eSecurity Planet

OCTOBER 6, 2023

Despite all the advances in cybersecurity, email remains the starting point for the vast majority of cyberattacks, as phishing, malware and social engineering remain effective attack techniques. That makes email security software a worthwhile investment for organizations of all sizes. The Complete Protect plan, which costs $6.00

Software 131

Software Phishing Mobile Threat Detection 131

eSecurity Planet

OCTOBER 30, 2023

It can also be a challenge for security and IT pros even to know everything they own — a vulnerable device may have been forgotten — so asset management is an increasingly important part of vulnerability management. The problem: CVE-2023-20198 , with a highest-possible CVSS Score of 10.0, and CVE-2023-20273 with a CVSS Score of 7.2,

Authentication 104

Authentication Mobile Accountability Software 104

eSecurity Planet

AUGUST 14, 2023

Here’s a roundup of the week’s major vulnerabilities that security teams should mitigate or patch. August 12 , 2023 Ford Auto’s TI Wi-Fi Vulnerability The Internet of Things (IoT) continues to expand and become a threat to connected businesses. Adobe also updated their Commerce and Dimension software.

Software 98

Software Malware Internet Internet 98

eSecurity Planet

OCTOBER 16, 2023

See also: Top Patch and Vulnerability Management tools October 9, 2023 D-Link WiFi range extender susceptible to command injection attacks Type of attack: The vulnerability is a combination of a Denial of Service (DoS) attack and a Remote Command Injection attack.

DDOS 104

DDOS Software Cybersecurity Manufacturing 104

eSecurity Planet

OCTOBER 9, 2023

The sheer number of security issues underscores the need for strong patch and vulnerability management — and for cyber resilience that goes deeper than common preventive measures. The problem: Arm has issued a security alert on CVE-2023-4211 , an actively exploited vulnerability in its Mali GPU drivers.

Architecture 104

Architecture Ransomware Software Accountability 104

eSecurity Planet

SEPTEMBER 26, 2023

Cato SASE Cloud Cato SASE Cloud provides a cloud-native solution for SASE that is fast to deploy, simple to manage, and capable of improving security and performance. Get the Free Cybersecurity Newsletter Strengthen your organization's IT security defenses by keeping up to date on the latest cybersecurity news, solutions, and best practices.

Firewall 98

Firewall VPN Malware Internet 98

eSecurity Planet

AUGUST 28, 2023

We’ve compiled some recently active vulnerabilities — both old and new — for security teams to monitor, mitigate, patch, or even remove from your infrastructure altogether. August 21, 2023 Ivanti finds another vulnerability For the third time in a month, Ivanti’s has reported a vulnerability in a mobile device management platform.

VPN 98

VPN Authentication Mobile Firewall 98

eSecurity Planet

SEPTEMBER 26, 2023

Cisco+ Secure Connect Platform Cisco+ Secure Connect strives to provide a turnkey SASE solution for a variety of needs. Pricing & Delivery Cisco+ Secure Connect can be purchased directly from Cisco or through Cisco partners. You can unsubscribe at any time.

Firewall 98

Firewall DNS Architecture Technology 98

eSecurity Planet

AUGUST 28, 2023

We’ve compiled some recently active vulnerabilities — both old and new — for security teams to monitor, mitigate, patch, or even remove from your infrastructure altogether. August 21, 2023 Ivanti finds another vulnerability For the third time in a month, Ivanti’s has reported a vulnerability in a mobile device management platform.

VPN 95

VPN Authentication Mobile Firewall 95

eSecurity Planet

SEPTEMBER 26, 2023

The platform, previously called Versa Secure Access or Versa Secure Access Fabric, connects to both cloud and local resources with ease. Get the Free Cybersecurity Newsletter Strengthen your organization's IT security defenses by keeping up to date on the latest cybersecurity news, solutions, and best practices.

Firewall 98

Firewall Software Internet Internet 98

eSecurity Planet

SEPTEMBER 22, 2023

Monitored user activity allows for operations and security to detect anomalous behavior and either enable or block access to resources as needed. Inspected and decrypted traffic blocks malware and malicious URLs through centralized control and filtering based on Barracuda’s cloud-based next generation firewall (NGWF) technology.

Firewall 98

Firewall Marketing Firmware Technology 98

Security Affairs

SEPTEMBER 11, 2024

. “ RansomHub used TDSSKiller with the -dcsvc flag to try disabling critical security services, specifically targeting Malwarebytes Anti-Malware Service (MBAMService). The command aimed to disrupt security defenses by disabling this service. appeared in the threat landscape in May 2023.

Ransomware 131

Ransomware Malware Security Defenses Hacking 131

eSecurity Planet

SEPTEMBER 25, 2023

Remote browser isolation hosts all work activities in a virtual environment isolated from the endpoint for more stringent data control and anti-malware protection. Get the Free Cybersecurity Newsletter Strengthen your organization's IT security defenses by keeping up to date on the latest cybersecurity news, solutions, and best practices.

