Category: Kamban
A new Rust-based version of the Qilin (Agenda) ransomware strain, dubbed ‘Qilin.B,’ has been spotted in attacks, featuring stronger encryption, better evasion from security tools, and the ability to disrupt data recovery mechanisms. Qilin.B was spotted by security researchers at Halcyon, who warned about the threat and shared indicators of compromise to help with early…
Read More
A new Fortinet FortiManager flaw dubbed “FortiJump” and tracked as CVE-2024-47575 has been exploited since June 2024 in zero-day attacks on over 50 servers, according to a new report by Mandiant. For the past ten days, rumors of an actively exploited FortiManager zero-day have been circulating online after Fortinet privately notified customers in an advanced…
Read More
On the second day of Pwn2Own Ireland 2024, competing white hat hackers showcased an impressive 51 zero-day vulnerabilities, earning a total of $358,625 in cash prizes. Pwn2Own is a hacking contest where security researchers compete to exploit software and mobile hardware devices to earn the coveted title of “Master of Pwn” and $1,000,000 in cash…
Read More
‘Companies are going to be able to decide, ‘Do I go for growth? Invent new use cases? Solve new customer problems and grow again.’ And I think we can lift the whole GDP of the world economy,’ ServiceNow CEO Bill McDermott tells CRN. ServiceNow Wednesday unveiled new AI technologies and expanded strategic relationships with Nvidia…
Read More
‘We aim to help MSPs grow by offering new services that allow them to differentiate and expand their offerings,’ says SonicWall CEO Bob VanKirk. After making three acquisitions in four months, following 14 years of no M&A activity, cybersecurity vendor SonicWall has one goal in mind: to provide MSP-friendly solutions. The acquisitions were driven by…
Read More
Microsoft has released the optional KB5044380 Preview cumulative update for Windows 11 23H2 and 22H2, which brings seventeen changes, including a new Gamepad keyboard and the ability to remap the Copilot keyboard key. The KB5044380 cumulative update preview is part of Microsoft’s optional non-security preview updates schedule, released on the fourth week of every month. This…
Read More
The WhatsApp messenger platform has introduced Identity Proof Linked Storage (IPLS), a new privacy-preserving encrypted storage system designed for contact management. The new system solves two long-standing problems WhatsApp users have been dealing with for years, namely the risk of losing their contact lists if they lose their phone and the inability to sync contacts…
Read More
The North Korean Lazarus hacking group exploited a Google Chrome zero-day tracked as CVE-2024-4947 through a fake decentralized finance (DeFi) game targeting individuals in the cryptocurrency space. Kaspersky discovered the attacks on May 13, 2024, and reported the Chrome zero-day flaw to Google. Google issued a fix for CVE-2024-4947 on May 25, with Chrome version 125.0.6422.60/.61. Lazarus…
Read More
In the world of cybersecurity, protecting endpoints – such as computers, laptops, and mobile devices – is a top priority for organizations of all sizes.Two common approaches to endpoint security are Endpoint Detection and Response (EDR) and traditional antivirus solutions. While both aim to protect against cyber threats, they differ significantly in their capabilities and…
Read More
Google has announced it will soon allow organizations to create their own curated “Enterprise Web Store” of company-sanctioned browser extensions for Chrome and ChromeOS, aimed at improving productivity, security, and management for businesses. The new store, planned to enter preview later this year, aims to provide businesses with a dedicated, curated environment for browser extensions…
Read More