Security News

Ransomware attacks are proliferating as criminals turn to gangs providing turnkey post-compromise services, Britain's National Cyber Security Centre has warned. The warning comes hot on the heels of several high-profile attacks against oil distribution companies and also businesses that operate ports in the West - though today's note insists there was a move by criminals away from "Big game hunting" against US targets.

While researching a recent large-scale bot campaign with CQ Prime Threat Research team lead, Dean Lendrum, we found attackers using domain parking and monetization services to register multiple domains, creating a large number of fake eCommerce accounts per domain. Patterns observed include irregular domain names, domain resolving to an untrusted web app, SSL not enabled.

Cybersecurity agencies from Australia, Canada, New Zealand, the U.S., and the U.K. on Wednesday released a joint advisory in response to widespread exploitation of multiple vulnerabilities in Apache's Log4j software library by nefarious adversaries. "Sophisticated cyber threat actors are actively scanning networks to potentially exploit Log4Shell, CVE-2021-45046, and CVE-2021-45105 in vulnerable systems. These vulnerabilities are likely to be exploited over an extended period."

Microsoft has published an advisory regarding a security feature bypass vulnerability impacting Surface Pro 3 tablets which could allow threat actors to introduce malicious devices within enterprise environments. Device Health Attestation is a cloud and on-premises service that validates TPM and PCR logs for endpoints and informs Mobile Device Management solutions if Secure Boot, BitLocker, and Early Launch Antimalware are enabled, Trusted Boot is correctly signed, and more.

The addition of Reveal(x) Advisor services to the Reveal(x) 360 network detection and response tools helps organizations proactively manage cybersecurity hygiene and accelerate incident response. ExtraHop announced Tuesday expanded Reveal(x) Advisor services to include threat detection and threat hunting services as well as network assurance analysis.

Privacy-centric communications specialist Proton, best known for its ProtonMail encrypted email platform, has announced the appointment of web daddy Sir Tim Berners-Lee to its advisory board. "I'm delighted to join Proton's advisory board and support Proton on their journey," Sir Tim said of the appointment.

Accenture has acquired LEXTA, a consulting firm specialized in IT benchmarking and IT sourcing advisory. LEXTA's benchmarking and advisory services, especially for cloud, platform and application technologies, enable clients to make better, more informed decisions.

Kovrr announced that Kevin McCarty, VP of security, governance, risk and compliance at Marriott International, joined its Advisory Board. Kevin will primarily offer strategic and product guidance to the executive team and support growth of Kovrr's enterprise cyber risk quantification solutions.

TrueFort announced that Marios Damianides, former Consulting Partner and Northeast Region Cybersecurity Leader at Ernst & Young, has joined the TrueFort Advisory Board where he will provide guidance on corporate, customer and product strategies. "Marios Damianides and his expertise as a cyber security consultant to Fortune 500 companies will be a valuable addition to our advisory board," said Sameer Malhotra, co-founder and CEO of TrueFort.

Tech Mahindra has announced collaboration with enterprises, academicians, and industry advisors to constitute a 'Cloud Advisory Board'. The cloud advisory board will work towards accelerating cloud transformation and build a robust roadmap for business agility and competitive edge for enterprises.