Category: security
Unpatched WS_FTP servers are being targeted to spread ransomware
Organizations that have not yet patched their WS_FTP Server instances are now being targeted by ransomware. This is according to a new report from cybersecurity experts Sophos X-Ops, who recently thwarted one such attempt against one of their clients. A relatively unknown threat actor going by the name Reichsadler Cybercrime…
Read More
Microsoft Defender just got a major security upgrade aimed at quarantining hackers
One of the biggest challenges IT teams face today is identifying when a legitimate user’s account is compromised and stopping it from being used to deploy malware or steal data. With the latest update to Defender for Endpoint, Microsoft wants to help solve that problem. Currently in public preview, Microsoft…
Read More
Another major WordPress security flaw is putting thousands of websites at risk
Cybersecurity researchers from Defiant recently spotted a new malware strain targeting WordPress by impersonating an optimization plugin. The goal of the malware, it was said, was to grant the attackers administrative access to the WordPress website. While cleaning a website over the summer of 2022, the researchers discovered a plugin…
Read More
The US government is officially investigating the MOVEit vulnerability
The US Government has finally started its investigation into the MOVEit data breach that allegedly affected thousands of organizations around the world. The move follows Progress Software (the company that built MOVEit) filing a document with the US Securities and Exchange Commission (SEC) in which it stated it had been…
Read More
Apple is making passkeys easier than ever – if you have iOS 17 or macOS Sonoma
Users of Apple‘s latest devices have just been handed a security and convenience boost that should mean they can ditch password for the company’s own websites now. If you have a new iPhone running the latest iOS 17, an iPad with iPadOS 17, or a Mac with macOS Sonoma, then…
Read More
Hackers are using LinkedIn smart links to target users in phishing attacks
If you have a service that allows you to contact people, you can be sure hackers will try to abuse it to deliver malware or steal login credentials and other personally identifiable info. Case in point – LinkedIn Smart Links. The tool, offered as part of the professional social network’s…
Read More