Security News

HUMAN Security announced its newly-named BotGuard and a range of new features to further help enterprise customers defend their website and mobile applications from sophisticated bot attacks and fraud. BotGuard is powered by the Human Verification Engine, which combines technical evidence, machine learning, and continuous adaptation to deliver "Human or not" bot detection decisions with accuracy.

The U.S. Department of Justice has charged an individual for engaging in insider trading on the darknet. Greece-based Apostolos Trovias, known as the "The Bull" frequently used encrypted messaging services and the dark web for soliciting, exchanging and selling inside information.

The infrastructure and websites for the REvil ransomware operation have mysteriously gone offline as of last night. The REvil ransomware operation, aka Sodinokibi, operates through numerous clear web and dark web sites used as ransom negotiation sites, ransomware data leak sites, and backend infrastructure.

ZeroFox announced it has joined forces with Vigilante, a globally recognized expert in Dark Web Threat Intelligence, adding to its intelligence portfolio. ZeroFox's now-enhanced platform delivers the ability to understand public attack surface exposure and protect organizations from dark web activity at an even greater scale.

Using what is known as a single page app framework, these apps represent the next generation of modern software design, offering a faster and cleaner user experience than traditional multi-page websites. Each page generally interacts directly with the server and back-end databases for each individual page load. This framework now represents a legacy approach to building web applications.

Researchers added the attack also included public and private keys of LimeVPN users. "The hacker informed us that they have the private keys of every user, which is a serious security issue as it means they can easily decrypt every LimeVPN user's traffic," the firm said in a posting.

There is no chance to rest, since attack groups are constantly looking for more effective means of infiltrating and infecting systems. Today, there are hundreds of groups devoted to infiltrating almost every industry, constantly devising more sophisticated methods to attack organizations.

Akamai announces platform security enhancements to strengthen protection for web applications, APIs, and user accounts. Akamai's machine learning derives insight on malicious activity from more than 1.3 billion daily client interactions to intelligently automate threat detections, time-consuming tasks, and security logic to help professionals make faster, more trustworthy decisions regarding cyberthreats.

Existing investors, Access Venture Partners and Grotech Ventures, also participated in the round, providing ThreatX with capital to continue strengthening its dominant position in the next-generation web application security market. Strengthen its fully-managed WAAP services team to offer clients the application security expertise necessary to combat adversaries.

The pushers behind the SolarMarker backdoor malware are flooding the web with PDFs stuffed with keywords and links that redirect to the password-stealing, credential-snarfing malware. The attackers have expanded their range, according to Microsoft Security Intelligence, whose researchers have seen them shift from originally using Google Sites to now primarily using Amazon Web Services and the Strikingly free website builder service.