‘Where do I start?’ is one of the most common questions we get asked about endpoint detection and response (EDR). The newly introduced Threat Indicators feature for Sophos EDR answers that question. Threat Indicators makes use of deep learning technology to automatically provide prioritized lists of the most suspicious items across an organization’s endpoints and […]
Can regulations improve cybersecurity? In APAC, opinions vary
An ESET-commissioned survey among enterprises also shows that while respondents in most countries agree on the need to bolster cyber-defenses, some are reluctant to adopt cybersecurity solutions As technology evolves in leaps and bounds every year so does the threat landscape and bad actors keep coming up with new threats. That’s not scaremongering, it’s a […]
First BlueKeep attacks prompt fresh warnings
The infamous vulnerability has been exploited for a cryptocurrency mining campaign, but more damaging attacks may still be in store Ever since it was discovered six months ago, the BlueKeep vulnerability has had (not only) the cybersecurity community concerned about impending WannaCryptor-style attacks. Earlier in November, Microsoft together with security researchers Kevin Beaumont and Marcus […]
Sitios WordPress afectados por publicidad maliciosa
Un viejo malware esta asaltando la comunidad de WordPress, permitiendo a sus autores tomar el control de los sitios e inyectar el codigo de su eleccion. Segun la compania de seguridad de WordPress Wordfence, que publico un minucioso documento sobre el malware a principios de esta semana, WP-VCD no es un malware nuevo. Se remonta […]
Exposed: Private Amazon S3 bucket exposure
The thousands of cloud data storage service breaches publicized in the news have raised awareness of vulnerabilities caused through misconfigured “public” access, but cloud security breach tactics go far beyond this. Did you know that even S3 buckets with “private” mode enabled are still vulnerable to attack? They are, and the identity and access management […]
Week in security with Tony Anscombe
Share To mark this year’s Antimalware Day, we outlined five simple ways to increase engagement and instill cybersecurity awareness in the workplace To mark this year’s Antimalware Day, we outline five ways to increase engagement and instill cybersecurity awareness in the workplace. A popular Android keyboard app has been caught red-handed attempting to make sneaky […]