eSecurity Planet

OCTOBER 2, 2023

September 29, 2023 Patch WS_FTP Now: 10 / 10 RCE Vulnerability Revealed Type of attack: Attackers can exploit unpatched vulnerabilities to perform remote code execution (RCE), directory traversal, cross-site scripting (XSS), SQL injection , cross-site request forgery (CSRF), and file enumeration attacks. RCE vulnerability CVE-2023-42117 = 8.1

DDOS 111

DDOS Encryption Software Ransomware 111

Digital Shadows

JANUARY 22, 2025

Phishing Remains Top Tactic, Fueled by Teams Abuse Figure 1: Top attack techniques in true-positive customer incidents for finance & insurance sector, H2 2024 vs H2 2023 Phishing dominated cyber attacks in H2 2024, accounting for over 90% of incidents across industries due to its simplicity and effectiveness.

Insurance 64

Insurance Phishing Social Engineering Engineering 64

eSecurity Planet

SEPTEMBER 18, 2023

This week, the following active exploits of vulnerabilities were announced: Iranian advanced persistent threat (APT) group exploits January 2023 vulnerabilities in Fortinet firewalls and ManageEngine software to perform remote code execution (RCE) on U.S. Read More: The 8 Best Vulnerability Scanner Tools for 2023 What is Patch Management?

Firewall 111

Firewall Security Defenses Risk Ransomware 111

eSecurity Planet

OCTOBER 9, 2023

A surge of critical vulnerabilities and zero-day exploits has made for a very busy week in IT security, affecting a range of tech giants like Atlassian, Cisco, Apple, Arm, Qualcomm and Microsoft. The problem: Arm has issued a security alert on CVE-2023-4211 , an actively exploited vulnerability in its Mali GPU drivers.

Architecture 105

Architecture Ransomware Software Accountability 105

eSecurity Planet

AUGUST 28, 2023

We’ve compiled some recently active vulnerabilities — both old and new — for security teams to monitor, mitigate, patch, or even remove from your infrastructure altogether. August 21, 2023 Ivanti finds another vulnerability For the third time in a month, Ivanti’s has reported a vulnerability in a mobile device management platform.

VPN 98

VPN Authentication Mobile Firewall 98

eSecurity Planet

AUGUST 21, 2023

Here’s a roundup of the week’s major vulnerabilities that security teams should mitigate or patch. A few small errors in the implementation of AES Encryption allows for unauthenticated ACE, and the security firm GreyNoise notes a significant spike in attackers trying to exploit this vulnerability.

Encryption 98

Encryption Security Defenses Cybersecurity Software 98

eSecurity Planet

AUGUST 28, 2023

We’ve compiled some recently active vulnerabilities — both old and new — for security teams to monitor, mitigate, patch, or even remove from your infrastructure altogether. August 21, 2023 Ivanti finds another vulnerability For the third time in a month, Ivanti’s has reported a vulnerability in a mobile device management platform.

VPN 95

VPN Authentication Mobile Firewall 95

eSecurity Planet

JANUARY 11, 2024

These devices exist outside of direct corporate management and provide a ransomware gang with unchecked platforms for encrypting data. Ransomware remains just one of many different threats and as security teams eliminate key vectors of attack, adversaries will shift tactics. How does remote encryption work?

Ransomware 124

Ransomware Encryption IoT VPN 124

eSecurity Planet

OCTOBER 6, 2023

Spear Phishing Prevention: 10 Ways to Protect Your Organization Get the Free Cybersecurity Newsletter Strengthen your organization's IT security defenses by keeping up to date on the latest cybersecurity news, solutions, and best practices. You can unsubscribe at any time.

Software 132

Software Phishing Mobile Threat Detection 132

Spinone

JANUARY 17, 2023

Ransomware is a sly, silent, and vicious criminal. It quietly makes its way past your security defenses into the heart of your data and keeps it hostage until you pay a ransom. To defend against it you need to understand how you get ransomware in the first place?

Ransomware 40

Ransomware Security Defenses 40

Spinone

DECEMBER 17, 2019

Ransomware is a sly, silent, and vicious criminal. It quietly makes its way past your security defenses into the heart of your data and keeps it hostage until you pay a ransom. To defend against it you need to understand how you get ransomware in the first place?

Ransomware 40

Ransomware Security Defenses 40

eSecurity Planet

OCTOBER 13, 2023

SecureWorks’ pentesting services are aimed at sophisticated enterprise security concerns such as mimicking adversaries, exposing the kill chain, ransomware attack simulation, IoT/OT, physical security and insider threats. You can unsubscribe at any time.

Penetration Testing 122

Penetration Testing Social Engineering Software Cyber Attacks 122

eSecurity Planet

MAY 2, 2024

The 2023 vendor surveys arriving this quarter paint a picture of a cybersecurity landscape under attack, with priority issues affecting deployment, alert response, and exposed vulnerabilities. Sophos: Noted that 43% of all 2023 malware signature updates are for stealers, spyware, and keyloggers often used to steal credentials from devices.

