enterprise – TFun dot org

Attackers are looking to exploit critical VMware vCenter Server RCE flaw, patch ASAP!

25/02/202125/02/2021Zeljka Zorz

The day after VMware released fixes for a critical RCE flaw (CVE-2021-21972) found in a default vCenter Server plugin, opportunistic attackers began searching for publicly accessible vulnerable systems. We've detected mass scanning activity targeting vulnerable VMware vCenter servers (https://t.co/t3Gv2ZgTdt). Query our API for "tags=CVE-2021-21972" for relevant indicators and source IP addresses. #threatintel https://t.co/AcSZ40U5Gp — Bad […]

Third-party risk management programs still largely a checkbox exercise

24/02/2021Help Net Security

Enterprise third-party risk management (TPRM) programs have been around for a half-decade or longer, and at this point most large organizations run one. However, many of these TPRM programs only provide a thin veneer of cybersecurity assurance. Recent data indicates that they are inconsistent (at best) when it comes to digging deep enough for clues […]

Accellion FTA attacks, extortion attempts might be the work of FIN11

23/02/2021Zeljka Zorz

Mandiant/FireEye researchers have tentatively linked the Accellion FTA zero-day attacks to FIN11, a cybercrime group leveraging CLOP ransomware to extort targeted organizations. Accellion has also confirmed on Monday that “out of approximately 300 total FTA clients, fewer than 100 were victims of the attack.” A little bit of background information Starting in December 2020, unknown […]

Chief Legal Officers face mounting compliance, privacy and cybersecurity obligations

23/02/2021Zeljka Zorz

After earning his master’s degree in computer science and working on the IT side of the business at a number of large financial services organizations, Bobby Balanchdran observed one interesting thing: the legal department in these organizations had been left out of all the business process re-engineering projects that the rest of the business had […]

Comment utiliser Flash en 2021 et pourquoi vous devriez éviter | Blog officiel de Kaspersky

16/02/2021Nikolay Pankov

Début 2021, Adobe Flash a officiellement cessé d’exister. Certains amateurs de vieux jeux basés sur le navigateur ont été émus mais la plupart des experts en sécurité informatique ont été soulagés puisque le monde était enfin prêt à vivre sans cette technologie certes remarquable mais obsolète de nos jours. Nous y étions-nous vraiment préparés ? Il […]

Top 10 most used MITRE ATT&CK tactics and techniques

16/02/2021Zeljka Zorz

Which tactics and techniques are cyber attackers favoring? vFeed has compiled a list of the Top 10 Most Used MITRE ATT&CK Tactics and Techniques to help security teams focus their defenses more effectively. MITRE ATT&CK helps understand attacker behavior The MITRE ATT&CK framework is a well known and widely used knowledge base of cyber adversary […]

Accellion to retire enterprise file-sharing product targeted in recent attacks

12/02/2021Zeljka Zorz

U.S.-based cloud solutions company Accellion will soon retire FTA, its legacy enterprise file-sharing solution, vulnerabilities in which have recently been exploited by attackers to breach a variety of organizations, including the Australian Securities and Investments Commission, the Washington State Auditor Office, and Singapore telecom Singtel. What is Accellion FTA? Accellion FTA (File Transfer Appliance) is […]

Systèmes internes de CD Projekt victimes d’un ransomware | Blog officiel de Kaspersky

11/02/2021ejazottes

CD Projekt a publié un communiqué pour annoncer qu’un rançongiciel (ransomware), dont le nom n’est pas mentionné, s’en est pris aux systèmes internes de l’entreprise. L’éditeur, connu pour sa série de jeux vidéo The Witcher, son célèbre projet Cyberpunk 2077 et son service de distribution numérique GOG.com, explique qu’à sa connaissance les données personnelles des […]

Microsoft to alert enterprise security teams when nation-state attackers target their employees

09/02/2021Zeljka Zorz

Microsoft will introduce this month a new security alert that will notify enterprise security teams when an employee is being targeted by suspected nation-state attackers. The notification will appear in the dashboard of Microsoft Defender for Office 365, a cloud-based email filtering service that protects enterprise Office 365 users against advanced and targeted threats (e.g., […]

Open-source tool BlobHunter helps pinpoint public Azure blobs that might contain sensitive files

08/02/202108/02/2021Zeljka Zorz

CyberArk researchers have released BlobHunter, an open-source tool organizations can use to discover Azure blobs containing sensitive files they have inadvertently made public. The cloud storage misconfiguration problem The many advantages of using the public cloud for storage are not lost on most organizations. But despite access to the files uploaded to cloud storages being […]