Kubernetes Falls to Cryptomining via Machine-Learning Framework
Misconfigured dashboards are at the heart of a widespread XMRIG Monero-mining campaign.
Microsoft raises the security standard for next major Windows Server release
Server security and platform Integrity are critical requirements in today’s datacenter, edge, and cloud environments. Many Windows Server customers have relied on built-in security capabilities such as Secure boot and BitLocker to protect their infrastructure. These capabilities are enhanced when combined with proper underlying server hardware such as Trusted Platform Module (TPM) or adequate Unified…
Podcast: Would You Use A Contact-Tracing Coronavirus App?
Contact tracing apps for the coronavirus are being developed and tested globally as the world starts to re-open. Are the apps worth using to flatten the curve? Or do data privacy worries trump public health?
Snake Ransomware Delivers Double-Strike on Honda, Energy Co.
The ICS/SCADA-focused malware is likely behind a duo of attacks this week, on Honda and a South American energy company, researchers said.
Helping Remote Workers Overcome Remote Attacks
Because remote workers’ devices are all connected to a home network, they don’t even need to be attacked directly. Instead, attackers have multiple avenues of attack that can be exploited.
Critical Intel Flaws Fixed in Active Management Technology
Two critical flaws in Intel AMT, which could enable privilege escalation, were patched along with 20 other bugs in its June security update.
Encryption Utility Firm Accused of Bundling Malware Functions in Product
The increasingly prevalent GuLoader malware has been traced back to a far-reaching encryption service that attempts to pass as above-board.
Thanos Ransomware First to Weaponize RIPlace Tactic
Thanos is the first ransomware family to feature the weaponized RIPlace tactic, enabling it to bypass ransomware protections.
Microsoft June Patch Tuesday Fixes 129 Flaws in Largest-Ever Update
The June Patch Tuesday update included CVEs for 11 critical remote code-execution vulnerabilities and concerning SMB bugs.
Espionage Group Hits U.S. Utilities with Sophisticated Spy Tool
The FlowCloud modular remote-access trojan (RAT) has overlaps with the LookBack malware.