Author: DEFENDEDGE
-
STEM Audio Table Rife with Business-Threatening Bugs
The desktop conferencing IoT gadget allows remote attackers to install all kinds of malware and move laterally to other parts of enterprise networks. Read more
-
JBS Paid $11M to REvil Gang Even After Restoring Operations
The decision to pay the ransom demanded by the cybercriminal group was to avoid any further issues or potential problems for its customers, according to the company’s CEO. Read more
-
Working from home is here to stay
Working from home is here to stay. One of many things made clear by the Covid-19 pandemic was that working from home can save businesses money and many employees prefer it. This new work from home culture has allowed a much bigger threat vector for businesses. Drive-By wireless attacks will continue to grow and be… Read more
-
CISA Addresses the Rise in Ransomware Targeting Operational Technology Assets
Original release date: June 9, 2021 CISA has published the Rising Ransomware Threat to OT Assets fact sheet in response to the recent increase in ransomware attacks targeting operational technology (OT) assets and control systems. The guidance: provides steps to prepare for, mitigate against, and respond to attacks; details how the dependencies between an entity’s… Read more
-
Intel Plugs 29 Holes in CPUs, Bluetooth, Security
The higher-rated advisories focus on privilege-escalation bugs in CPU firmware: Tough to patch, hard to exploit, tempting to a savvy attacker. Read more
-
SAP Releases June 2021 Security Updates
Original release date: June 8, 2021 SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the SAP Security Notes for June 2021 and apply the necessary updates. This product is provided… Read more
-
Microsoft Patch Tuesday Fixes 6 In-The-Wild Exploits, 50 Flaws
Researchers discovered a highly targeted malware campaign launched in April, in which a new, unknown threat actor used two of the vulnerabilities that Microsoft said are under active attack. Read more
-
Google Patches Critical Android RCE Bug
Google’s June security bulletin addresses 90+ bugs in Android and Pixel devices. Read more
-
Microsoft Releases June 2021 Security Updates
Original release date: June 8, 2021 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s June 2021 Security Update Summary and Deployment Information and apply the necessary updates. This product is… Read more
-
Windows Container Malware Targets Kubernetes Clusters
“Siloscape”, the first malware to target Windows containers, breaks out of Kubernetes clusters to plant backdoors and raid nodes for credentials. Read more