Day: November 24, 2021

Waterfall Security Solutions partners with HTSS to protect a European power generation customer

Waterfall Security Solutions and Romanian systems integrator HTSS announced their successful collaboration to deploy Unidirectional Security Gateways to protect a major European power generation customer. This partnership demonstrates HTSS’ and Waterfall’s commitment both to providing the strongest in industrial security solutions to European power generation infrastructure, and to helping customers with professional services in meeting …

Waterfall Security Solutions partners with HTSS to protect a European power generation customer Read More »

Infrastructure Security Month has something for everyone

Infrastructure Security Month (ISM) has entered its fourth and final week. So far, we have covered shared risk and responsibility, securing public gatherings, and building security and resilience into critical infrastructure. This week the focus is on election security and building resilience into our democratic processes. As part of the weekly initiative, CISA is expanding …

Infrastructure Security Month has something for everyone Read More »

Okera for Snowflake provides data privacy and security policies for Snowflake customers

Okera announced Okera for Snowflake, a new software as a service (SaaS) offering for the Snowflake Data Cloud that will be exclusively available on AWS in 2022. The company also announced that the latest version of its flagship solution, the Okera Dynamic Access Platform (ODAP), now has enhanced end-to-end native integration with Snowflake. Okera for …

Okera for Snowflake provides data privacy and security policies for Snowflake customers Read More »

Microland collaborates with Securonix to deliver managed SOC solutions for organizations

Microland announced its strategic partnership with Securonix to elevate its managed Security Operations Center offering. The partnership would help enterprises benefit from advanced artificial intelligence-based solutions to detect and nullify threats, in a world seeing exponential rise in data thefts and data protection getting tougher with highly complex security landscape. “Microland advocates a Cyber Resiliency …

Microland collaborates with Securonix to deliver managed SOC solutions for organizations Read More »

Cisco Security Advisory

Number: AV21-598Date: 25 November 2021 On 24 November 2021 Cisco published a Security Advisory to address vulnerabilities in the following product: Cisco Expressway Series – versions prior to X14.0.4 and X14.1 Cisco is aware that an exploit for CVE-2021-40438 exists in the wild. The Cyber Centre encourages users and administrators to review the provided web …

Cisco Security Advisory Read More »

New tool: cs-analyze-processdump.py

New tool: cs-analyze-processdump.py This is cs-analyze-processdump.py, my tool to analyze Cobalt Strike beacon process dumps, detecting and decoding sleep mode encoding. cs-analyze-processdump_V0_0_2.zip (https)MD5: 699C184AA60F741B6DD7CB8C05E12448SHA256: 5E6C121783C9BC1A392AA4FEFD77D66709B0C8FB2F3E568D8538C6CD81C7B315 No comments yet.Read more

Crypto.com achieves SOC 2 certification to strengthen its security and privacy standards

Crypto.com announced it has successfully completed the Service Organization Control (SOC) 2 Audit, conducted by globally recognized audit and consulting firm Deloitte, which affirms that Crypto.com’s information security practices, policies, procedures, and operations meet the SOC 2 standards for security, availability, confidentiality and privacy. To comply with SOC 2, Crypto.com demonstrated it had established rigorous …

Crypto.com achieves SOC 2 certification to strengthen its security and privacy standards Read More »

China agency tells Tencent apps have to be approved before they go live

Chinese regulators have told video game giant Tencent that it will need to submit its apps to the Ministry of Industry and Information Technology, or MIIT, before launching them. The MIIT said it wanted to conduct “technology testing” to ensure that the company’s apps comply with privacy standards, the Xinhua news agency reported. The announcement …

China agency tells Tencent apps have to be approved before they go live Read More »

Phishing in the Iranian diaspora. Not your grandma and grandpa’s crytper. Malware-as-a-service. Proofs-of-concept (one is a zero-day). Apple sues NSO Group.

