Security News

Kubernetes Cloud Clusters Face Cyberattacks via Argo Workflows
2021-07-21 15:19

Kubernetes clusters are being attacked via misconfigured Argo Workflows instances, security researchers are warning. Argo Workflows is an open-source, container-native workflow engine for orchestrating parallel jobs on Kubernetes - to speed up processing time for compute-intensive jobs like machine learning and big-data processing.

Stellar Cyber XDR Kill Chain allows security analyst teams to disrupt cyberattacks
2021-07-21 02:30

Stellar Cyber introduced a realistic XDR Kill Chain to serve as a new model, addressing the current realities of cyberattacks and focus efforts to stop an attack early and quickly. The XDR Kill Chain serves as a blueprint for "Killing" or stopping an attack, rather than just as model to portray single-dimensional attack progression.

Details Emerge on Iranian Railroad Cyberattack
2021-07-19 14:28

More details on the cyberattack on Iran's railroad system emerged over the weekend. According to Iran International, "The number might belong either to the office of President Hassan Rouhani or Supreme Leader Ali Khamenei. It is not clear if hackers have posted the information or the authorities." It would be reasonable to assume that the attack was at least partly designed to embarrass the incoming new hardline president, Ebrahim Raisi, before he takes over from the moderate Hassan Rouhani next month.

Virginia Tech Says it Was Targeted in 2 Recent Cyberattacks
2021-07-19 00:46

Virginia Tech says it was targeted in two recent cyberattacks but feels confident no data was stolen. Virginia Tech spokesman Mark Owczarski told the Roanoke Times Friday a few university units used Kaseya, a U.S. software company exploited in early July in a massive ransomware attack that snarled businesses around the world.

Cyberattack on Moldova's Court of Accounts destroyed public audits
2021-07-16 20:53

Moldova's "Court of Accounts" has suffered a cyberattack leading to the agency's public databases and audits being destroyed. Court of Accounts of Moldova is a government authority that performs audits of public financial resources and government agencies to comply with international standards.

Wanted: State-backed bandits planning cyberattacks on US infrastructure. Reward: $10m
2021-07-16 16:30

The US is offering a $10m reward to anyone who dobs in digital outlaws responsible for foreign government-backed cyberattacks on critical national infrastructure such as pipelines, power grids, and communication networks. The cash incentive is part of the US State Department's Rewards for Justice programme and the ongoing war on cybercrime that has in recent months crippled fuel pipelines and meat production.

Digital Executive Protection: Protecting Highly Visible Individuals from Personal Cyberattacks
2021-07-15 12:11

A tailored approach to digital executive protection allows security teams to maximize resources and identify threats without relying on 24x7 physical executive protection. Executive protection teams face threats from many sources including social media, telephone, email, and event in-person physical threats.

Bitdefender launches XEDR solution to improve security efficacy against cyberattacks
2021-07-15 02:30

Bitdefender unveiled the next evolution of Endpoint Detection and Response solutions - eXtended EDR with the addition of analytics and cross-endpoint security event correlation to Bitdefender Endpoint Detection and Response and GravityZone Ultra, the company's unified endpoint prevention, detection and response and risk analytics platform. With integrated detection and response across operating systems and hybrid environments, Bitdefender delivers a comprehensive, real-time view for security operations, greatly improving the ability for organizations of all sizes, even those without full-time security analysts, to detect covert attacks that would go unnoticed by analysis and detection on individual endpoints in isolation.

Illumio Core advancements help protect key assets from cyberattacks and ransomware
2021-07-15 02:00

Illumio announced new innovations in Illumio Core which automate, accelerate, and simplify the path to a zero trust posture. New advancements in Illumio Core allow organizations to automate security enforcement, gain even more intelligent insights from real-time application data, and operate at cloud-scale.

Tokyo 2020 Olympics must be extra secure to avoid cyberattacks and ransomware
2021-07-14 20:48

TechRepublic's Karen Roby spoke with Ray Canzanese, director of threat research at Netskope, about cybersecurity and the Tokyo 2020 Olympics, being held July 23-Aug. 8, 2021. In other words, the Olympics come around and what's going to happen from a ransomware point of view is really just that the Olympics are a major cultural event that attackers will leverage to try to trick you into doing something, giving them access, installing software, some way that ends up infecting you with ransomware.