eSecurity Planet

FEBRUARY 19, 2024

Among the vulnerabilities is CVE-2024-21412 , an Internet Shortcut Files flaw that allows an unauthenticated attacker to send a malicious file to a user. It bypasses Internet Shortcut Files’ security measures. The vulnerability, CVE-2020-3259 , was first discovered in May 2020.

VPN 113

VPN DNS Ransomware Software 113

eSecurity Planet

APRIL 16, 2024

The dispute between Ray’s developers and security researchers highlights hidden assumptions and teaches lessons for AI security, internet-exposed assets, and vulnerability scanning through an understanding of ShadowRay.

Cybersecurity 113

Cybersecurity Penetration Testing Internet Internet 113

SecureList

NOVEMBER 25, 2024

This is particularly notable in the case of Lazarus APT, specifically its attacks against cryptocurrency investors in May. This year, for example, the pro-Palestinian hacktivist group BlackMeta attacked the Internet Archive website, which has nothing to do with the conflict.

IoT 119

IoT Energy and Utilities Phishing Cryptocurrency 119

eSecurity Planet

DECEMBER 7, 2023

ECC is used for email encryption, cryptocurrency digital signatures, and internet communication protocols. Encryption Tools and IT Security Fundamental protocols incorporate encryption to automatically protect data and include internet protocol security (IPSec), Kerberos, Secure Shell (SSH), and the transmission control protocol (TCP).

Encryption 113

Encryption Passwords IoT Firewall 113

eSecurity Planet

APRIL 22, 2024

In an environment with many unpatched systems, prioritize the security tools expected to protect other systems. If updates can’t be performed immediately, consider deploying additional security controls or at least disconnecting vulnerable devices from direct internet access.

Authentication 62

Authentication Firewall Encryption Cybersecurity 62

eSecurity Planet

DECEMBER 7, 2023

Internet protocol security (IPSec) provides encryption at the IP packet level and creates a secure tunnel for packets belonging to multiple users and hosts. Secure/Multipurpose Internet Mail Extension (S/MIME) upgrades email security. It was updated by Chad Kime on December 7, 2023.

Encryption 109

Encryption Passwords Authentication Password Management 109

Digital Shadows

OCTOBER 29, 2024

For initial access, RansomHub affiliates often compromise internet-facing systems and user endpoints via phishing emails, password spraying, and exploiting high-risk remote code execution (RCE) and privilege escalation vulnerabilities. In November 2022, IntelBroker reportedly used Endurance to target the US Federal Government.

Ransomware 88

Ransomware Encryption Technology Malware 88