PurpleFox 2.0
An upgraded variant of Purple Fox malware with worm capabilities is being deployed in an attack campaign that is rapidly expanding.Purple Fox is now being spread through "indiscriminate port scanning…
Posted incybersecurity Risk Management Security
Gartner 2021 Risk & Sec 📊📈
1. Cybersecurity mesh Deploying controls is essential for cybersecurity mesh when it required, a modern security approach that enables tools to interoperate by providing foundational security services and centralized policy…
Mozila smart blocks
Firefox has received a new update bumping it up to version 87 with Smart Block and improved referrer trimming. Firefox blocks third-party tracking scripts by default, and while it works…
Posted inChrome Browser
Chrome goes Https Default
Chrome browser version 90 will arrives in mid-April, initial website visits will default to a secure HTTPS connection in the event the user has failed to specify a preferred URI scheme.…
DMARC …. Email Sec
DMARC usage increases, but 3 billion messages per day are still spoofing the sender’s identity. The trends has been analysed in the adoption of Domain-based Message Authentication, Reporting and Conformance…
Shell Latest Victim of Accellion
Energy giant Shell has disclosed a data breach after attackers compromised the company's secure file-sharing system powered by Accellion's File Transfer Appliance (FTA). Operates in 70 countries with 86k employee…
Android Zero Day Vulnerability
Google has disclosed that a now-patched vulnerability affecting Android devices that use Qualcomm chipsets is being weaponized by attackers to launch targeted attacks. Tracked as CVE-2020-11261 (CVSS score 8.4), the…
Critical RCE in Apache OfBiz..
The Apache Software Foundation addressed a high severity vulnerability in Apache OFBiz that could have allowed an unauthenticated adversary to remotely seize control of the open-source enterprise resource planning (ERP)…