An apparent cyberespionage campaign targets the Iranian diaspora. Babadeda is an emerging crypter seeing use against alt-coin and NFt speculators. RATDispenser is out in the wild, a malware-as-a-service operation. Proofs-of-concept published for Microsoft exploits. Apple sues NSO Group. Group-IB’s founder asks President Putin for clemency. Caleb Barlow on the difference between working for a company …

Phishing in the Iranian diaspora. Not your grandma and grandpa’s crytper. Malware-as-a-service. Proofs-of-concept (one is a zero-day). Apple sues NSO Group. Read More »

They Said a CISO Does What?

The cybersecurity industry had challenges with bringing in new blood and facilitating the career growth.  Misinformation has unfortunately played a part in making various roles appear unattainable, when we should be doing the opposite.  We should be embracing flexibility, identifying opportunities, and most of all discussing realistic expectations and roles. Who writes this stuff?  I …

They Said a CISO Does What? Read More »

This Microsoft Windows RCE Vulnerability Gives an Attacker Complete Control

By Malcolm Stagg CVE-2021-34535 is a Remote Code Execution (RCE) vulnerability in Remote Desktop Client, found by SRT member Malcolm Stagg earlier this year, and patched by Microsoft in August 2021. Finding the Vulnerability I found this vulnerability by looking at the disassembly of several Windows dll’s in IDA debugger for potential memory access flaws. …

This Microsoft Windows RCE Vulnerability Gives an Attacker Complete Control Read More »

Huntington Hospital discloses insider criminal breach after law enforcement lifts delay on notice

Huntington Hospital in New York has disclosed an insider-wrongdoing incident that occurred between October 2018 and February 2019.  Although they determined in February, 2019 that  the now-former employee was engaging in unauthorized access to patient records, and suspended the employee (and eventually terminated the employment), they were asked to delay notification to those impacted until …

Huntington Hospital discloses insider criminal breach after law enforcement lifts delay on notice Read More »

Windows 10 KB5007253 update released with network printing fixes

Microsoft has released the optional KB5007253 Preview cumulative update for Windows 10 2004, Windows 10 20H2, Windows 10 21H1, and Windows 10 21H2. Microsoft claims this update fixes network printing issues causing 0x000006e4, 0x0000007c, or 0x00000709 error codes to be displayed. The KB5007253 cumulative update preview is part of Microsoft’s September 2021 monthly “C” update, allowing …

Windows 10 KB5007253 update released with network printing fixes Read More »

Slamming The Doors On Ransomware Gangs

MSSP GM Sectec and DMaaS firm Metallic.io partner – David Braue Melbourne, Australia – Nov. 24, 2021 Evolving ransomware gangs have proven remarkably adept at cutting off victims’ potential lifelines — encrypting local backups to prevent them restoring unencrypted data, or directly disabling backup software in memory or on disk. Manoj Nair calls this strategy “going after the exit …

Slamming The Doors On Ransomware Gangs Read More »

Redherd Framework -A Collaborative And Serverless Framework For Orchestrating A Geographically Distributed Group Of Assets

RedHerd is a collaborative and serverless framework for orchestrating a geographically distributed group of assets capable of conducting simulating complex offensive cyberspace operations.Getting Started Take a look at the RedHerd documentation for instructions on how to getting started with the framework. Cite this work If you use RedHerd Framework for your research activity, cite the …

Redherd Framework -A Collaborative And Serverless Framework For Orchestrating A Geographically Distributed Group Of Assets Read More »

IT spending in Middle East and North Africa to grow by 2.6% in 2022: Gartner

IT spending in the Middle East and North Africa (MENA) region is forecast to total $1.7 billion in 2022, an increase of 2.6 per cent from 2021, according to a recent forecast by Gartner. “The recovery of the IT sector in MENA will continue in 2022,” says Miriam Burt, managing vice president at Gartner. “In …

IT spending in Middle East and North Africa to grow by 2.6% in 2022: Gartner Read More »