Cisco Patches Certain Hardcoded Vulnerabilities
Cisco has patched two critical vulnerabilities that could have allowed unauthenticated attackers to log in to affected devices using hard-coded credentials or default SSH keys. The first flaw fixed by…
MITRE ATT&CKS Tactics Identified By Cisco Firewall
Cisco Security analyzed Snort telemetry coming from Cisco Secure Firewalls to identify the most frequently encountered rules through the lens of the MITRE ATT&CK framework. The MITRE ATT&CK framework describes attacker behavior…
Zscaler Says ZeroTrust Required to Contain Surging Attacks
Zscaler released a report that tracked and analyzed over 20 billion threats blocked over HTTPS, a protocol originally designed for secure communication over networks an increased 314% attack surface Seven…
Posted inSecurity
Tortilla Haunts ProxyShell Exchange Server Vulnerability
The Microsoft Exchange ProxyShell vulnerabilities are being exploited yet again for ransomware, this time with Babuk from the new “Tortilla” threat actor. The security researchers discovered the new varient of…
BlackMatter Shuts And Gone Dark
Ransomware-as-a-service provider BlackMatter has ceased operations due to pressure from local authorities, malware research organization vx-underground says, citing an announcement made by the gang on a Russian underground site. BlackMatter,…
Android November 2021 Patches
Google has released the Android November 2021 security updates, which address 18 vulnerabilities in the framework and system components, and 18 more flaws in the kernel and vendor components. Among…
Nessus 10 Released With Raspberry Pi Support
Tenable has released Nessus 10 and extended supported platforms to include Raspberry Pi, allowing penetration testers, consultants, security teams and students to deploy the power of Nessus anywhere. As the world recalibrated…
IBM To Acquire REAQTA. Endpoint Security Startup
IBM Security announced that it has entered an agreement to acquire endpoint security platform startup ReaQta BV for an undisclosed price. ReaQta offers an endpoint security platform that leverages AI to identify…