By leveraging misconfigured DLLs instead of EDR-monitored APIs, this new technique injects malicious code into running processes, completely evading endpoint security.
Read moreIn a move to embarrass the city, hacking group known as SiegedSec accessed thousands of files with administrator logins, but it's making no ransom demands.
Read moreThe attack exposed personal information from pilot applicants, prompting both airlines to ditch their third-party provider and move services internally.
Read moreMost Enterprise SIEMs Blind to MITRE ATT&CK Tactics
June 28 2023Organizations are largely deluded about their own security postures, according to an analysis, with the average SIEM failing to detect a whopping 76% of attacker TTPs.
Read moreThe new FDA software bill of materials (SBOM) guidelines for medical devices could have broad impact on the healthcare industry and the broader open source ecosystem.
Read moreWhy Cyber Funding Flows for Rural Water Systems
June 28 2023The $7.5 million in new funds from the Cybersecurity for Rural Water Systems Act of 2023 is not just a drop in the bucket for crucially important rural water...
Read moreBy investing in a strong future cybersecurity workforce, we can prevent future attacks on US critical infrastructure before they occur.
Read moreSolarWinds Execs Targeted by SEC, CEO Vows to Fight
June 27 2023CEO says SEC penalties related to the 2020 SolarWinds supply chain attacks are unwarranted and is ready to mount a defense to any legal actions against the company or...
Read more
Recent Comments