Security News > 2023 > April

A recent Code42 report reveals a rapidly growing number of inside risk incidents and a concerning lack of training and technology, further exacerbated by increasing workforce turnover and cloud adoption. In this Help Net Security video, Joe Payne, President at CEO at Code42, discusses how data loss from insiders is not a new problem but has become more complex.

Data security is becoming increasingly complex and the datasets that require securing are growing rapidly. Rubrik internal data revealed that on average, the growth of data secured in 2022 was 25%. 56% of organizations currently employ at least one zero trust initiative.

As organizations increasingly find themselves under attack, the data discovered they are drowning in cybersecurity debt - unaddressed security vulnerabilities like unpatched software, unmanaged devices, shadow IT, and insecure network protocols that act as access points for bad actors. Outdated cybersecurity practices plague organizations.

The mid- to long-term outlook for the market has also been increased slightly - the five-year compound annual growth rate is now projected to be 5.2%, compared to the previous forecast of 4.9%. IDC has raised the growth projection despite a weak economic outlook largely because of stronger than expected vendor performances across the 2022 finish line, growth indicators from adjacent markets, increased government funding, and, to some extent, inflation impacts. The US market's actual growth in 2022 was adjusted up by almost 1.17 percentage points compared to the previous forecast and is now at 6.2%. The US software market's forecasted growth and hardware installed base also remain strong.

The Medusa ransomware gang has put online what it claims is a massive leak of internal Microsoft materials, including Bing and Cortana source code. "This leak is of more interest to programmers, since it contains the source codes of the following Bing products, Bing Maps and Cortana," the crew wrote on its website, which was screenshotted and shared by Emsisoft threat analyst Brett Callow.

Ransomware attacks have spiked, according to the NCC Group's Global Threat Intelligence Team. In its monthly threat report, NCC Group reported a 91% increase in ransomware attacks in March versus February and a 62% increase versus the month last year - the highest number of monthly ransomware attacks the group has ever measured.

Six years after a jury decided otherwise, Google has convinced an appeals court to reverse a $20 million judgment against the web giant after Chrome infringed some patents. A US Court of Appeals decision [PDF], handed down Tuesday, not only reversed a 2017 ruling that found Google Chrome had ripped off four anti-malware patents, but also that three of the patents were invalid because they contained details that weren't included in the original patent.

In a confusing mess, a recent Microsoft Defender update rolled out a new security feature called 'Kernel-mode Hardware-enforced Stack Protection,' while removing the LSA protection feature. A recent Microsoft Defender update has made this feature even more confusing, as after it is installed, the LSA Protection feature is removed and replaced by a new feature called Kernel-mode Hardware-enforced Stack Protection.

Analysis Israeli spyware shop QuaDream is reportedly shutting down due to financial troubles. The reported closure of the little-known nine-year-old company likely won't reduce the use of spyware - QuaDream's much higher profile and more infamous brethren, NSO Group, last year rolled out at least three new exploits targeting devices running versions 15 and 16 of Apple's iOS operating system.

Attackers are hacking into poorly secured and Interned-exposed Microsoft SQL servers to deploy Trigona ransomware payloads and encrypt all files. Exe service, which they use to launch the Trigona ransomware as svchost.