WinRAR vulnerability allowed attackers to remotely hijack systems

The vulnerability in WinRAR trialware could be abused by a remote attacker for executing arbitrary code on any system thus, getting an opportunity to launch a range of attacks. According…

Why is Cybersecurity Failing Against Ransomware?

Hardly a week goes by without another major company falling victim to a ransomware attack. Nate Warfield, CTO at Prevailion, discusses the immense challenges in changing that status quo. Yes,…

Data Scrapers Expose 2.6 Million Instagram and TikTok Users

Data Scrapers Expose 2.6 Million Instagram and TikTok Users Security researchers have discovered over two million social media user profiles scraped from the internet after they were unwittingly exposed online…

Russian Cyber-criminals Switch to Cloud

Russian Cyber-criminals Switch to Cloud Cybersecurity firm Kaspersky today released research on Russian-speaking cyber-criminal activity and how it has changed over the past six years. The study by Kaspersky’s Computer Incident Investigation Department found…

Specialty Steel Works turns cyber skills into life skills

Specialty Steel Works Incorporated is no stranger to setting high standards as the leader in innovative steel solutions. That’s why they went straight to the top when implementing their new…

A Guide to Doing Cyberintelligence on a Restricted Budget

Cybersecurity budget cuts are everywhere. Chad Anderson, senior security researcher at DomainTools, discusses alternatives to fancy tooling, and good human skills alignment. For those in the industry, it comes as…

Red teaming tutorial: Active directory pentesting approach and tools

Infosec Institute –  Infosec Institute –  There are a number of tools you should use when it comes to active directory (AD). Inveigh and responder as a start point Many…

VPN Provider's Misconfiguration Exposes One Million Users

VPN Provider's Misconfiguration Exposes One Million Users At least one million users of a Chinese-run VPN service have had their personally identifiable information (PII) exposed due to a misconfigured Elasticsearch…

UK in Midst of $200m Crypto Fraud Epidemic

UK in Midst of $200m Crypto Fraud Epidemic Victims of cryptocurrency fraud have already lost over £146m ($200m) so far this year, a double-digit increase over 2020 figures, according to…

Time to Build Accountability Back into Cybersecurity

Chris Hass, director of information security and research at Automox, discusses how to assign security responsibility, punishment for poor cyber-hygiene and IDing ‘security champions’ to help small businesses. In the…