incident Response as a Business Enabler
Anyone who has ever observed or participated in a dance rehearsal is familiar with the count-off cadence, 5, 6, 7, 8. The same is true of musicians who count at the beginning of a piece, or an athlete awaiting the starting signal. These indicators alert us to the same thing: Be ready NOW. Cybersecurity has a set of starting signals as well, but they differ in one aspect. In … [Read more...] about 2021 Security Outcomes Study: Timely Incident Response as a Business Enabler
New 5G Flaw Exposes Priority Networks to Location Tracking and Other Attacks
New research into 5G architecture has uncovered a security flaw in its network slicing and virtualized network functions that could be exploited to allow data access and denial of service attacks between different network slices on a mobile operator's 5G network. AdaptiveMobile shared its findings with the GSM Association (GSMA) on February 4, 2021, following which the … [Read more...] about New 5G Flaw Exposes Priority Networks to Location Tracking and Other Attacks
Attack on DEX exchange clients in Discord
Following recent scams involving fake cryptocurrency exchanges and fake news sites, we recently uncovered a third campaign, one using fake DEX exchanges and aimed at cryptocurrency enthusiasts on the Discord messaging app. Here’s how the new scheme works. A word about cryptocurrency exchanges First, what’s a DEX? Two types of cryptocurrency exchanges exist: centralized (CEX) … [Read more...] about Attack on DEX exchange clients in Discord
Black Kingdom Ransomware Hunting Unpatched Microsoft Exchange Servers
More than a week after Microsoft released a one-click mitigation tool to mitigate cyberattacks targeting on-premises Exchange servers, the company disclosed that patches have been applied to 92% of all internet-facing servers affected by the ProxyLogon vulnerabilities. The development, a 43% improvement from the previous week, caps off a whirlwind of espionage and malware … [Read more...] about Black Kingdom Ransomware Hunting Unpatched Microsoft Exchange Servers