DNS 98

DNS DDOS IoT Firewall 98

eSecurity Planet

AUGUST 10, 2023

Additionally, dashboards share data about threat names, any relevant reference URLs, tags, adversary and malware families, and attack IDs. Pricing All OTX products and features, including the AlienVault Open Threat Exchange and OTX Endpoint Security, are free to use on their own. You can unsubscribe at any time.

Internet 96

Internet Internet Cybersecurity Malware 96

eSecurity Planet

JANUARY 22, 2024

This week’s vulnerability news include GitHub credential access, a new Chrome fix, and hidden malware from pirated applications hosted on Chinese websites. Make sure your security teams are regularly checking vendors’ software and hardware updates for any patches, and keep a particular eye on networking equipment.

Authentication 113

Authentication Malware VPN Mobile 113

eSecurity Planet

AUGUST 12, 2023

Trellix researchers are disclosing a number of critical data center power management platform vulnerabilities at DEFCON 2023 today. Here are the vulnerabilities they discovered, including their CVEs, CVSS scores, and a brief description of each: CyberPower DCIM: CVE-2023-3264: Use of Hard-coded Credentials (CVSS 6.7)

Authentication 98

Authentication Spyware DDOS Cybersecurity 98

eSecurity Planet

SEPTEMBER 13, 2023

Microsoft’s Patch Tuesday for September 2023 includes 59 vulnerabilities, five of them rated critical and two currently being exploited in the wild. The two vulnerabilities currently being exploited are CVE-2023-36761 , an information disclosure flaw in Microsoft Word with a CVSS score of 6.2;

Engineering 109

Engineering Security Defenses Risk Media 109

eSecurity Planet

MAY 2, 2024

The 2023 vendor surveys arriving this quarter paint a picture of a cybersecurity landscape under attack, with priority issues affecting deployment, alert response, and exposed vulnerabilities. Sophos: Noted that 43% of all 2023 malware signature updates are for stealers, spyware, and keyloggers often used to steal credentials from devices.

Cybersecurity 121

Cybersecurity DDOS Penetration Testing Passwords 121

eSecurity Planet

APRIL 29, 2024

An old Microsoft Windows spooler flaw is added to the CISA KEV list, and the Cactus Ransomware gang currently pursues unfixed Qlik Sense servers with a vulnerability patched in September 2023. Only after additional testing in May 2023 did Brocade accept the vulnerabilities existed, but did not issue patches until December 2023.

Firewall 113

Firewall Software Ransomware Penetration Testing 113

eSecurity Planet

JANUARY 16, 2024

January 10, 2024 Thousands of WordPress Sites Vulnerable to Malware Injection Type of vulnerability: Cross-site scripting flaw in Popup Builder that allows a malware injection. This threat actor has deployed at least five malware families using the Ivanti products. The vulnerability can be tracked as CVE-2023-29357.

Firewall 109

Firewall Firmware IoT Authentication 109

eSecurity Planet

SEPTEMBER 26, 2023

Prisma SASE Palo Alto’s Prisma SASE solution is the only company recognized as a Leader in Gartner’s 2023 Magic Quadrant for Single-Vendor SASE. Get the Free Cybersecurity Newsletter Strengthen your organization's IT security defenses by keeping up to date on the latest cybersecurity news, solutions, and best practices.

Artificial Intelligence 52

Artificial Intelligence Marketing DNS IoT 52

eSecurity Planet

APRIL 15, 2024

These issues affect over 91,000 exposed machines, putting them at risk of DDoS assaults, account theft, and malware infestations. CVE-2023-6317 allows for the bypass of permission procedures, enabling unauthorized users to be added. CVE-2023-6318 permits privilege escalation to get root access.

Firewall 109

Firewall VPN Software Risk 109

Security Affairs

JULY 14, 2023

BlackLotus is the first UEFI bootkit that is able to bypass the security feature on fully up-to-date Windows 11 systems. The BlackLotus malware is a UEFI bootkit that is available for sale on hacking forums since at least October 2022. The powerful malware is offered for sale at $5,000, with $200 payments per new updates.

Firmware 98

Firmware Malware Hacking CISO 98

eSecurity Planet

MARCH 4, 2024

The fix: To eliminate malware infections, perform a factory reset, upgrade to the latest firmware, change all default usernames and passwords, and adjust firewall rules to block exposure to unwanted remote management services. The fix: Patch or isolated vulnerable Windows systems.

IoT 117

IoT Internet Internet Ransomware 117

Security Boulevard

JULY 7, 2023

Summary Discover the intricate layers of a new sophisticated and persistent malware campaign targeting businesses in the LATAM region delivering the TOITOIN Trojan. Gain valuable insights into the evolving threat landscape and learn how organizations can fortify their defenses against this emerging Latin American cyber threat.

