Mitigations Available for Latest Office Zero Day
There's no patch yet but Microsoft has released a workaround to mitigate the latest zero day, a vulnerability announced this week in WIndows 10 and Windows Server.
Friday Five 9/3
How not to get hacked, a $9 million ransomware attack, and the FTC cracks down on a spyware app - catch up on the infosec news of the week with the Friday Five!
California Reminds Healthcare Orgs of Data Breach Reporting Obligations
Hospitals and healthcare providers in the state have been failing to report ransomware attacks that impact health data belonging to patients.
OnePercent Ransomware Group Has Hit US Companies Since November
The group, like other malicious campaigns of late, has been using Cobalt Strike to carry out ransomware attacks against companies.
ProxyShell Exchange Server Vulnerabilities Exploited in the Wild
CISA is urging organizations to patch the vulnerabilities in Exchange Server as soon as possible to prevent the spread ransomware and attackers who have been dropping web shells.
Yearlong Office 365 Phishing Campaign Skilled at Evasion
A new phishing campaign targeting Office 365 has used Morse code and other forms of obfuscation to side step detection for the last year.
EDR vs. EPP vs. MDR
In this blog we break down the differences between three different types of endpoint protection systems: EDR, EPP, and MDR.
Router Firmware Vulnerability Bypasses Authentication
A vulnerability found in some routers and modems could make the devices vulnerable to authentication bypass and in turn, allow attackers access to sensitive information.
Ransomware Prevention Site Saves Users $1 Billion
Five years after its inception, No More Ransom, the collaborative effort formed to combat ransomware attackers, has logged some impressive numbers.
What is HITECH Compliance? Understanding and Meeting HITECH Requirements
Learn about the requirements for HITECH compliance and how to meet them in Data Protection 101, our series on the fundamentals of information security.
Don't Fall Behind
Get the latest security insights
delivered to your inbox each week.