Are you sure you want to leave? You’re just one step away from your free network consultation (valued at $495).
Blog
New Silver SAML Attack Evades Golden SAML Defenses in Identity Systems
Cybersecurity researchers have disclosed a new attack technique called Silver SAML that can be successful even in cases where mitigations have been applied against Golden SAML attacks. Silver SAML “enables the exploitation of SAML to launch attacks from an identity...
GitHub Besieged by Millions of Malicious Repositories in Ongoing Attack
The attack involves the automated forking of legitimate repositories, resulting in millions of malicious forks with names identical to the original ones, making detection and removal challenging for GitHub.
Cryptojacking is No Longer the Sole Focus of Cloud Attackers
Cloud-focused malware campaigns are increasingly targeting services like Docker, Redis, Kubernetes, and Jupyter, requiring security teams to reassess their approaches to identifying and responding to emerging cloud threats.
Report: Vishing, Smishing, and Phishing Attacks Rise 1,265% Post-ChatGPT
According to a report by Enea, 76% of enterprises lack sufficient voice and messaging fraud protection as AI-powered vishing and smishing skyrocketed following the launch of ChatGPT.
Lazarus Hackers Exploited Windows Kernel Flaw as Zero-Day in Recent Attacks
The notorious Lazarus Group actors exploited a recently patched privilege escalation flaw in the Windows Kernel as a zero-day to obtain kernel-level access and disable security software on compromised hosts. The vulnerability in question is CVE-2024-21338 (CVSS score:...
How to Prioritize Cybersecurity Spending: A Risk-Based Strategy for the Highest ROI
As an IT leader, staying on top of the latest cybersecurity developments is essential to keeping your organization safe. But with threats coming from all around — and hackers dreaming up new exploits every day — how do you create proactive, agile cybersecurity...
GTPDOOR Linux Malware Targets Telecoms, Exploiting GPRS Roaming Networks
Threat hunters have discovered a new Linux malware called GTPDOOR that’s designed to be deployed in telecom networks that are adjacent to GPRS roaming exchanges (GRX) The malware is novel in the fact that it leverages the GPRS Tunnelling Protocol (GTP) for...
Report: Most Commercial Code Contains High-Risk Open Source Bugs
The ninth annual Open Source Security and Risk Analysis (OSSRA) report by Synopsys revealed that 74% of commercial codebases contain high-risk open source vulnerabilities, an increase from 48% in 2022.
European Retailer Pepco Loses $16.8 Million Due to Phishing Attack
While customer, supplier, and colleague information was not compromised, the incident may have involved a social engineering attack known as business email compromise (BEC).
European Retailer Pepco Loses $16.8 Million Due to Phishing Attack
While customer, supplier, and colleague information was not compromised, the incident may have involved a social engineering attack known as business email compromise (BEC).
FREE GUIDE
The Ultimate Guide To IT Support Services And Fees
What You Should Expect To Pay For IT Support For Your Small Business (And How To Get Exactly What You Need Without Unnecessary Extras, Hidden Fees And Excessive Contracts)
