Security News > 2021 > May

Well-known computer gaming hardware vendor MSI is warning of fake download sites ripping off its brand. We verified the outage by visiting the download page: the button is still there, but it doesn't do anything.

Microsoft has added HDR support to color managed apps to access your display's whole color gamut in the latest Windows 10 build released for Insiders in the Dev Channel. "HDR mode changes the behavior of some creative and artistic apps that use International Color Consortium display color profiles, such as Adobe Photoshop, Adobe Lightroom Classic, and CorelDraw," Microsoft's Amanda Langowski and Brandon LeBlanc said.

There's going to have to be a lot more new procedures developed, a lot better procedures developed to bridge the gap between operational technology and information technology to get those control systems where they need to be. There's going to be a really good focus on what it means to be at that national, and even the regional levels within the control systems there, to start having more robust sharing of that information that's going on within these networks.

Companies will be more likely to update their technology to prevent infrastructure attacks in the future, and sharing intel on attacks can help, cybersecurity expert says.

The notorious FIN7 cybercrime gang, a financially motivated group, is spreading a backdoor called Lizar under the guise of being a Windows pen-testing tool for ethical hackers. According to the BI.ZONE Cyber Threats Research Team, FIN7 is pretending to be a legitimate organization that hawks a security-analysis tool.

The criminal gang behind the disruptive Colonial Pipeline ransomware hack says it is shutting down operations, but threat hunters believe the group will reemerge with a new name and new ransomware variants. Another potential complication with a DarkSide shutdown is the status of live, ongoing negotiations on ransomware payments and data decryption tools.

This is a current list of where and when I am scheduled to speak: I’m keynoting the (all-virtual) RSA Conference 2021, May 17-20, 2021. I’m keynoting the 5th International Symposium on Cyber...

Private equity giant KKR leads investment to fuel growth of enterprise penetration testing firm. NetSPI, a provider of enterprise penetration tools and services, has raised $90 million in growth funding led by private equity giant KKR, with participation from Ten Eleven Ventures.

Microsoft is working on resolving a high-pitched noise issue Windows 10 users hear when using some 5.1 audio configurations after applying recently released cumulative updates. "After installing KB5000842 or later updates, 5.1 Dolby Digital audio may play containing a high-pitched noise or squeak in certain apps when using certain audio devices and Windows settings," Microsoft explains on the Windows 10 Health Dashboard.

The DarkSide takedown sent shockwaves through other underground forums, many of which deleted all ransomware topics. That's likely a reference to "Deshirfrator," or "Decryptor" in Russian: The tools that typically are as far from free as ransomware attackers can make them.