February 3, 2021

Mensa – the social club for people with high IQs – is accused of not being so smart about security, an Indian TV journalist gets an unbelievable job offer from Harvard, and we take a look at what’s being going on with GameStop short selling.

All thi…

Read More Smashing Security podcast #213: No security smarts at Mensa, long-term identity theft, and GameStop’s share frenzy

We’ve been doing our homework, and two things seem to be true about cybersecurity awareness training simultaneously: It can be very effective at protecting businesses from one of the most common security threats they face (the majority, according to the Ponemon Institute). Namely, phishing. MSPs, often the single most reliable source of cybersecurity for small […]

The post Four Roadblocks to Increasing Employee Security Through User Training appeared first on Webroot Blog.

Read More Four Roadblocks to Increasing Employee Security Through User Training

Dutch penetration tester Melvin Boers, aka V1s3r1on, was kind enough to invite me onto his live stream on Monday night for an hour-or-so of chit-chat.

In the video I describe how I first got into computers, joke programs I wrote to play pranks on my…

Read More A video Q&A session

Dairy farm group faces $30 million ransom The Dairy Farm Group, one of the largest retailers in Asia, has suffered a ransomware attack by the REvil group, which has demanded a roughly $30 million ransom. The attack is still ongoing nearly nine days after being first identified. The attackers still have full control over the […]

The post Cyber News Rundown: Dairy Farm Ransomware appeared first on Webroot Blog.

Read More Cyber News Rundown: Dairy Farm Ransomware

Microsoft analyzed details of the SolarWinds attack:

Microsoft and FireEye only detected the Sunburst or Solorigate malware in December, but Crowdstrike reported this month that another related piece of malware, Sunspot, was deployed in September 2019, at the time hackers breached SolarWinds’ internal network. Other related malware includes Teardrop aka Raindrop.

Details are in the Microsoft blog:

We have published our in-depth analysis of the Solorigate backdoor malware (also referred to as SUNBURST by FireEye), the compromised DLL that was deployed on networks as part of SolarWinds products, that allowed attackers to gain backdoor access to affected devices. We have also detailed the …

Read More More SolarWinds News