Malware 105

Malware Encryption Phishing Internet 105

eSecurity Planet

JANUARY 30, 2024

Collaborate with external cloud security specialists or managed service providers to enhance internal capabilities. 8 Common Cloud Storage Security Risks & Mitigations Cloud storage risks include misconfiguration, data breaches, insecure interfaces, DDoS attacks, malware, insider threats, encryption issues, and patching issues.

Risk 127

Risk DDOS Data breaches Encryption 127

eSecurity Planet

MARCH 19, 2024

The problem: Cisco announced patches for 10 vulnerabilities (one critical, four high, five medium) affecting its IOS XR Software, SD-WAN vMaange, and Secure Client products. The vulnerability, CVE-2023-48788 , earns a critical CVSS score of 9.8

Authentication 119

Authentication VPN Software DDOS 119

eSecurity Planet

FEBRUARY 16, 2024

sectors in 2023, which raised concerns about its main goal: a widespread disruption. They execute harmful acts using built-in operating system functions, such as Windows, rather than traditional malware. It’s also used by ransomware actors that want to propagate malware using remote monitoring and management tools.

Internet 113

Internet Internet Network Security Cybersecurity 113

eSecurity Planet

JUNE 10, 2024

June 5, 2024 DarkGate MaaS Switches to AutoHotkey for Stealthier Malware Delivery Type of vulnerability: Malware delivery mechanism. The problem: The DarkGate malware-as-a-service (MaaS) operation , notorious for its powerful remote access trojan (RAT) capabilities, has switched from using AutoIt scripts to AutoHotkey in version 6.

Malware 80

Malware Authentication Software Telecommunications 80

eSecurity Planet

SEPTEMBER 16, 2024

AI-Powered Security Tools AI-powered security tools are revolutionizing how organizations approach cybersecurity. These tools use advanced algorithms to protect against various threats, from malware to phishing attacks. They offer real-time analysis and responses, making them a valuable asset in any security strategy.

Artificial Intelligence 135

Artificial Intelligence Threat Detection Phishing Cyber Attacks 135

Security Boulevard

JULY 9, 2024

Businesses need to know that pure prevention is in the past and, instead, automatically assume compromised security. Defense in depth and operational resiliency are the future for organizations that want to survive in the new world of cyber threats. Bad actors will always find a way to penetrate organizations if they want to.

DNS 64

DNS Cyber threats Cyber Attacks Phishing 64

eSecurity Planet

JULY 8, 2024

The fix: CocoaPods fixed these flaws and reset all user sessions since October 2023. China’s Velvet Ant hackers used this vulnerability to launch custom malware, hack into vulnerable computers, and upload files without generating syslog notifications. The fix: Microsoft already released a patch for CVE-2021-40444 in September 2021.

Risk 62

Risk Authentication Firmware Surveillance 62

eSecurity Planet

JULY 15, 2024

Notable malware include Gh0st RAT, RedTail, XMRig, and the Muhstik botnet. The problem: CVE-2023-27532 (CVSS score: 7.5) This resulted in defenses being disabled and ransomware being deployed, as demonstrated by the EstateRansomware group’s attack on a failover server using FortiGate SSL VPN and RDP connections.

Authentication 109

Authentication Backups Software Risk 109

eSecurity Planet

MAY 30, 2024

Table of Contents Toggle Recent Healthcare Attacks & Breaches 5 Key Cybersecurity Management Lessons to Learn Bottom Line: Learn Healthcare’s Lessons Before Suffering Pain Recent Healthcare Attacks & Breaches Large breaches affected over 88 million individuals in the USA in 2023, a 60% increase from 2022. Ascension lost $2.66

Healthcare 123

Healthcare Cybersecurity Ransomware Backups 123

eSecurity Planet

APRIL 1, 2024

The problem: A SQLi flaw tracked as CVE-2023-48788 permits remote code execution (RCE) with SYSTEM privileges in low complexity attacks that don’t require user interaction. Checkmarx posted a list of the malware packages detected and removed from the PyPI repository. Oglio tracks vulnerability CVE-2023-48022 , rated CVSS 9.8 (out

Authentication 109

Authentication Artificial Intelligence Software Risk 109

eSecurity Planet

SEPTEMBER 26, 2023

Get the Free Cybersecurity Newsletter Strengthen your organization's IT security defenses by keeping up to date on the latest cybersecurity news, solutions, and best practices. More than two decades later, the company is a cybersecurity market leader with more than $5 billion in annual revenue.

Firewall 98

Firewall DNS Technology Antivirus 98

Digital Shadows

OCTOBER 29, 2024

Originally from Serbia , IntelBroker is notorious for sharing and selling stolen databases, creating the open-source, C#-based ransomware “Endurance,” and engaging in malware development and access sales. In November 2022, IntelBroker reportedly used Endurance to target the US Federal Government.

Ransomware 88

Ransomware Encryption Technology Malware 88