A security researcher has published a PoC test code to exploit a worm-like vulnerability (CVE-2021-31166) in Windows IIS server. The issue scored 9.8 out of 10 maximum on the CVSSv3 scale and is a memory corruption vulnerability in the HTTP protocol stack included in recent versions of Windows. The stack is used by the embedded…
Israel is looking for a “sustainable peace” rather than a sticking plaster which becomes a “prescription for another Gaza war a month from now,” the senior adviser to the Israeli Prime Minister Benjamin Netanyahu has said. Mark Regev told BBC World News: “We want to come out of this with a solution that will bring…
The Conti ransomware gang failed to encrypt the systems of Ireland’s Department of Health (DoH) despite breaching its network and dropping Cobalt Strike beacons to deploy their malware across the network. On the same day, Conti operators breached the network of Ireland’s Health Service Executive (HSE), the country’s publicly funded healthcare system, and forced it to shut…
Posted on May 18, 2021 by Nick Farrell – News The Department for Digital, Culture, Media and Sport (DCMS) is asking MSPs and the Channel their views on protecting the digital supply chain. MSPs can comment on measures that would increase the security of digital supply chains and how protection could be improved for those…
Ireland’s national health service, the Health Service Executive (HSE), shut down its IT system last week after it was hit by a Conti ransomware attack. “There is a significant ransomware attack on the HSE IT systems. We have taken the precaution of shutting down all our IT systems in order to protect them…
ESET research reveals that common Android stalkerware apps are riddled with vulnerabilities that further jeopardize victims and expose the privacy and security of the snoopers themselves Mobile stalkerware, also known as spouseware, is monitoring software silently installed by a stalker onto a victim’s device without the victim’s knowledge. Generally, the stalker needs to have physical…
DarkSide, the group behind the Colonial Pipeline cyberattack that generated fuel shortages and price increases across the United States, is shutting down. This may be due to pressure from the US government. The cybercriminals’ group blog, that was used for naming and shaming, as well as the website used for ransom and CDN, were all…
Cisco Systems has agreed to purchase Kenna Security to help customers more effectively prioritise vulnerabilities based on threat intelligence and business impact. The San Jose, Calif.-based networking giant said its proposed acquisition of Santa Clara, Calif.-based Kenna will make it easier for organizations to work cross-functionally to rapidly identify, prioritize and remediate cyber risk. This…
Ransomware attacks continue to be in the headlines everywhere, and are also an almost weekly reoccurring subject in the SANS Newsbites. As useful as many of the reports are that security firms and researchers publish on the subject, they often focus heavily on one particular incident or type of ransomware, and the associated “indicators of…
Governance & Risk Management , Identity & Access Management , Identity Governance & Administration Insights on RSA Conference, Secure Identity and XDR’s Emerging Role Tom Field (SecurityEditor) • May 17, 2021 Rohit Ghai, RSA Group CEO The past year has been a milestone one for RSA and…
