Category: Viral
‘The company has carefully examined and evaluated the impact of the U.S. legal requirements and made this sad and difficult decision as business opportunities in the country are no longer viable,’ says the Moscow-based antivirus software company. Russian cybersecurity giant Kaspersky confirmed Tuesday that it will be exiting the U.S. market and ceasing operations in…
Read More
Scams Your humble phone number is more valuable than you may think. Here’s how it could fall into the wrong hands – and how you can help keep it out of the reach of fraudsters. 15 Jul 2024 • , 7 min. read What might be one of the easiest ways to scam someone out…
Read More
New functionality in the Druva platform helps incident response teams and security analysts identify cyber threats across data landscapes and more quickly recover from data security incidents. Data protection and security provider Druva is expanding its platform with new threat hunting capabilities that will help IT and security teams identify threats throughout their data environments…
Read More
An Equinix spokesperson tells CRN in a statement that the company is ‘fully committed’ to its facilities in Hong Kong. ‘As a platform company, all assets are important to the success of the platform and Equinix Hong Kong serves as a key interconnection hub for our global customer base,’ the spokesperson says. Data center provider…
Read More
Harrell tells CRN that managed security services and advisory services—leveraging Dataminr’s AI platform—represent massive opportunities for partners. AI platform provider Dataminr announced Tuesday it has hired former Cloudflare channel chief Matt Harrell as its new chief partner officer, with the company looking to intensify its push with partners around security services. Speaking with CRN, Harrell…
Read More
The Iranian nation-state actor known as MuddyWater has been observed using a never-before-seen backdoor as part of a recent attack campaign, shifting away from its well-known tactic of deploying legitimate remote monitoring and management (RMM) software for maintaining persistent access. That’s according to independent findings from cybersecurity firms Check Point and Sekoia, which have codenamed…
Read More
Jul 16, 2024NewsroomOpen Source / Software Supply Chain Cybersecurity researchers have identified two malicious packages on the npm package registry that concealed backdoor code to execute malicious commands sent from a remote server. The packages in question – img-aws-s3-object-multipart-copy and legacyaws-s3-object-multipart-copy – have been downloaded 190 and 48 times each. As of writing, they have…
Read More
Jul 16, 2024NewsroomVulnerability / Infrastructure Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a critical security flaw impacting OSGeo GeoServer GeoTools to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. GeoServer is an open-source software server written in Java that allows users to share and edit geospatial…
Read More
Jul 15, 2024NewsroomSupply Chain Attack / Cyber Threat Cybersecurity researchers said they discovered an accidentally leaked GitHub token that could have granted elevated access to the GitHub repositories of the Python language, Python Package Index (PyPI), and the Python Software Foundation (PSF) repositories. JFrog, which found the GitHub Personal Access Token, said the secret was…
Read More
At least a dozen organizations with domain names at domain registrar Squarespace saw their websites hijacked last week. Squarespace bought all assets of Google Domains a year ago, but many customers still haven’t set up their new accounts. Experts say malicious hackers learned they could commandeer any migrated Squarespace accounts that hadn’t yet been registered,…
Read More