Application Security September 22, 2022

Does Follina Mean It’s Time to Abandon Microsoft Office?

4 min read - As a freelance writer, I spend most of my day working in Microsoft Word. Then, I send drafts to clients and companies across the globe. So, news of the newly discovered Microsoft Office vulnerability made me concerned about the possibility…

Incident Response December 18, 2021

Log4Shell Vulnerability Risks for OT Environments — and How You Can Better Protect Against Them

4 min read - You’d have to look far and wide to find an IT professional who isn’t aware of (and probably responding to) the Log4Shell vulnerability. The Operational Technology (OT) sector is no exception, yet the exact exposure the vulnerability poses to OT…

Software Vulnerabilities December 12, 2021

How Log4j Vulnerability Could Impact You

4 min read - Get the latest on the vulnerability dubbed "Log4Shell," a remote code execution vulnerability.

Software Vulnerabilities November 16, 2021

Call to Patch: Zero Day Discovered in Enterprise Help Desk Platform

4 min read - In an age where organizations have established a direct dependence on software to run critical business operations, it’s fundamental that they are evaluating their software development lifecycles and that of their extended environment — third-party partners — against the same…

Zero Trust November 8, 2021

Zero Trust: What NIST’s Guidelines Mean for Your Resources

3 min read - In May, The White House released an executive order on improving the nation’s cybersecurity. The order came with various directives for Federal Civilian Executive Branch agencies. Among other efforts, the order focused on the federal government’s advance toward zero trust…

Software Vulnerabilities August 19, 2020

New Vulnerability Could Put IoT Devices at Risk

7 min read - Society relies so heavily on technology that the number of internet connected devices used globally is predicted to grow to 55.9 billion by 2025. Many of these devices span parts of Industrial Control Systems (ICS) that impact the physical world,…

April 28, 2020

Attack Resources Shared by New LeetHozer Botnet and Moobot Malware

2 min read - Security researchers discovered that the new LeetHozer botnet shares some attack resources with the Moobot malware family.

April 28, 2020

Data-Stealing Asnarök Malware Exploits Zero-Day Flaw in Sophos XG Firewalls

2 min read - Cybercriminals have been using a Trojan dubbed Asnarök to steal data by exploiting a vulnerability in enterprise firewalls from Sophos, the company warned.

January 6, 2020

Weekly Security News Roundup: Maritime Facility Struck by Ryuk Ransomware

2 min read - The U.S. Coast Guard revealed that a maritime facility suffered an infection at the hands of the Ryuk ransomware family. Learn what else happened last week in security news.

Software Vulnerabilities December 16, 2019

TP-Link Archer Router Vulnerability Voids Admin Password, Can Allow Remote Takeover

7 min read - If exploited, this router vulnerability can allow a remote attacker to take control of the router's configuration without authentication, putting personal and business data at risk.