Cybersecurity 123

Cybersecurity DDOS Penetration Testing Passwords 123

eSecurity Planet

APRIL 29, 2024

An old Microsoft Windows spooler flaw is added to the CISA KEV list, and the Cactus Ransomware gang currently pursues unfixed Qlik Sense servers with a vulnerability patched in September 2023. Only after additional testing in May 2023 did Brocade accept the vulnerabilities existed, but did not issue patches until December 2023.

Firewall 115

Firewall Software Ransomware Penetration Testing 115

eSecurity Planet

AUGUST 23, 2023

23, 2023 Read next: Vulnerability Patching: How to Prioritize and Apply Patches Is the Answer to Vulnerabilities Patch Management as a Service? Get the Free Cybersecurity Newsletter Strengthen your organization's IT security defenses by keeping up to date on the latest cybersecurity news, solutions, and best practices.

Software 98

Software Mobile IoT Antivirus 98

Thales Cloud Protection & Licensing

FEBRUARY 15, 2023

The Pain of Double Extortion Ransomware divya Thu, 02/16/2023 - 06:10 Ransomware perpetrators are adopting more sophisticated attack techniques with much success. The problem is that businesses are not yet aware of double or triple extortion ransomware and how these tactics can affect their data protection strategies.

Ransomware 71

Ransomware Encryption Backups Cyber Insurance 71

eSecurity Planet

AUGUST 12, 2023

Trellix researchers are disclosing a number of critical data center power management platform vulnerabilities at DEFCON 2023 today. Here are the vulnerabilities they discovered, including their CVEs, CVSS scores, and a brief description of each: CyberPower DCIM: CVE-2023-3264: Use of Hard-coded Credentials (CVSS 6.7)

Authentication 98

Authentication Spyware DDOS Cybersecurity 98

eSecurity Planet

SEPTEMBER 13, 2023

Microsoft’s Patch Tuesday for September 2023 includes 59 vulnerabilities, five of them rated critical and two currently being exploited in the wild. The two vulnerabilities currently being exploited are CVE-2023-36761 , an information disclosure flaw in Microsoft Word with a CVSS score of 6.2;

Engineering 111

Engineering Security Defenses Risk Media 111

eSecurity Planet

AUGUST 10, 2023

Read next: Network Protection: How to Secure a Network Get the Free Cybersecurity Newsletter Strengthen your organization's IT security defenses by keeping up to date on the latest cybersecurity news, solutions, and best practices. You can unsubscribe at any time.

Internet 96

Internet Internet Cybersecurity Malware 96

eSecurity Planet

FEBRUARY 19, 2024

Akira ransomware vulnerabilities have also surfaced in older Cisco products, and SolarWinds patched some remote code execution flaws in its Access Rights Manager product. Your IT teams should regularly check your vendors’ security bulletins for any vulnerability news or updates. The vulnerabilities affect version v2023.2

VPN 115

VPN DNS Ransomware Software 115

eSecurity Planet

MAY 30, 2024

Ransomware attacks and data breaches make headlines when they shut down huge connected healthcare providers such as Ascension Healthcare or Change Healthcare. 2024 looks like it will only increase the number of affected individuals considering the scale of ransomware attacks from the first half of the year in the USA, Canada, and Australia.

Healthcare 124

Healthcare Cybersecurity Ransomware Backups 124

eSecurity Planet

JANUARY 29, 2024

The problem: Mandiant revealed possible 2021 exploitation by Chinese espionage attackers for CVE-2023-34048, an out-of-bounds weakness in protocol implementation first publicly reported in October 2023. The fix: Deploy the Apache security upgrades available since November 2023.

Software 116

Software Authentication CSO Accountability 116

eSecurity Planet

SEPTEMBER 9, 2024

RansomHub used multiple vulnerabilities to launch ransomware attacks, emphasizing the critical need for updates and strong security measures. Organizations and end users need prompt patching and thorough security policies to protect systems and data from high-risk vulnerabilities.

