Doug Olenick

Analysis of three Hidden Cobra malware variants issued by CISA

Analysis of three Hidden Cobra malware variants issued by CISA

Copperhedge, Taintedscribe and Pebbledash malware are the subject of recent analysis with all three believed to be operated by the North Korean operated Hidden Cobra APT group.

Microsoft again surpasses 100 vulnerabilities on Patch Tuesday

Microsoft again surpasses 100 vulnerabilities on Patch Tuesday

For the third consecutive month Microsoft issued a hefty list of Patch Tuesday security updates covering 111 CVEs with 16 making the critical list.

34 CISCO security updates issued, 12 being rated as a high priority

34 CISCO security updates issued, 12 being rated as a high priority

Of 34 CISCO security updates, eight impact the company’s Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defence Software.

Zero-day in Sophos XG Firewall product exploited

Zero-day in Sophos XG Firewall product exploited

Sophos and its customers were victimised when a previously unknown SQL injection vulnerability in the company’s physical and virtual XG Firewall units was exploited

Israel's water companies suffer cyber-attack

Israel's water companies suffer cyber-attack

Several Israeli Water Authority facilities suffer cyber-attack over the weekend - advised to change all passwords for internet accessing services.

Critical, currently exploited vulnerabiiities covered in major Microsoft Patch Tuesday.

Critical, currently exploited vulnerabiiities covered in major Microsoft Patch Tuesday.

113 vulnerabilities, 19 of them rated as critical and 94 rated as important in Microsoft's Patch Tuesday this month.

CyberRisk Alliance appoints David Longobardi Chief Content Officer

CyberRisk Alliance appoints David Longobardi Chief Content Officer

CyberRisk Alliance ("CRA"), a US-based cyber-security & information risk management business intelligence company & owner of SC Media, has appointed David Longobardi as Chief Content Officer.

Facebook, Twitter ban malicious SDK that removed member info

Facebook, Twitter ban malicious SDK that removed member info

Twitter warns users about possible data harvesting, Facebook issues alerts on SDKs by oneAudienceand Mobiburn

Patched WhatsApp vulnerability still impacting thousands of apps

Patched WhatsApp vulnerability still impacting thousands of apps

A patched vulnerability in the WhatsApp for Android can still affect thousands of additional apps that have not been patched

NYPD fingerprint database touched by ransomware

NYPD fingerprint database touched by ransomware

The New York City Police Department's fingerprint database was hit with ransomware in October 2018