Security News > 2021 > May

Rapid7 says unauthorized third-party accessed source code, customer data during Codecov supply chain breach. Enterprise security vendor Rapid7 says it was among the victims of the Codecov software supply chain attack and warned Thursday that data for a subset of its customers was accessed in the breach.

Canonical has made it easy for admins to join Ubuntu Desktop to Active Directory domains. One particular feature that network and security admins will greatly appreciate is the ability to easily connect Ubuntu Desktop to an Active Directory domain.

The Windows 10 KB5003173 cumulative update may fail to install with an error 0x800f0922 if Microsoft Edge has been previously uninstalled. After Microsoft released the Windows 10 KB5003173 cumulative update this week as part of the May 2021 Patch Tuesday, some users found they could not install the update.

Apple's brand new AirTag product got hacked already. Why Dell patched a bunch of driver bugs going back more than a decade.

Colonial Pipeline has recovered quickly from the ransomware attack suffered less than a week ago and expects all its infrastructure to be fully operational today. Colonial Pipeline manages the largest pipeline system in the U.S., supplying almost half of all the fuel consumed on the East Coast.

Colonial Pipeline's operators reportedly paid $5m to regain control of their digital systems and get the pipeline pumping oil following last week's ransomware infection. News of the payoff was broken by Bloomberg - which not only cited anonymous sources but also mocked other news outlets' anonymous sources for saying earlier this week that the American pipeline operator would never pay the ransom.

An unusually styled survey report from WSJ Intelligence and Forcepoint - titled The C-Suite Report: Business and Security Strategies for the Unbound Enterprise - makes numerous assertions with little quantitative detail. Despite this, the report draws the conclusion, "Enterprises that embrace this opportunity will see their business thrive versus just survive in the next 5-10 years." This is what everybody in the security industry would like to believe - but there is no specific evidence in the survey to suggest it is true.

President Joe Biden said Thursday that Vladimir Putin was not connected to a Russia-based criminal cyber attack on a huge US fuel pipeline but that he will raise the issue at an expected summit. Washington believes a criminal group based in Russia targeted the Colonial pipeline, which delivers gasoline through much of the south eastern United States, with ransomware.

Threat actors are abusing the Microsoft Build Engine to deploy remote access tools and information-stealing malware filelessly as part of an ongoing campaign. This development tool can build apps on any Windows system if provided with an XML schema project file telling it how to automate the build process.

Threat actors are abusing the Microsoft Build Engine to deploy remote access tools and information-stealing malware filelessly as part of an ongoing campaign. This development tool can build apps on any Windows system if provided with an XML schema project file telling it how to automate the build process.