cognitive cybersecurity intelligence

News and Analysis

All Day DevOps: Third of Log4j downloads still pull vulnerable version despite threat of supply chain attacks

AppSec engineer Sean Wright warned at the All Day DevOps conference that controls need to be put in place to counter a 742% rise in next-generation supply chain attacks, which have grown rapidly since the SolarWinds incident. To protect againstattacks, companies should ensure servers are well-protected and restrict outbound access. Wright also advised security teams to pay attention to the vector of vulnerability over the severity score.

Source: portswigger.net –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

FIN7 Deploys Anubis Backdoor to Hijack Windows Systems via Compromised SharePoint Sites

The Russian cybercrime group FIN7 is linked to a Python-based backdoor named Anubis, providing them remote access to compromised Windows systems, says Swiss cybersecurity firm

New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth

An updated version of a malware loader, known as Hijack Loader, has been discovered with new features aimed at evading detection and maintaining persistence. The

New KoiLoader Abuses Powershell Scripts to Deliver Malicious Payload

Researchers have uncovered a new strain of the advanced KoiLoader malware, believed to be distributed through phishing emails posing as bank statements. The malware employs

Balancing data protection and clinical usability in healthcare

In a Help Net Security interview, Aaron Weismann discusses challenges and solutions in combating ransomware in healthcare. He explains that the sector’s vulnerability lies in

News and Analysis

All Day DevOps: Third of Log4j downloads still pull vulnerable version despite threat of supply chain attacks

Subscribe to newsletter

More Posts

FIN7 Deploys Anubis Backdoor to Hijack Windows Systems via Compromised SharePoint Sites

New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth

New KoiLoader Abuses Powershell Scripts to Deliver Malicious Payload

Balancing data protection and clinical usability in healthcare

Products

Solutions

Healthcare cybersecurity

Healthcare Threat Intelligence

Use Cases

News and Analysis

Insights

Company