Are Your SaaS Backups as Secure as Your Production Data?

23/05/2024 0 Comments 0 tags

Conversations about data security tend to diverge into three main threads: How can we protect the data we store on our on-premises or cloud infrastructure? What strategies and tools or

Rockwell Advises Disconnecting Internet-Facing ICS Devices Amid Cyber Threats

22/05/2024 0 Comments 0 tags

Rockwell Automation is urging its customers to disconnect all industrial control systems (ICSs) not meant to be connected to the public-facing internet to mitigate unauthorized or malicious cyber activity. The

Researchers Warn of Chinese-Aligned Hackers Targeting South China Sea Countries

22/05/2024 0 Comments 0 tags

Cybersecurity researchers have disclosed details of a previously undocumented threat group called Unfading Sea Haze that’s believed to have been active since 2018. The intrusion singled out high-level organizations in South China

The Ultimate SaaS Security Posture Management Checklist, 2025 Edition

22/05/2024 0 Comments 0 tags

Since the first edition of The Ultimate SaaS Security Posture Management (SSPM) Checklist was released three years ago, the corporate SaaS sprawl has been growing at a double-digit pace. In large enterprises,

GHOSTENGINE Exploits Vulnerable Drivers to Disable EDRs in Cryptojacking Attack

22/05/2024 0 Comments 0 tags

Cybersecurity researchers have discovered a new cryptojacking campaign that employs vulnerable drivers to disable known security solutions (EDRs) and thwart detection in what’s called a Bring Your Own Vulnerable Driver (BYOVD) attack.

Critical Veeam Backup Enterprise Manager Flaw Allows Authentication Bypass

22/05/2024 0 Comments 0 tags

Users of Veeam Backup Enterprise Manager are being urged to update to the latest version following the discovery of a critical security flaw that could permit an adversary to bypass

Zoom Adopts NIST-Approved Post-Quantum End-to-End Encryption for Meetings

22/05/2024 0 Comments 0 tags

Popular enterprise services provider Zoom has announced the rollout of post-quantum end-to-end encryption (E2EE) for Zoom Meetings, with support for Zoom Phone and Zoom Rooms coming in the future. “As

QNAP Patches New Flaws in QTS and QuTS hero Impacting NAS Appliances

22/05/2024 0 Comments 0 tags

Taiwanese company QNAP has rolled out fixes for a set of medium-severity flaws impacting QTS and QuTS hero, some of which could be exploited to achieve code execution on its network-attached storage

MS Exchange Server Flaws Exploited to Deploy Keylogger in Targeted Attacks

22/05/2024 0 Comments 0 tags

An unknown threat actor is exploiting known security flaws in Microsoft Exchange Server to deploy a keylogger malware in attacks targeting entities in Africa and the Middle East. Russian cybersecurity

Malware Delivery via Cloud Services Exploits Unicode Trick to Deceive Users

21/05/2024 0 Comments 0 tags

A new attack campaign dubbed CLOUD#REVERSER has been observed leveraging legitimate cloud storage services like Google Drive and Dropbox to stage malicious payloads. “The VBScript and PowerShell scripts in the CLOUD#REVERSER inherently