Firmware 111

Firmware Backups Firewall Risk 111

eSecurity Planet

MARCH 19, 2024

Frequent Ransomware Target QNAP Discloses 3 Vulnerabilities Type of vulnerability: Improper authentication, injection vulnerability, SQL injection (SQLi). Ransomware gangs, notably Deadbolt, Checkmate, and Qlocker, actively targeted QNAP vulnerabilities in the past. The vulnerability, CVE-2023-48788 , earns a critical CVSS score of 9.8

Authentication 122

Authentication VPN Software DDOS 122

eSecurity Planet

JULY 15, 2024

GitLab disclosed a pipeline flaw and Veeam addressed flaws exploited in active ransomware attacks. To reduce the risks caused by these vulnerabilities, affected users should apply patches, upgrade software, and strengthen security measures as soon as possible. The problem: CVE-2023-27532 (CVSS score: 7.5)

Authentication 111

Authentication Backups Software Risk 111

eSecurity Planet

JUNE 18, 2024

Ransomware attacks , where hackers encrypt critical data and demand payment for decryption, have skyrocketed. In 2023 alone, the healthcare industry witnessed a staggering 130% increase in ransomware attacks. million records were breached, marking a bad year for data security. The largest breach of 2023 affected 11.27

Cybersecurity 69

Cybersecurity Healthcare Computers and Electronics Data breaches 69

eSecurity Planet

JANUARY 18, 2024

CSP’s Professional Security Expertise CSPs’ professional security expertise substantially contributes to the security capabilities and improvement of the general resilience of cloud storage. They cited lower risk, enhanced security, and cost savings as they go through migration.

Risk 126

Risk Backups Encryption DDOS 126

Security Boulevard

JULY 9, 2024

Businesses need to know that pure prevention is in the past and, instead, automatically assume compromised security. Defense in depth and operational resiliency are the future for organizations that want to survive in the new world of cyber threats. Bad actors will always find a way to penetrate organizations if they want to.

DNS 64

DNS Cyber threats Cyber Attacks Phishing 64

eSecurity Planet

FEBRUARY 16, 2024

sectors in 2023, which raised concerns about its main goal: a widespread disruption. Analysts and security software frequently struggle to spot malicious activity disguised as normal ones, complicating intrusion detection and mitigation efforts. Want to strengthen your organization’s digital defenses?

Internet 116

Internet Internet Network Security Cybersecurity 116

Digital Shadows

FEBRUARY 26, 2025

According to CVE.org, hundreds of exploited vulnerabilities are recorded every dayover 40,000 in 2024 alone, a 38% increase from 2023. To stay ahead, security teams need a new approach: continuous, automated validation. At the same time, the threat landscape is evolving rapidly.

Penetration Testing 59

Penetration Testing Risk Ransomware Engineering 59

eSecurity Planet

DECEMBER 7, 2023

Two common examples of the use of malicious encryption include ransomware and encrypted communications with command and control servers. Ransomware attackers will use encryption programs to lock hard drives, folders, and data to prevent legitimate access. It was updated by Chad Kime on December 7, 2023.

Encryption 116

Encryption Passwords IoT Firewall 116

eSecurity Planet

SEPTEMBER 8, 2023

Also read: Top Code Debugging and Code Security Tools Top Application Security Tools & Software API Breach Examples Unfortunately, major API security breaches happen all the time. Duolingo In August 2023, news broke that the personal information of 2.6 Financial institutions were hit the hardest.

Authentication 111

Authentication Architecture Firewall Threat Detection 111

eSecurity Planet

OCTOBER 9, 2024

While the company patched these vulnerabilities fairly quickly, cybersecurity researchers from several firms, including Huntress , found that these exploits had been used on a large scale by hackers like the LockBit ransomware gang to deploy malware on client devices. This level of access can be problematic.

Software 64

Software Mobile Authentication Risk 64

eSecurity Planet

DECEMBER 19, 2023

As 2023 draws to an end and cybersecurity budgeting is nearly complete, it helps to consider the year’s events and try to predict next year’s trends. 2023 cybersecurity issues will continue: Weak IT fundamentals, poor cybersecurity awareness, and ransomware will still cause problems and make headlines.

Cybersecurity 140

Cybersecurity CISO Government Technology 140

eSecurity Planet

MARCH 4, 2024

State actors actively attack Ivanti, Ubiquity, and Microsoft’s Windows AppLocker, and ransomware attackers probe for unpatched ScreenConnect servers in this week’s vulnerability recap. February 27, 2024 Ransomware Gangs Target Unpatched ScreenConnect Servers Type of vulnerability: Authentication bypass and path traversal.

IoT 119

IoT Internet Internet Ransomware 119

Digital Shadows

OCTOBER 29, 2024

In Q3 2024, ransomware service provider “RansomHub” emerged as the most dominant ransomware group, taking the mantle from “LockBit” and “ALPHV.” Hacktivist gang “KillSec,” originally aligned with the “Anonymous” hacktivist collective, has recently shifted towards financially motivated ransomware activity.

Ransomware 88

Ransomware Encryption Technology Malware 88

Digital Shadows

OCTOBER 29, 2024

In Q3 2024, ransomware service provider “RansomHub” emerged as the most dominant ransomware group, taking the mantle from “LockBit” and “ALPHV.” Hacktivist gang “KillSec,” originally aligned with the “Anonymous” hacktivist collective, has recently shifted towards financially motivated ransomware activity.

Ransomware 52

Ransomware Encryption Technology Malware 52