Using Big Data to Improve Cybersecurity in Your Organization
With cyberattacks becoming more common not only in corporate setups but also for small and mid-sized businesses, we have the pressing task of protecting our assets from threats lurking online. We are referring to malicious agents who are actively working to infiltrate our networks and devices, steal our data and identities, and ultimately profit from […]
How much stress the security analysts experience to keep cyberspace safe.
For various organizations, the talk on cybersecurity is unending. On daily basis, new information and findings are discovered on how to keep cyberspace free from attack. However, have you ever wondered and thought about the battles faced by people at the forefront to keep cyberspace free? These are security analyst who work tirelessly to keep […]
Malwarebytes said it was hacked by the same group who breached SolarWinds
US cybersecurity firm Malwarebytes recently joined the ever-expanding list of security companies that have been attacked by Dark Halo, the same group that targeted SolarWind in 2020. FireEye, Microsoft, and CrowdStrike are also on the list. Malwarebytes disclosed the incident in an emailed statement, where it confirmed that the intrusion was carried out by “the […]
Cybersecurity Agencies Recommending Against Obsolete Protocols
Well-known cybersecurity agencies in the United States and the Netherlands issued recommendations against the use of obsolete TLS protocols that put the networks and users at risk. In early January, the NSA, the main cybersecurity agency in the US, issued an advisory that recommended with great emphasis to stop the use of obsolete TLS and […]
Malwarebytes targeted by Nation-State Actor implicated in SolarWinds breach
Recently, various organizations in the security industry, have come under attack by a nation-state actor leveraging SolarWinds software. On December 14, 2020, Malwarebytes reported the event and informed its business customers using SolarWinds to take precautionary measures. However, a new intrusion vector has been introduced by the same actor which works by abusing applications with […]
FiberHome Routers Plagged with Vulnerabilities and Backdoors
FiberHome Networks is a major player in telecommunications and networking equipment for the Chinese market and trade allies, with hundreds of thousands of customers using their routers worldwide. There’s plenty to tell about this company but today’s news is regarding the worrisome finding of at least 28 backdoor accounts and other severe vulnerabilities in the […]
3 New Severe Security Vulnerabilities Found in SolarWind Software
Three major security vulnerabilities impacting SolarWinds products have recently been discovered. According to cybersecurity experts, the most severe flaw could be exploited to achieve remote code execution with escalated privileges. Insights from a technical analysis published by cybersecurity firm, Trustwave revealed that two of the weaknesses (CVE-2021-25274 and CVE-2021-25275) are found in the SolarWinds Orion […]
Risks of Centralized Management in Building Control
Centralized building control allows organizations to achieve new levels of efficiency and productivity. And while centralizing these processes is something desirable, it comes with risks. It’s common practice to seek centralized authority in building control, putting one device in charge of many others to accomplish greater efficiency. That is what, for example, Delta’s enteliBUS manager […]
Overcoming Common Mistakes to Protect Remote Desktop Protocol
Remote Desktop Protocol, also known as RDP, is a widely-used protocol developed by Microsoft that allows us to connect to and control other devices in the network. Its graphical interface and powerful capabilities have allowed RDP to become a standard in the industry, being used by countless organizations and professionals to keep operations up and […]
