Security News > 2021

Email security company GreatHorn is warning of a new form of phishing attack that makes malicious messages more likely to get through filters and harder for the average person to detect by sight. Email scanning programs, GreatHorn said in a blog post, aren't configured to detect these kinds of attacks because they don't fit known bad criteria.

If you need to gather information on user logins for your Linux servers, Jack Wallen has just the tool for you. In other words, more than one user can be logged in at once.

Cybersecurity startup 1Kosmos emerged from stealth mode this week armed with $15 million in Series A funding from ForgePoint Capital to gain traction with its digital identity and authentic solutions. The Somerset, NJ-based company has developed a platform that leverages biometrics and private a blockchain to enable passwordless authentication.

With the arrival of tax season, the IRS has sent out a dire notice to tax professionals warning them of a new wave of digital scams involving people trying to steal Electronic Filing Identification Numbers. Agency officials said they have seen a wave of fake emails with the subject line, "Verifying your EFIN before e-filing," that purport to come from "IRS Tax E-Filing." The IRS said tax professionals have become "Prime targets" for cyberattackers looking for information that would make it easy to steal identities and file falsified tax returns for refunds.

The Center for Internet Security, a non-profit dedicated to securing IT systems and data, has announced the launch of free ransomware protection for US private hospitals through the Malicious Domain Blocking and Reporting service. "This capability can block the vast majority of ransomware infections just by preventing the initial outreach to a ransomware delivery domain," as CIS explains.

Brave Browser is fixing a privacy issue that leaks the Tor onion URL addresses you visit to your locally configured DNS server, exposing the dark web websites you visit. To access Tor onion URLs, Brave added a 'Private Window with Tor' mode that acts as a proxy to the Tor network.

Jack Wallen shows you how to gain a bit more security on your Linux servers by blocking users from adding cron jobs. You're a new Linux admin and you're familiar with how cron works.

The leader of Mexico's Green Party has been removed from office following allegations that he received money from a Romanian ATM skimmer gang that stole hundreds of millions of dollars from tourists visiting Mexico's top tourist destinations over the past five years. Jose de la Peña Ruiz de Chávez, who leads the Green Ecologist Party of Mexico, was dismissed this month after it was revealed that his were among 79 bank accounts seized as part of an ongoing law enforcement investigation into a Romanian organized crime group that owned and operated an ATM network throughout the country.

NEWS ANALYSIS: The strategic positioning to own and control the massive data lakes powering enterprise security programs took another expensive turn with CrowdStrike announcing it would shell out $400 million to buy early-stage log analytics start-up Humio. The CrowdStrike/Humio marriage signals a continuation of the trend by anti-malware vendors to beef up data logging and indexing capabilities to cash in on "Proactively-collect-and-store-everything" policies at larger enterprises.

In a new report, analysts from Forrester touted the Zero Trust Edge model as a way for organizations to unify networking and security infrastructure while also securing and enabling remote workers. "The Zero Trust Edge model is a safer on-ramp to the internet for organizations' physical locations and remote workers. A ZTE network is a virtual network that spans the internet and is directly accessible from every major city in the world. It uses Zero Trust Network Access to authenticate and authorize users as they connect to it and through it," Holmes wrote.