July 15, 2021

Next week first: based on popular demand, at 18:00 on our end Friday 23 (that’s 09:00 in London and terrible o’clock everywhere in the US), Charlotte is going to join me to talk about her transition from Mac to PC. Scott Helme will also

Read More Weekly Update 252

It’s not just that they’re making headlines more often. Ransomware rates really are rising. Given the recent spate of high-profile attacks, it’s worth remembering the difference between standard backup and high-availability replication. Our research suggests that the costs of ransomware for businesses can amount to much more than an extortion payment. They include lost hours […]

The post What’s the difference between high availability and backup again? appeared first on Webroot Blog.

Read More What’s the difference between high availability and backup again?

It’s not just that they’re making headlines more often. Ransomware rates really are rising. Given the recent spate of high-profile attacks, it’s worth remembering the difference between standard backup and high-availability replication. Our research suggests that the costs of ransomware for businesses can amount to much more than an extortion payment. They include lost hours […]

The post What’s the difference between high availability and backup again? appeared first on Webroot Blog.

Read More What’s the difference between high availability and backup again?

Experts said that Israeli surveillance firm Candiru, tracked as Sourgum, exploited zero-days to deliver a new Windows spyware. Microsoft and Citizen Lab believe that the secretive Israel-based Israeli surveillance firm Candiru, tracked as Sourgum, used Windows zero-day exploits to deliver a new Windows spyware dubbed DevilsTongue. According to the experts, at least 100 activists, journalists […]

The post Israeli surveillance firm Candiru used Windows zero-days to deploy spyware appeared first on Security Affairs.

Read More Israeli surveillance firm Candiru used Windows zero-days to deploy spyware

Jennifer Quaglietta’s accomplishments at Healthcare Insurance Reciprocal of Canada (HIROC) read like a list of career highlights, yet it was only two years ago that she was brought on board to fill an inaugural role with the go-to insurance provider for healthcare organizations. As HIROC’s VP, Performance Excellence and Information Services, Quaglietta was tasked with […]

The post Inspiring momentum for innovation: Jennifer Quaglietta, Not for Profit CIO of the Year first appeared on IT World Canada.

Read More Inspiring momentum for innovation: Jennifer Quaglietta, Not for Profit CIO of the Year

Ricardo Costa is no stranger to disruption and digital transformation. The Chief Information Officer for Purolator, and this year’s CIO of the Year for the private sector, he has a strong track record of modernizing operations and maximizing efficiencies. As one example, a new delivery app that Purolator adopted with Costa’s lead has transformed parcel […]

The post Delivering during a global pandemic: Ricardo Costa – 2021 CIO of the Year – Private Sector first appeared on IT World Canada.

Read More Delivering during a global pandemic: Ricardo Costa – 2021 CIO of the Year – Private Sector

A huge fan of the leadership required to get any organization pulling together for change, Amir Hameed, RingCentral’s VP Global Solutions Engineering & Specialists, was honoured to recognize Mari Teitelbaum as 2021 CIO of the Year for the public sector during ITWC’s Digital Transformation Week program. As CIO & VP Strategy, Quality & Family Partnership […]

The post Kudos to the Public Sector CIO of the Year for 2021: Mari Teitelbaum first appeared on IT World Canada.

Read More Kudos to the Public Sector CIO of the Year for 2021: Mari Teitelbaum

The CIO of the Year awards program added Next Generation Leader as a new category in 2020 as a way of recognizing individuals who demonstrate outstanding talent as future leaders in the tech sector. This year’s winner, Rita Lazar-Tippe, has the passion and drive demanded of recipients in this category, as well as the organizational […]

The post A leader for the next generation first appeared on IT World Canada.

Read More A leader for the next generation

Zero-day exploit broker Zerodium is looking for 0day exploits for the VMware vCenter Server Zero-day exploit broker Zerodium announced it is looking for zero-day exploits for VMware vCenter Server. vCenter Server is the centralized management utility for VMware, and is used to manage virtual machines, multiple ESXi hosts, and all dependent components from a single centralized location. The company will […]

The post Exploit broker Zerodium is looking for VMware vCenter Server exploits appeared first on Security Affairs.

Read More Exploit broker Zerodium is looking for VMware vCenter Server exploits

Security researchers have linked a new ransomware strain called Diavol to the Wizard Spider threat group behind the Trickbot botnet. BleepingComputer noted the ransomware families utilize the same I/O operations for file encryption queueing and use nearly identical command-line parameters for the same functionality. There may be some similarities, but as they’ve explained and SpearTip […]

The post SpearTip Finds New Diavol Ransomware Does Steal Data appeared first on Security Affairs.

Read More SpearTip Finds New Diavol Ransomware Does Steal Data

HelloKitty ransomware gang is using a Linux variant of their malware to target VMware ESXi virtual machine platform. A Linux variant of the HelloKitty ransomware was employed in attacks against VMware ESXi systems. The move of the ransomware gang aims at expanding the operations targeting enterprises that are largely adopting virtualizing platforms. Targeting VMware ESXi […]

The post HelloKitty ransomware now targets VMware ESXi servers appeared first on Security Affairs.

Read More HelloKitty ransomware now targets VMware ESXi servers

HelloKitty ransomware gang is using a Linux variant of their malware to target VMware ESXi virtual machine platform. A Linux variant of the HelloKitty ransomware was employed in attacks against VMware ESXi systems. The move of the ransomware gang aims at expanding the operations targeting enterprises that are largely adopting virtualizing platforms. Targeting VMware ESXi […]

The post HelloKitty ransomware now targets VMware ESXi servers appeared first on Security Affairs.

Read More HelloKitty ransomware now targets VMware ESXi servers

The Microsoft Threat Intelligence Center (MSTIC) alongside the Microsoft Security Response Center (MSRC) has uncovered a private-sector offensive actor, or PSOA, that we are calling SOURGUM in possession of now-patched, Windows 0-day exploits (CVE-2021-31979 and CVE-2021-33771).

The post Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware appeared first on Microsoft Security Blog.

Read More Protecting customers from a private-sector offensive actor using 0-day exploits and DevilsTongue malware

Microsoft unveiled Windows 365, its Windows 10 desktops that stream from the cloud, at its annual partner conference, Inspire, on July 14. Also known as Cloud PC, Windows 365 differs from Azure Virtual Desktops (AVD, formerly known as Windows Virtual Desktop) in that it does not require any direct interaction with Microsoft Azure by users. […]

The post Microsoft launches the cloud PC: Windows 365 first appeared on IT World Canada.

Read More Microsoft launches the cloud PC: Windows 365

SonicWall has issued an urgent security alert to warn customers of “an imminent ransomware campaing” targeting EOL equipment. SonicWall has issued an urgent security alert to warn companies of “an imminent ransomware campaing” targeting some of its equipment that reached end-of-life (EoL). Threat actors could target unpatched devices belonging to Secure Mobile Access (SMA) 100 series […]

The post SonicWall warns of ‘imminent ransomware’ attacks on its EOL products appeared first on Security Affairs.

Read More SonicWall warns of ‘imminent ransomware’ attacks on its EOL products