Viry a Červi

Einstein is in violation of the the HHS 60-day breach notification rule, but unlikely to face penalty.

Researchers have traced the origins of a campaign - infecting SQL servers to mine cryptocurrency - back to an Iranian software firm.

Department for Education says 'we believe this is not widespread'

A shipment of laptops supplied to British schoolkids by the Department for Education to help them learn under lockdown came preloaded with malware, The Register can reveal.…

Thorough counter-detection methods laid bare by Redmond

The SolarWinds hackers triggered one of their Cobalt Strike implants in the firm's network through a cunning VBScript that was activated by a routine system process, Microsoft has said.…

Researchers warn that attackers are collecting reconnaissance for future business email compromise attacks using Google Forms.

A phishing campaign spoofs Xerox notifications to lure victims into clicking on malicious HTML attachments.

Here's the latest podcast - listen now!

Cisco is stoppering critical holes in its SD-WAN solutions and its smart software manager satellite.

The company also issued patches for Tesla-based GPUs as part of an updated, separate security advisory.

The more things change... the more they stay the same!

The attack vector was not the Orion platform but rather an email-protection application for Microsoft 365.

Let’s think about what data management should look like in the future – tune in here next week

Webcast  What’s your tech infrastructure going to look like in the next few months or years? You know, once we get past the current situation and find time to start innovating again. All of which may come sooner than you think.…

Users of dating apps - like Tinder, Match and Bumble - should be on the lookout for investment-fraud scammers.

Mystery of spying using popular chat apps uncovered by Google Project Zero researcher.

Points finger at privilege escalation via application rights in Azure AD, which Microsoft says is as designed

Security company Malwarebytes suspects a breach of its Office 365 and Azure tenancies is by the same attacker behind the SolarWinds hack, but reckons flaws in Azure Active Directory security are also to blame.…

Element Matrix Services adds to the messaging interoperability toolbox

Element Matrix Services is adding a bridge between hipster chat platform Slack and the open-source world of Matrix messaging.…

Equinix levels the playing field for all fintechs

Sponsored  The future of banking is digital, of that there is no doubt. It may be at an early stage, but we can already see that future, as, all over the world, the banking community moves to embrace open banking.…

Get your updates when you can for gear from scores of manufacturers

Seven vulnerabilities have been found in a popular DNS caching proxy and DHCP server known as dnsmasq, raising the possibility of widespread online attacks on networking devices.…

Seven flaws in open-source software Dnsmasq could allow DNS cache poisoning attacks and remote code execution.

Instructions for spotting and keeping suspected Russians out of systems

Any organizations that used the backdoored SolarWinds network-monitoring software should take another look at their logs for signs of intrusion in light of new guidance and tooling.…