Dec 09, 2023NewsroomMalware / Cyberattack Threat hunters have unmasked the latest tricks adopted by a malware strain called GuLoader in an effort to make analysis more challenging. "While GuLoader's core functionality hasn't changed drastically over the past few years, these constant updates in their obfuscation techniques make analyzing GuLoader a time-consuming and … [Read more...] about Researchers Unveal GuLoader Malware’s Latest Anti-Analysis Techniques
Latest
Researchers Uncover SideWinder’s Latest Server-Based Polymorphism Technique
May 09, 2023Ravie LakshmananAdvanced Persistent Threat The advanced persistent threat (APT) actor known as SideWinder has been accused of deploying a backdoor in attacks directed against Pakistan government organizations as part of a campaign that commenced in late November 2022. "In this campaign, the SideWinder advanced persistent threat (APT) group used a server-based … [Read more...] about Researchers Uncover SideWinder’s Latest Server-Based Polymorphism Technique
QNAP Fixes Critical Vulnerability in NAS Devices with Latest Security Updates
Jan 31, 2023Ravie LakshmananData Security / Vulnerability Taiwanese company QNAP has released updates to remediate a critical security flaw affecting its network-attached storage (NAS) devices that could lead to arbitrary code injection. Tracked as CVE-2022-27596, the vulnerability is rated 9.8 out of a maximum of 10 on the CVSS scoring scale. It affects QTS 5.0.1 and QuTS … [Read more...] about QNAP Fixes Critical Vulnerability in NAS Devices with Latest Security Updates
Prometheus Roadmap and Latest Updates
TL;DR Key updates:Prometheus Agent for lightweight scrape-and-forward to external backendsMany new Service Discovery mechanisms, also without a sidecarNative Histrograms and Examplars support in the databasePromLens query builder tool is now part of PrometheusPromQL new functions (e.g. sign, trigo.), negative offset supportPrometheus UI move to React, query auto-completion, … [Read more...] about Prometheus Roadmap and Latest Updates
Get Latest Security Updates from Microsoft and More
Dec 14, 2022Ravie LakshmananPatch Management / Vulnerability Tech giant Microsoft released its last set of monthly security updates for 2022 with fixes for 49 vulnerabilities across its software products. Of the 49 bugs, six are rated Critical, 40 are rated Important, and three are rated Moderate in severity. The updates are in addition to 24 vulnerabilities that have been … [Read more...] about Get Latest Security Updates from Microsoft and More
Cracking the Code to Security Resilience: Lessons from the Latest Cisco Security Outcomes Report
“There’s so much left to know, and I’m on the road to find out.” –Cat Stevens (Yusuf) Two years ago, we asked the question: What actually works in cybersecurity? Not what everyone’s doing—because there are plenty of cybersecurity reports out there that answer that question—but which data-backed practices lead to the outcomes we want to implement in cybersecurity strategies? The … [Read more...] about Cracking the Code to Security Resilience: Lessons from the Latest Cisco Security Outcomes Report
Uber Claims No Sensitive Data Exposed in Latest Breach… But There’s More to This
Uber, in an update, said there is "no evidence" that users' private information was compromised in a breach of its internal computer systems that was discovered late Thursday. "We have no evidence that the incident involved access to sensitive user data (like trip history)," the company said. "All of our services including Uber, Uber Eats, Uber Freight, and the Uber Driver app … [Read more...] about Uber Claims No Sensitive Data Exposed in Latest Breach… But There’s More to This
OpenTelemetry Roadmap and Latest Updates
OpenTelemetry is one of the most fascinating and ambitious open source projects of this era. It’s currently the second most active project in the CNCF (the Cloud Native Computing Foundation), with only Kubernetes being more active.I was at KubeCon Europe last month, delivering a talk on OpenTelemetry and it was amazing to see the full house and the excitement and interest … [Read more...] about OpenTelemetry Roadmap and Latest Updates
Latest Mobile Malware Report Suggests On-Device Fraud is on the Rise
An analysis of the mobile threat landscape in 2022 shows that Spain and Turkey are the most targeted countries for malware campaigns, even as a mix of new and existing banking trojans are increasingly targeting Android devices to conduct on-device fraud (ODF). Other frequently targeted countries include Poland, Australia, the U.S., Germany, the U.K., Italy, France, and … [Read more...] about Latest Mobile Malware Report Suggests On-Device Fraud is on the Rise
BlackMatter Ransomware Reportedly Shutting Down; Latest Analysis Released
An analysis of new samples of BlackMatter ransomware for Windows and Linux has revealed the extent to which the operators have continually added new features and encryption capabilities in successive iterations over a three-month period. No fewer than 10 Windows and two Linux versions of the ransomware have been observed in the wild to date, Group-IB threat researcher Andrei … [Read more...] about BlackMatter Ransomware Reportedly Shutting Down; Latest Analysis Released