Security News > 2021 > July

Cybersecurity researchers on Friday unmasked new command-and-control infrastructure belonging to the Russian threat actor tracked as APT29, aka Cozy Bear, that has been spotted actively serving WellMess malware as part of an ongoing attack campaign. More than 30 C2 servers operated by the Russian foreign intelligence have been uncovered, Microsoft-owned cybersecurity subsidiary RiskIQ said in a report shared with The Hacker News.

81% of employees believe AI improves their overall performance at work, according to SnapLogic. As a result, more than two thirds are calling on their employers to deploy more AI-based technology to help them execute their daily work better and faster.

WhiteSource released WhiteSource Cure, an auto-remediation application designed for custom code. WhiteSource customer feedback shows the average developer effort for a single security fix is approximately half a day, which can add up to enormous delays in product releases.

ZeroFox released an advanced external threat hunting capabilities within the ZeroFox platform, designed to provide real-time threat intelligence to threat hunters, analysts and cyber responders. The enhanced threat hunting module delivers a complete global view of active and historical threat intelligence data to understand risks across physical and cyber domains, including social media as well as the surface, deep and dark web.

TrapX Security launched TrapX DeceptionGrid 7.2 featuring a new capability to protect containerized environments such as Kubernetes. TrapX DeceptionGrid secures container environments across on-premises and cloud infrastructures, independent of attack vectors.

Threat Stack announced it has expanded its AWS Fargate Security Monitoring to include Amazon Elastic Kubernetes Service. Using the Threat Stack Cloud Security Platform, businesses can gain full-stack observability into AWS EKS on AWS Fargate within minutes to detect threats and maintain compliance throughout their cloud infrastructure.

As many as eight Python packages that were downloaded more than 30,000 times have been removed from the PyPI portal for containing malicious code, once again highlighting how software package repositories are evolving into a popular target for supply chain attacks. PyPI, short for Python Package Index, is the official third-party software repository for Python, with package manager utilities like pip relying on it as the default source for packages and their dependencies.

Entrust announced certification of its nShield hardware security modules with VMware Tanzu Kubernetes Grid. Entrust nShield HSMs provide robust cryptographic services, enhancing the security of containerized applications running on VMware Tanzu Kubernetes Grid.

Inmarsat unveiled plans for ORCHESTRA, the communications network of the future. In the largest ever transformation of its current services, Inmarsat ORCHESTRA will bring together existing geosynchronous satellites with low earth orbit satellites and terrestrial 5G into an integrated, high-performance solution.

The latest addition to the family is the Praesensa ambient noise sensor, particularly relevant for applications such as campuses, shopping malls, airports, railway terminals, factories and more. AVC - also known as Noise Dependent Volume Control - changes the loudspeaker volume according to the ambient noise levels and automatically solves the dilemma of a system being too loud in a quiet environment versus too soft in a noisy environment.